Trust Guarantee
Installing the Runtime in the Global Assembly Cache
The easiest way to trust a component is to install it into the GAC.
To add the an assembly to the GAC
- Copy the assembly to the Bin folder of the server.
- Run gacutil specifying the assembly name.
Examples
The following command installs the licensing runtime into the global assembly cache for a website named Customer001.
gacutil /if /r DeployLX.Licensing.v3.dll OPAQUE "Customer001" "Installed on behalf of Customer001 on Feb 02, 07"
gacutil /u /r DeployLX.Licensing.v3.dll OPAQUE "Customer001" "Installed on behalf of Customer001 on Feb 02, 07"
Trusting DeployLX Assemblies
Some providers may not be comfortable installing assemblies in the GAC since they can introduce management problems. Each time the assembly is updated the GAC must be updated and all sites on the machine share the same assembly. Instead of installing assemblies in the GAC the host can explicitly grant trust to assemblies singed with XHEO's strong name keys.
To grant Full Trust to XHEO assemblies
- Install the web_xheo_mediumtrust.config policy file on the host machine in the %FrameworkDir%\v2.0.50727\CONFIG folder. If the host has created their own custom policy file they can use the web_xheo_mediumtrust.config policy as a guide for modifying their configuration to grant permissions to XHEO assemblies.
- Modify the system Web.config file in %FrameworkDir%\v2.0.50727\CONFIG folder to create a new trust level by adding the following to the <securityPolicy> node.
<trustLevel name="XHEO_Medium" policyFile="web_xheo_mediumtrust.config" />
- Configure the IIS website to use the new trust level by adding the following to the <configuration> node of the system Web.config file.
<location path="Name of website in IIS"> <system.web> <trust level="XHEO_Medium" originUrl="" /> </system.web> </location>
ASP.NET Hosts Known to Support Full Trust
XHEO has confirmed that he following ASP.NET Hosts support Full Trust or custom compatibility with DeployLX security requirements. If you know of another host that supports Full Trust leave a comment.
Full Service Hosts
- ORCS Web [Confirmed by XHEO]
- Amazon EC2 [Confirmed by XHEO]
- Verio [Confirmed by Customer]
- Maximum ASP [Confirmed by Customer]