Share via


Permissions View Tool (Permview.exe)

The Permissions View tool is used to view the minimal, optional, and refused permission sets requested by an assembly. Optionally, you can use Permview.exe to view all declarative security used by an assembly.

permview [/output filename] [/decl] manifestfile
Argument Description
manifestfile The file that contains the assembly's manifest. The manifest can be either a standalone file or it can be incorporated in a portable executable (PE) file. The extension for this file will usually be .exe or .dll, but it could also be .scr, or .ocx.
Option Description
/decl Displays all declarative security at the assembly, class, and method level for the assembly specified by manifestfile. This includes permission requests as well as demands, asserts, and all other security actions that can be applied declaratively. It does not refer to other assemblies linked to the specified assembly.
/h[elp] Displays command syntax and options for the tool.
/output filename Writes the output to the specified file. The default is to display the output to the console.
/? Displays command syntax and options for the tool.

Remarks

Developers can use Permview.exe to verify that they have applied permission requests correctly to their code. Additionally, users can run Permview.exe to determine the permissions an assembly requires to execute. For example, if you run a managed executable and get the error, "System.Security.Policy.PolicyException: Failed to acquire required permissions," you can use Permview.exe to determine the permissions the code in your executable must receive before it will execute.

Examples

The following command displays the permissions requested by the assembly myAssembly.exe to the console.

permview myAssembly.exe

If myAssembly.exe contains a minimum request for FullTrust, the following output appears.

Microsoft (R) .NET Framework Permission Request Viewer.  Version 1.0.2204.18 Copyright (C) Microsoft Corp. 1998-2000

minimal permission set:
<PermissionSet class="System.Security.PermissionSet" version ="1">
   <Unrestricted/>
</PermissionSet>

optional permission set:
   Not specified

refused permission set:
   Not specified

The following command displays all declarative security on the assembly myAssembly.exe to the console. This command displays the method level security demand.

permview /decl myAssembly.exe

The following output appears.

Microsoft (R) .NET Framework Permission Request Viewer.  Version 1.0.2204.18 Copyright (C) Microsoft Corp. 1998-2000

Assembly RequestMinimum permission set:
<PermissionSet class="System.Security.PermissionSet" version ="1">
   <Unrestricted/>
</PermissionSet>

Method A::myMethod() LinktimeCheck permission set:
<PermissionSet class="System.Security.PermissionSet" version="1">
   <Permission class="System.Security.Permissions.ReflectionPermission, mscorlib, Ver=1.0.2204.2, Loc='', SN=03689116d3a4ae33" version="1">
      <MemberAccess/>
   </Permission>
</PermissionSet>

The following command writes the permissions requested by the assembly myAssembly.exe to the file myOutputFile.

permview /output myOutputFile myAssembly.exe 

See Also

.NET Framework Tools | Assemblies | Requesting Permissions | Declarative Security | Demands | Assert | Deny | PermitOnly