Navigation
Sponsors
Screenshots
)
)
Documentation
Run Luecky from a network share
Microsoft has tightened the application privileges in the new Windows versions. This improves the security of the computers. Unfortunately, this requires also more configuration work to get all programs running. If you like to run Luecky from a network share then you have to configure the operating system.
1. Annoying security warning
In new versions of Windows you can see the following security warning if you try to run an application from a network share (Picture 1):
){kind=link}
"The publisher could not be verified. Are you sure you want to run this software?"
The user is able to click the "Run" button and start Luecky anyway. But the security warning is annoying for the user because he is going to see this dialog every time he starts Luecky from a network share. You can add the server of the network share to the "Local Intranet" zone of the computer. This action suppresses the security warning. To achieve the suppression follow the step-by-step guidance (Picture 2):
){kind=link}
Attention: Wrong configuration might result in reduced computer security.
- Login with a user that has administrator rights.
- Choose: Control Panel - Internet Options - Security (tab) - Local Intranet
- Click on the Sites button and then press Advanced.
- Enter the server name (e.g. "\\Server1") of the machine which exposes the network share. Add the server as a website to the zone.
- Now you should see the server name in the list of websites of this zone.
2. Configuration of the Code Access Security
Applications of the newest generation (.NET applications) have an extended security model which is known as "Code Access Security". If a .NET application is started from a network share then it gets reduced execution rights. But Luecky needs the same execution rights as it gets if the program is installed locally. Otherwise the following error message is shown (Picture 3):
){kind=link}
"Luecky has stopped working"
The execution rights can be set as follows (Picture 4):
){kind=link}
Attention: Wrong configuration might result in reduced computer security.
- Login with a user that has administrator rights
- Choose: Start - Accessories - Command Prompt
- Enter the following line. Please replace the bold part with the correct
server path of the directory that contains Luecky:
C:\Windows\Microsoft.NET\Framework\v2.0.50727\caspol -m -ag 1.2 -url file://server/Share/Luecky/* FullTrust
- Answer the question with "yes".
3. References
Further information about the topics addressed in this article can be found at the following links:
- MSDN: Code Access Security
- Microsoft Help and Support: How to configure CAS policy to run application from anywhere within Intranet Zone
- .NET Security Blog: Using CasPol to Fully Trust a Share