|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
Anyone out there using AzMan with WinForms solution?I have been using AzMan for a security proof of concept and really like what
it has to offer. Our company has over 3500 XP user workstations. The new version of software that we are building and preparing to roll out needs some interesting security in regards to the user interface. Buttons can be set on or off based on all the different screens you happen to be viewing. I have it working and am thinking that I will need to get the Azroles.dll on the user machines and then regsvr32 the dll so that I can do the access checks against the defined operations in the xml policy file. Anybody out there have any comments or feedback on trying to implement this type of security model? Would love to hear back from some of the security experts out there in the field. Pierre Dechaine, MCSD Hello PierreDechaine,
go for it. AzMan seems to have an interesting future in the whole EAI scenario. AzMan is extremely powerful, and the setup steps you described are correct. I would re-consider deploying the XML files on the client, as this makes updates extremely difficult and - even worse exposes your Authz store to client machines. Have you considered storing the Authz store in AD - or a little more leightweight in ADAM? --------------------------------------- Dominick Baier - DevelopMentor http://www.leastprivilege.com Show quoteHide quote > I have been using AzMan for a security proof of concept and really > like what it has to offer. Our company has over 3500 XP user > workstations. The new version of software that we are building and > preparing to roll out needs some interesting security in regards to > the user interface. Buttons can be set on or off based on all the > different screens you happen to be viewing. I have it working and am > thinking that I will need to get the Azroles.dll on the user machines > and then regsvr32 the dll so that I can do the access checks against > the defined operations in the xml policy file. Anybody out there have > any comments or feedback on trying to implement this type of security > model? > > Would love to hear back from some of the security experts out there in > the field. > > Pierre Dechaine, MCSD > 
Other interesting topics
IIS "secure communications"and "certificate" sections disabled.
Storing Client Certificates Re: RSA Encrypt/Decrypt Problems License File Generator Using Digital Signatures Difference between Full Trust and Everything Re: full trus and 1.1 SP1 Howto obtain WindowsIdentity for client calling method on COM+ application? SecurityCritical, SecurityTreatAsSafe and SecurityTransparent Attributes? ildasm Re: Error instantiating RSACryptoServiceProvider |
|||||||||||||||||||||||
