• Locked Locked
  • Replies 0 replies
  • Subscribers 4 subscribers
  • Views 1354 views
  • Users 0 members are here
Options
Related
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SUPPORT Q&A - .Net Security settings. Cant log from clients.

Archive User
オフライン

malarie - Thursday, November 12, 2009 10:46 AM:

Good day,

 

I keep having this error when trying to connect to  my innovator server from  clients.

 

URL:  ip_address/innovatorserver

Aras Innovator client has failed to initialize.

Please, contact your system administrator to review your .NET security settings.

 

I have read and followed the .net client security documentation, I ran the  sdns.exe tool on my clients AND on the server but im still having the error message on all clients (even after clearing the cache/history/temp folders).

I can  log from the server no problem. I just have this message when connecting from clients.

 

Clients are Vista with IE7 and XP with IE7.   .Net framework 1.1 and 2.0 are used.

 

Anyone with a clue on why this is happenning?  Any help is much apreciated.  Thanks.


Anonymous - Thursday, November 12, 2009 12:14 PM:

Is ip_address/innovatorserver in the trusted zone of IE?

Can open a command prompt and send me the results of this:

C:WINDOWSMicrosoft.NETFrameworkv2.0.50727CasPol.exe -a -ld

-Chris


SamsAn - Wednesday, November 17, 2010 4:15 PM:

Hello.

The message can appear in the both cases below.

1. You don't have the correct security settings for .NET controls on the client machine.

2. Your client machine cannot even download those .NET control dlls because of some reasons (for example, IIS gives HTTP 500 Internal server error when the browser is requesting the dlls, or your firewall does not allow the dlls to be requested). But this case is handled in the same way as the 1st case. The code is like below

Normal 0 false false false RU X-NONE X-NONE MicrosoftInternetExplorer4

  try
  {
    //the "are sufficient permissions for the controls" boolean flag is calculated here;
    //returns the flag value (i.e. true if enough permissions or false otherwise);
  }
  catch (ex)// "Access Denied" exception may occur.
  {
    //it includes the case when the controls dlls cannot be loaded
    return false; //i.e. false is returned. The same result as for the case when the controls is not loaded.
  }

As for me, the 2nd case should be handled in another way. For example, "Cannot download .NET controls from the server" message should be displayed.

NOTE: You can easily check is it 2nd scenario in your case. Just type in the browser URL like "myinnovator.com/.../Utils.dll" (of course, using your innovator server name). If you can download the dll file using this URL successfully then the 2nd scenario is not your case.

SamsAn.


Vivek - Wednesday, January 23, 2013 11:17 PM:

Microsoft (R) .NET Framework CasPol 2.0.50727.5420
Copyright (c) Microsoft Corporation.  All rights reserved.

Security is ON
Execution checking is ON
Policy change prompt is ON

Level = Enterprise

Code Groups:

1. All_Code: Code group grants all code full trust and forms the root of the cod
e group tree.
   1.1. SCCM: @@No Description@@

Level = Machine

Code Groups:

1. All_Code: Code group grants no permissions and forms the root of the code gro
up tree.
   1.1. localhost/.../: .NET Framework v2.0 Security Settings fo
r Aras Innovator
   1.2. 172.16.80.102/.../SCCM: .NET Framework v2.0 Security
Settings for Aras Innovator
   1.3. localhost/InnovatorServer: @@No Description@@
   1.4. 172.16.80.102/.../: .NET Framework v2.0 Securi
ty Settings for Aras Innovator
   1.5. My_Computer_Zone: This code group grants the FullTrust permission set to
 assemblies from the My_Computer_Zone. Allows full access to all resources. This
 code group has been modified by the Adjust Security Wizard.
      1.5.1. Microsoft_Strong_Name: Code group grants full trust to code signed
with the Microsoft strong name.
      1.5.2. ECMA_Strong_Name: Code group grants full trust to code signed with
the ECMA strong name.
   1.6. LocalIntranet_Zone: This code group grants the FullTrust permission set
to assemblies from the LocalIntranet_Zone. Allows full access to all resources.
This code group has been modified by the Adjust Security Wizard.
   1.7. Internet_Zone: This code group grants the FullTrust permission set to as
semblies from the Internet_Zone. Allows full access to all resources. This code
group has been modified by the Adjust Security Wizard.
   1.8. Trusted_Zone: This code group grants the FullTrust permission set to ass
emblies from the Trusted_Zone. Allows full access to all resources. This code gr
oup has been modified by the Adjust Security Wizard.
   1.9. Restricted_Zone: This code group grants the Nothing permission set to as
semblies from the Restricted_Zone. Denies all resources, including the right to
execute. This code group has been modified by the Adjust Security Wizard.

Level = User

Code Groups:

1. All_Code: Code group grants all code full trust and forms the root of the cod
e group tree.
Success


Pro - Wednesday, August 7, 2013 2:21 PM:

I had similar issues. I could fix the problem on Windows 8, IE 10 by using these scripts:

www.aras.com/.../project-view.aspx

You have to modify the URL in _Aras_ProdServerInstall.bat and Aras_Win7_IE9.reg

On Windows 8 you get the error that it isn't supported. Modify the corresponding version check lines to accept Windows 8 and IE 10. The rest of the scripts already works for Win 8.

Copyright © 2025 Aras. All rights reserved.