Re: Further DPAPI (user store) problems
From: Martin (x_at_y.z)
Date: 09/22/04
- Next message: [MSFT]: "Re: You are about to be redirected to a connection that is not secure"
- Previous message: DougM: "Kerberos not being used, only NTLM - Login failed for user '(null)'"
- In reply to: Joseph E Shook [MVP - ADSI]: "Re: Further DPAPI (user store) problems"
- Next in thread: Martin: "Re: Further DPAPI (user store) problems"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 22 Sep 2004 08:11:00 +0100
Thanks Joseph,
I'll have another look.
Martin
"Joseph E Shook [MVP - ADSI]" <joeshook@deploymentCentric.com> wrote in
message news:%23hxMROMnEHA.2764@TK2MSFTNGP10.phx.gbl...
> You shouldn't need to do any configuration with DCOM Config. But you
> will have to create a role in the roles folder of the ES application.
> Then add the users or groups to this role.
>
> Look at the chapter called How To: Use Role-based Security with
> Enterprise Services in the same doc.
> Basically you will have to implement an interface to be able to see your
> component methods in ES and you will have to create roles.
> Another thing you will need to do is add a Marshaler Role with the
> everyone group in it. It is most convenient to just add the following
> line to your assemblyinfo:
> [assembly: SecurityRole("Marshaler", SetEveryoneAccess = true)]
>
> Ok, after saying all of that you could just user standard role based
> security in your component. Look up Declarative and Imperative in the
> help files. But remember you can only use ES roles or .NET role based
> security; no mixing of the two.
>
> I would be more specific but I have to revisit some of my work from last
> year to better tell this story. I hope this will help.
>
>
>
> Martin wrote:
>
> > Hi Joseph,
> >
> > Thanks for the response.
> >
> > I would like to have security at the application level if possible.
What
> > concerns me is I don't have any entry that looks useful to me under DCOM
> > Config.
> >
> > Can you give me any pointers on that?
> >
> > Thanks
> > Martin
> > PS I can't see any steps involving the security tab of my COM+ App in
the
> > January 2004 version of this document.
> >
> >
> > "Joseph E Shook [MVP - ADSI]" <joeshook@deploymentCentric.com> wrote in
> > message news:unqdogInEHA.3988@TK2MSFTNGP10.phx.gbl...
> >
> >>If you do not have any roles set up then you will need to leave the
> >>security disabled at the Application level. By default on XP and
> >>Win2003 it is turned on. But I think when this document was written
> >>Windows 2000 was most likely the targeted platform and if I remember
> >>right the Application access checks was dissabled by default. So maybe
> >>that explains the lack of mentioning this tidbit in the doc.
> >>
> >
> >
> >
- Next message: [MSFT]: "Re: You are about to be redirected to a connection that is not secure"
- Previous message: DougM: "Kerberos not being used, only NTLM - Login failed for user '(null)'"
- In reply to: Joseph E Shook [MVP - ADSI]: "Re: Further DPAPI (user store) problems"
- Next in thread: Martin: "Re: Further DPAPI (user store) problems"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
