Role-Based Security

Business applications often provide access to data or resources based on credentials supplied by the user. Typically, such applications check the role of a user and provide access to resources based on that role. The common language runtime provides support for role-based authorization based on a Windows account or a custom identity. Before reading this section, make sure you understand the material presented in Key Security Concepts.

In This Section

• Introduction to Role-Based Security
  Provides an overview of .NET Framework role-based security.

• Principal and Identity Objects
  Explains how to set up and manage both Windows and generic identities and principals.

• PrincipalPermission Objects
  Describes how to implement permission objects declaratively and imperatively.

• Role-Based Security Checks
  Describes how to implement security checks declaratively, imperatively, or by directly accessing a principal object.

• Interoperation with COM+ 1.0 Security
  Provides an overview of how COM+ 1.0 security interoperates with the .NET Framework.

Related Sections

• Key Security Concepts
  Introduces fundamental concepts you must understand before using .NET Framework security.

• Security Tools
  Lists and briefly describes the security tools included in the .NET Framework.