B
Bert Nieves
Greetings,
a) Server environment : Windows 2003 Standard
b) Database: SQL Server 2000
c) Development: Combination of VB6 COM+ , ASP.NET, and VB.NET.
Looking at potential tracks for an implementation of a server-centric
security model for an n-tier, intranet based system. All business logic and
business-related workflows will reside on the server with several different
UIs accessing (.NET forms, ASP.NET, VB6 forms). Security requirements are
pretty solid with an emphasis on role-based security mechanisms and a "more
granular" set of data filtering (views). I'm looking at the following
tracks for the implementation of the Role-based portion of this security
model ...
1) COM+ Role based implementation
2) Win2K3 Authorization Manager based role implementation
3) Custom .NET coding using the System.Security.Permissions namespace
Can anyone recommend and/or relate their experiences in choosing any 1 of
the above 3 choices for user-authentication and authorization. I'm most
familiar and experienced with COM+ Roles. I would really appreciate some
MVPs chiming in
Thanx in advance.
Bert Nieves
(e-mail address removed)
a) Server environment : Windows 2003 Standard
b) Database: SQL Server 2000
c) Development: Combination of VB6 COM+ , ASP.NET, and VB.NET.
Looking at potential tracks for an implementation of a server-centric
security model for an n-tier, intranet based system. All business logic and
business-related workflows will reside on the server with several different
UIs accessing (.NET forms, ASP.NET, VB6 forms). Security requirements are
pretty solid with an emphasis on role-based security mechanisms and a "more
granular" set of data filtering (views). I'm looking at the following
tracks for the implementation of the Role-based portion of this security
model ...
1) COM+ Role based implementation
2) Win2K3 Authorization Manager based role implementation
3) Custom .NET coding using the System.Security.Permissions namespace
Can anyone recommend and/or relate their experiences in choosing any 1 of
the above 3 choices for user-authentication and authorization. I'm most
familiar and experienced with COM+ Roles. I would really appreciate some
MVPs chiming in
Thanx in advance.
Bert Nieves
(e-mail address removed)