The Security Configuration Files
There are several different security policy configuration files: the enterprise security policy configuration file in %windir%\Microsoft.NET\Framework\v%version%\CONFIG\enterprisesec.config, the machine security policy configuration file in %windir%\Microsoft.NET\Framework\v%version%\CONFIG\security.config, and the user security policy configuration file in %userprofile%\Applicationdata\Microsoft\CLRsecurity config\v%version%\security.config (for Windows 2000 and Windows NT) or %windir%\username\CLRsecurityconfig\v%version%\security.config (for Windows 98 and Windows Me). There may also be web_hightrust.config, web_lowtrust.config, and web_notrust.config files in the %windir%\Microsoft.NET\Framework\v%version%\CONFIG directory.
The security policy files contain configuration settings that pertain
to security for particular assemblies. It is strongly recommended
that you do not edit these files directly, instead using the .NET
Framework Configuration tool (mscorcfg.msc) or
Code Access Security Policy tool (caspol.exe) to
edit security policies. For more information on configuring .NET
security policies, see .NET Framework Security
by Brian A. LaMacchia, Sebastian Lange, Matthew Lyons, Rudi Martin,
and Kevin T. Price (Addison Wesley).
Get .NET & XML now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
