Welcome to MSDN Blogs Sign in | Join | Help

Which Package are the Security Tools In?

When installing the v2.0 .NET redist package, you'll find that the .Net Configuration MMC snap-in is missing.  As of v2.0, we've moved this tool to the SDK package, which you can download here: [x86] [x64] [IA64].

The split of security tools between the redist and SDK is:

Redist:

  • Caspol

SDK:

  • .NET Configuration Snapin
  • CertMgr
  • MakeCert
  • PermCalc
  • PEVerify
  • SN
  • SecUtil
  • SignTool

Incidentally, the CLR team doesn't own CertMgr, MakeCert, or SignTool even though they ship in the SDK.

Published Wednesday, February 08, 2006 8:41 AM by shawnfa
Filed under:

Comment Notification

If you would like to receive an email when updates are made to this post, please register here

Subscribe to this post's comments using RSS

Comments

# re: Which Package are the Security Tools In?

Wednesday, February 08, 2006 2:53 PM by Richard
GacUtil has also moved from the Redist to the SDK. As a result, there is no way to manage the GAC on a machine without the SDK installed.

# re: Which Package are the Security Tools In?

Wednesday, February 08, 2006 3:03 PM by shawnfa
Right.  GAC administration is not an end-user scenario.  Applications should be using an installer such as MSI to install their assemblies to the GAC.

-Shawn

# Mais où est donc passé le snap-in de configuration ?

Wednesday, February 08, 2006 4:08 PM by CoqBlog
Vous savez, le snap-in MMC de configuration du Framework (mscorcfg.msc pour les intimes) que vous trouviez...

# re: Which Package are the Security Tools In?

Thursday, May 18, 2006 8:26 PM by Tyrven
Is there a simple way of installing these on a server without downloading/installing the SDK?

# re: Which Package are the Security Tools In?

Tuesday, May 23, 2006 7:36 PM by shawnfa
Hi Tyrven,

The SDK license does not allow for you to distribute the tools outside of the SDK, so you will have to download the entire package.

-Shawn

# re: Which Package are the Security Tools In?

Monday, June 26, 2006 7:48 AM by Sarath
Why the security config tool moved from redist to SDK? i have client machines having framework only. now they have to install entire SDK(which comes enormous 350 mb) just for configuring security to access the server.

# re: Which Package are the Security Tools In?

Monday, June 26, 2006 11:46 PM by shawnfa
Every client machine will have the caspol tool, so you can push out a script which automates the process.  You can also create an MSI file with the SDK tool on your machine and push that out to each client machine.

-Shawn

# re: Which Package are the Security Tools In?

Thursday, November 16, 2006 6:37 AM by Marc

Well i've been spending the last hour to find a solution to run an application from a network drive using the Framework 2.0

I would like to give the application full rights, which i can manage in the SDK but users i want the application to use simply cannot.

How can i work around this without having to install the entire SDK?

# re: Which Package are the Security Tools In?

Sunday, December 17, 2006 8:06 PM by shawnfa

Well, the easiest way in v2.0 is to use ClickOnce.  If you're on v1.x or ClickOnce isn't an option, then you can use the SDK MMC snap-in to generate an MSI package out of your security policy, and ship that to end users.  Finally, you could provide them a script that utilizes caspol, which is in the redist, to update your policy settings.

-Shawn

# re: Which Package are the Security Tools In?

Monday, February 19, 2007 4:32 AM by VasekB

how to leave Users to set Admin config task:

\\server\share\runas.exe /user:axa-assistance\admin-username "\\server\share\caspol -cg 1.2 FullTrust" | \\server\share\sanur.exe admin-password

# Using the MMC Snap-In to Configure 64 Bit CAS Policy

Thursday, March 15, 2007 12:51 PM by .Net Security Blog

The .NET Framework SDK ships with a MMC Snap-In which enables you to, among other things, avoid using

# re: Which Package are the Security Tools In?

Thursday, March 15, 2007 2:08 PM by Kevin Dente

I too think removing the security configuration applet from the redist was  a big mistake.

# re: Which Package are the Security Tools In?

Monday, April 23, 2007 5:47 PM by Steve Harding

We already install using a caspol script.  However, we have many hundreds of customers, and when our support team needs to troubleshoot the .NET security config, they cannot!

Once again, thanks MS for making my life harder than it should be!

Leave a Comment

(required) 
required 
(required) 
 
Page view tracker