Need to run .net 2.0 from an intranet location

In other words, how to programmatically change the code access security of
..net 2.0 on the machine so programs can be lunched on remote
machines(localintranet) from that network?

jens,

Are you sure that the app is not installed, or do you just not have
permissions to see the app? If the graphical user interface is not there,
then it is most likely that there is a problem with the install, as it is
not an "optional" utility.

Doing it in code would require another app domain to be created etc,
etc, and it's just not worth it.

Hope this helps.
--
- Nicholas Paldino [.NET/C# MVP]
- mv*@spam.guard.caspershouse.com

"jens Jensen" <je**@jensen.dk> wrote in message
news:eB*************@TK2MSFTNGP12.phx.gbl...

Hello,

I need to assign local intranet permission to an application .
How can i do this programmatically?
The host machine where the app resides does not have the graphical
configuration tool installed?

Many thanks in advance
JJ

>

Are you sure that the app is not installed, or do you just not have
permissions to see the app? If the graphical user interface is not there,
then it is most likely that there is a problem with the install, as it is
not an "optional" utility.

Doing it in code would require another app domain to be created etc,
etc, and it's just not worth it.

Hope this helps.
--
- Nicholas Paldino [.NET/C# MVP]
- mv*@spam.guard.caspershouse.com

The machine from where the app is being lunched does not have the the .net
2.0 SDK. mscorecfg.msc(The scurity configuration tool for .net 2.0) comes
with the sdk.

"jens Jensen" <je**@jensen.dk> wrote in message
news:uT**************@TK2MSFTNGP09.phx.gbl...
| >
| > Are you sure that the app is not installed, or do you just not have
| > permissions to see the app? If the graphical user interface is not
there,
| > then it is most likely that there is a problem with the install, as it
is
| > not an "optional" utility.
| >
| > Doing it in code would require another app domain to be created etc,
| > etc, and it's just not worth it.
| >
| > Hope this helps.
| >
| >
| > --
| > - Nicholas Paldino [.NET/C# MVP]
| > - mv*@spam.guard.caspershouse.com
| >
|
| The machine from where the app is being lunched does not have the the .net
| 2.0 SDK. mscorecfg.msc(The scurity configuration tool for .net 2.0) comes
| with the sdk.
|
|

mscorecfg.msc is no longer distributed as an end-user tool, you need to use
caspol.exe to set the appropriate CAS level.

As an example, following command sets full trust for all assemblies loaded
from the url \\machine\share

CasPol.exe -pp off -m -ag 1.2 -url file://machine/share/* FullTrust

Check following for more info:
http://msdn2.microsoft.com/en-us/library/a0ke3k86.aspx

Willy.

>

As an example, following command sets full trust for all assemblies loaded
from the url \\machine\share

CasPol.exe -pp off -m -ag 1.2 -url file://machine/share/* FullTrust

Check following for more info:
http://msdn2.microsoft.com/en-us/library/a0ke3k86.aspx

Willy.

Thanks,
It does not seem like caspol.exe comes with .net 2.0 framework.

"jens Jensen" <je**@jensen.dk> wrote in message
news:Og**************@TK2MSFTNGP10.phx.gbl...
| >
| > As an example, following command sets full trust for all assemblies
loaded
| > from the url \\machine\share
| >
| > CasPol.exe -pp off -m -ag 1.2 -url file://machine/share/* FullTrust
| >
| > Check following for more info:
| > http://msdn2.microsoft.com/en-us/library/a0ke3k86.aspx
| >
| > Willy.
| >
| >
|
| Thanks,
| It does not seem like caspol.exe comes with .net 2.0 framework.
|
|

Sure it does, it's in the framework install directory, like :
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727

Willy.

yes, that i scorrect....

Willy,

I have to get around to looking at this on our network as well.

I've read that it's generally a better idea to strong-name all of our
assemblies with a single, company-wide strong name key, and then use
caspol.exe to give full trust to assemblies signed with that key. That
way we can locate the assemblies anywhere on our network we like,
without opening up a security hole such as trusting anything coming off
a particular server, no matter who wrote it.

Is that a sensible approach? I'm asking because I figure that if the
answer is "no" then I can save myself a bunch of time. :)