Granting Trust to Documents (2007 System)
Applies to |
---|
The information in this topic applies only to the specified Visual Studio Tools for Office projects and versions of Microsoft Office. Project type
Microsoft Office version
For more information, see Features Available by Application and Project Type. |
A Visual Studio Tools for Office document-level project has the same security requirements for using certificates, trust prompts, or inclusion lists as application-level projects. In addition, the document or workbook must be located in a directory that is designated as a trusted location.
Trusted Locations
Applications in the 2007 Microsoft Office system have Trust Centers where users can configure security and privacy settings, such as trusted locations. For Visual Studio Tools for Office solutions, the local computer is considered a trusted location. However, because of higher risk, there are certain directories that cannot ever be trusted, such as the temporary folders for the system, for each user, and for Internet Explorer.
For more information about the Trust Center, see Security policies and settings in the 2007 Office system. For more information about how to create, manage, remove, and configure trusted folders, see Configure trusted locations and trusted publishers settings in the 2007 Office system and Create, remove, or change a trusted location for your files.
Considerations for Visual Studio Tools for Office
There are several security concerns when you consider which folders to add to the trusted locations:
Visual Studio Tools for Office considers local folders to be more secure and are implicitly trusted. Remote locations such as file shares must be designated as trusted locations.
When you add a directory to the trusted locations, this action grants full trust not only to Visual Studio Tools for Office solutions, but also to VBA and ActiveX code. For this reason, the root directory and the My Documents folders should not be designated as trusted.
Although the document itself is trusted by using the trusted locations, additional permissions are needed to trust the customization. You can grant full trust to the customization by using certificates, the trust prompt, or the inclusion list.
You can store the document or workbook of a document-level solution in the same directory as the assembly, or in a different directory. For example, the document could be located on a SharePoint server and the assembly could be located on a network file share. For more information, see How to: Deploy a Document-Level Office Solution to a SharePoint Server (2007 System).
See Also
Tasks
Troubleshooting Office Solution Security (2007 System)
Concepts
Granting Trust to Office Solutions (2007 System)
Trusting Office Solutions by Using Inclusion Lists (2007 System)