.NET Zone Security Managed System Wide
I have an application that is already deployed that we are making a change to. The application needs to have access to a shared directory on the network where there are some .NET configuration files. In testing we found that unless we adjust the Security Level for .NET for the Local Intranet to Full Trust the application has problems. We have a Windows 2000 (SP4) network. Is there a way to change this .NET configuration Globally, through a group policy? I have not found an ADM template for .NET. I am not sure how to change this setting in the Registry where I could script a .reg file. I am anxious to deploy this change, but am not thrilled about running around to every desktop to make the change, additionally we have some hoteling on our desktops, which mean we would have to manually update profiles too.
Thanks
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Well; I have been throught this, and the advise I received was to re-write the application, as MS is trying to move away from Full Trust and likes application to have access only on 'need to have' basis.
ASKER
I don't disagree with M$'s contention about Full Trust, it just seems backwards that you have to rewrite an applications to set permissions on the OS, rather than have the OS manage the way an application operates in its environment.
Thanks again
Thanks again
ASKER
This is the kind of thing I found too. I was not wishing to redistribute this app, as there are lots of settings that have to be done locally, and saved to XML files, (the .INI files of the 21st century). It does seem logical though to me that someone would or MS themselves would provide a system wide tool for managing this kind of situation.
I will consider the question closed and my hopes of an easy solution defeated.
Thanks