This course discusses the many aspects of .NET security, including the mechanics of code access security, role-based security, authentication, and authorization. It also presents guidelines for applying security to applications, services and components.
Objectives:
Configure security for a Windows service, a serviced component, a .NET Remoting object, and an XML Web service.
Configure authentication type. Authentication types include Windows authentication, Microsoft .NET Passport, custom authentication, and none.
Configure and control authorization. Authorization methods include file-based authorization and URL-based authorization.
Configure and implement identity management.
Topics:
Understanding Code Access Security
Code Groups and Permission Sets
Imperative Security
Determining and Requesting Permissions
Using Custom Security Attributes
IIS, ASP.NET, and No Authentications
Passport and Forms Authentications
Implementing Impersonation
Identity and Principal Objects
Verifying Role Membership
Security for Windows Services
Security for Web Services
Remoting and Enterprise Services Security
Technical Requirements:
P500+ Processor, 128MB of RAM; Windows 2000, 2003, XP, Minimum screen resolution 800x600, Internet Explorer 6.0 or higher; Windows Media Player 9.0 or higher; Adobe Flash Player 8.0 or higher; 56K minimum connection; broadband (256 kpbs or higher) connection recommended; Cookies enabled; Sound card with speakers or headphones strongly recommended.
