Connecting Tech Pros Worldwide Forums | Help | Site Map
bytes > topic > asp .net > answers

Security policy problem

Chris Bazalgette
Guest
  
Posts: n/a
#1: Nov 18 '05
I'm in the process of getting to grips with ASP .Net, and have run into
a problem without an obvious solution. I've added some C# code to write
errors to the event log, and that compiles fine. But when run, the
application doesn't have permission to access the registry, and a
security exception is raised.

Now I know that the answer lies somewhere in the .NET configuration
panel, but I've no idea where. I've tried a few things, but got lost in
the Byzantine complexity of security policy and trust levels, and
nothing's worked so far.

One problem is that I can't find the assembly file for my application -
I've read that it's supposed to be in a \bin folder somewhere near the
..Net framework stuff, but I can find no such folder.

Be really grateful if any guru here can help.

Environment is Windows XP Pro with IIS 5.1 and .Net Framework 1.1 SP1.
I'm using Web Matrix to compile the C# code.

Debugger output below - exception is on line 33,
myEventLog.WriteEntry(..)

Many thanks for any ideas,

Chris



Security Exception
Description: The application attempted to perform an operation not
allowed by the security policy. To grant this application the required
permission please contact your system administrator or change the
application's trust level in the configuration file.

Exception Details: System.Security.SecurityException: Requested registry
access is not allowed.

Source Error:

Line 31: EventLog myEventLog = new EventLog("Application");
Line 32: myEventLog.Source="BANDCh03";
Line 33: myEventLog.WriteEntry(ex.ToString(),
EventLogEntryType.Error);

John Saunders
Guest
  
Posts: n/a
#2: Nov 18 '05

re: Security policy problem

"Chris Bazalgette" <chris@cbaz.demon.co.uk> wrote in message
news:n9zNUAEbktRBFwgY@cbaz.demon.co.uk...[color=blue]
> I'm in the process of getting to grips with ASP .Net, and have run into
> a problem without an obvious solution. I've added some C# code to write
> errors to the event log, and that compiles fine. But when run, the
> application doesn't have permission to access the registry, and a
> security exception is raised.[/color]

The typical problem is that the ASPNET account doesn't have the privileges
necessary to create a new event source. If you create the event source
first, you should have no trouble writing to it from your web application.

What I usually do, using VS.NET, is to drag an EventLog component onto a
design surface (maybe onto global.asax opened in design mode). I then
configure the event log and source I want. Next, I right-click and choose
"Add Installer". This creates an event log installer capable of installing
that event log.

I then delete the EventLog I dragged onto the design surface!

When built into mywebsite.dll, I can then use "installutil" to "install" the
site:

cd bin
installutil -i mywebsite.dll

When I run these commands as an administrator, the event log source gets
created. Then, when I run my web site, it can create log entries all it
likes.
--
John Saunders
johnwsaundersiii at hotmail
Chris Bazalgette
Guest
  
Posts: n/a
#3: Nov 18 '05

re: Security policy problem

John,

Thanks a lot for replying - that gives me some useful ideas to play
with.

- Chris


In message <#$14CjlmEHA.1008@TK2MSFTNGP14.phx.gbl>, John Saunders
<johnwsaundersiii@notcoldmail.com> writes[color=blue]
>"Chris Bazalgette" <chris@cbaz.demon.co.uk> wrote in message
>news:n9zNUAEbktRBFwgY@cbaz.demon.co.uk...[color=green]
>> I'm in the process of getting to grips with ASP .Net, and have run into
>> a problem without an obvious solution. I've added some C# code to write
>> errors to the event log, and that compiles fine. But when run, the
>> application doesn't have permission to access the registry, and a
>> security exception is raised.[/color]
>
>The typical problem is that the ASPNET account doesn't have the privileges
>necessary to create a new event source. If you create the event source
>first, you should have no trouble writing to it from your web application.
>
>What I usually do, using VS.NET, is to drag an EventLog component onto a
>design surface (maybe onto global.asax opened in design mode). I then
>configure the event log and source I want. Next, I right-click and choose
>"Add Installer". This creates an event log installer capable of installing
>that event log.
>[/color]
[...]
Closed Thread

« previous question | next question »

Similar ASP.NET bytes

/bytes/development

/bytes/it

Forums
Visit our community forums for general discussions and latest on Bytes

Our staff and community areas have moved to bytes.com/forums/

/bytes/about

We are a network of experts and professionals in IT and software development that help one another with answers to tough questions and share insights. Get the best answers to your questions from over 226,501 network members.

dev questions:
algorithms | asp | asp.net | c/c++ | coldfusion | c# | flash | html/css | java | javascript |
mobile dev | .net | perl | php | python | ruby | software dev | vb.net | visual basic | xml
it questions:
access | apache | careers | db2 | iis | macosx | mysql | networking | oracle | postgresql | sql server | unix | windows

About Bytes | Copyright 1995-2009 BYTES. All rights Reserved