DCOM access permission / authentication level with .NET client
- From: Steve <StephenOsborn@xxxxxxxxx>
- Date: Tue, 25 Sep 2007 15:01:21 -0000
I was hoping someone could shed some light on the following behavior I
have noticed...
We have a .NET application acting as a client to a DCOM server. Our
DCOM server is configured to run as a particular user. It's
authentication level is set to Connect, and server specific access
permissions are defined to allow "Everyone."
The .NET client will act as a server due to the fact that callbacks
are used (Connection Points). It is my understanding that .NET
components will use default DCOM security. Here is the behavior I am
seeing (with the client and server on the same PC):
DCOM Defaults:
- authentication level: none
- default access permissions: SYSTEM, SELF (my PC's defaults)
Result: This works
DCOM Defaults:
- authentcation level: connect
- default access permissions: SYSTEM, SELF, user that is configured to
run the DCOM server
Result: This works
Does setting the authentication level to none cause access permissions
to be ignored? If not, how come I am not required to add the user
that is configured to run the server back into the access permissions
list? Is the .NET client not really using the default access
permissions? Per the following article:
http://www.codeguru.com/cpp/com-tech/activex/security/article.php/c5557/
"Authentication=None means you're not concerned about security and
want to allow anonymous access to your server. (If you go this route,
remember to grant launch and access permissions to Everyone;
otherwise, no one will be able to use your COM server.)"
.
- Prev by Date: Re: adding control to win32 app
- Next by Date: Re: ToolBar for IE and Russian
- Previous by thread: adding control to win32 app
- Next by thread: Re: ToolBar for IE and Russian
- Index(es):
Relevant Pages
|
