We have a vendor that is requiring an elevated .NET security level for their
application. I am looking into ways to do this. Is there a Group Policy to
do this or a registry change? How would one go about changing this setting?

Thanks

Rob McShinsky

Open the .NET Framework Configuration tool (Administrative Tools/Microsoft
..NET Framework 1.1 Configuration) and on the opening screen click on the
link labelled "Configure Code Access Security Policy". You may be able to
step through using the information displayed on the screens, but if not
reading up on Code Access Security (CAS) will get you going.

Sam.


"Rob McShinsky" <(E-Mail Removed)> wrote in message
news:up8wsuZ$(E-Mail Removed)...
> We have a vendor that is requiring an elevated .NET security level for
their
> application. I am looking into ways to do this. Is there a Group Policy
to
> do this or a registry change? How would one go about changing this
setting?
>
> Thanks
>
> Rob McShinsky
>
>

Have you looked at the .NET Configuration tool's ability to create a
deployment package based on a set of policy settings? My understanding is
that you can distribute the resulting MSI via GPO. I think this is the
standard approach for doing what you are doing.

Joe K.

"Rob McShinsky" <(E-Mail Removed)> wrote in message
news:up8wsuZ$(E-Mail Removed)...
> We have a vendor that is requiring an elevated .NET security level for
> their application. I am looking into ways to do this. Is there a Group
> Policy to do this or a registry change? How would one go about changing
> this setting?
>
> Thanks
>
> Rob McShinsky
>

Thanks. I think that will work just fine. Did some minor testing and it
looks good. Thanks

Rob McShinsky



"Joe Kaplan (MVP - ADSI)" <(E-Mail Removed)> wrote
in message news:O%23htj7d$(E-Mail Removed)...
> Have you looked at the .NET Configuration tool's ability to create a
> deployment package based on a set of policy settings? My understanding is
> that you can distribute the resulting MSI via GPO. I think this is the
> standard approach for doing what you are doing.
>
> Joe K.
>
> "Rob McShinsky" <(E-Mail Removed)> wrote in message
> news:up8wsuZ$(E-Mail Removed)...
>> We have a vendor that is requiring an elevated .NET security level for
>> their application. I am looking into ways to do this. Is there a Group
>> Policy to do this or a registry change? How would one go about changing
>> this setting?
>>
>> Thanks
>>
>> Rob McShinsky
>>
>
>

Hello, I just your posting. I was wondering what GPO stood for?

Have any resources detailing this??

On Tue, 18 Jan 2005 22:25:12 -0600, "Joe Kaplan \(MVP - ADSI\)"
<(E-Mail Removed)> wrote:

>Have you looked at the .NET Configuration tool's ability to create a
>deployment package based on a set of policy settings? My understanding is
>that you can distribute the resulting MSI via GPO. I think this is the
>standard approach for doing what you are doing.
>
>Joe K.
>
>"Rob McShinsky" <(E-Mail Removed)> wrote in message
>news:up8wsuZ$(E-Mail Removed)...
>> We have a vendor that is requiring an elevated .NET security level for
>> their application. I am looking into ways to do this. Is there a Group
>> Policy to do this or a registry change? How would one go about changing
>> this setting?
>>
>> Thanks
>>
>> Rob McShinsky
>>
>

Group Policy Object

Regards

Richard Blewett - DevelopMentor
http://www.dotnetconsult.co.uk/weblog
http://www.dotnetconsult.co.uk

Hello, I just your posting. I was wondering what GPO stood for?

Have any resources detailing this??

"Rob McShinsky" <(E-Mail Removed)> wrote in message
news:up8wsuZ$(E-Mail Removed)...
> We have a vendor that is requiring an elevated .NET security level for
their
> application. I am looking into ways to do this. Is there a Group Policy
to
> do this or a registry change? How would one go about changing this
setting?

Have a read up on Code Access Security. CAS enables you to set security
policy based
on characteristics of the code. It will be easy to lock down all .NET code
according to some
policy, but you will need some extra work in order to define security policy
for a single application.

Ben