SecurityManager.ResolvePolicy Method (Evidence, PermissionSet, PermissionSet, PermissionSet, PermissionSet)

Note: This API is now obsolete.

Determines what permissions to grant to code based on the specified evidence and requests.

Namespace:   System.Security
Assembly:  mscorlib (in mscorlib.dll)

[ObsoleteAttribute("This method is obsolete and will be removed in a future release of the .NET Framework. See for more information.")]
public static PermissionSet ResolvePolicy(
	Evidence evidence,
	PermissionSet reqdPset,
	PermissionSet optPset,
	PermissionSet denyPset,
	out PermissionSet denied


Type: System.Security.Policy.Evidence

The evidence set used to evaluate policy.

Type: System.Security.PermissionSet

The required permissions the code needs to run.

Type: System.Security.PermissionSet

The optional permissions that will be used if granted, but aren't required for the code to run.

Type: System.Security.PermissionSet

The denied permissions that must never be granted to the code even if policy otherwise permits it.

Type: System.Security.PermissionSet

An output parameter that contains the set of permissions not granted.

Return Value

Type: System.Security.PermissionSet

The set of permissions that would be granted by the security system.

Exception Condition

This method uses code access security (CAS) policy, which is obsolete in the .NET Framework 4. To enable CAS policy for compatibility with earlier versions of the .NET Framework, use the <legacyCasPolicy> element.


Policy fails to grant the minimum required permissions specified by the reqdPset parameter.

This method invokes the security policy engine, providing it with evidence of the calling code's identity and the set of permissions the code requests. The result is determined by the security policy. This method returns the set of permissions that would be granted by the security system, and returns the set of permissions that would be denied as an output parameter. The effective granted permissions are those in the granted set that are not in the denied set.

.NET Framework
Available since 1.1
Return to top