Saed's Blog

SharePoint Learning Curve For Beginners

2010-01-08T18:41:00Z

Normal 0 false false false EN-US X-NONE X-NONE

SharePoint is a technology provided by Microsoft ten years ago, and this November Microsoft has released the 4^th version of SharePoint (SharePoint Server 2010). It’s a widely used technology in the world; even it’s the Product that returned the highest revenue in all Microsoft products. To define SharePoint you may need several posts , its huge platform that provide a lot of features rather it’s a SharePoint Extranet or Intranet , or SharePoint facing Internet.

I have always been asked through my SharePoint sessions that we need the right resources and topics to learn SharePoint and be trained on it. It’s true that SharePoint has a high set of features that you can’t cover all, and thus you have to be specialized in one area, rather to be a SharePoint Administrator, or SharePoint Architect, or SharePoint Developer or SharePoint Designer. One role in the SharePoint land is enough for you, to be unique and build successful career. Once you want to know about SharePoint and train yourself on it, you will face issues finding the right books, articles, tutorials, and posts in this massive number of learning resources. Also you wish that you find an article that will put you on the right direction in your training journey, that will also plan your training , that will let you know where to start and where to go. In this article I’ll try to address the things that I mentioned.

The first step in this journey is to know what SharePoint is from a business perspective and then more detailed from technical perspective. And the quick guide that I always recommend that you read if you don’t know anything about SharePoint is “SharePoint For Dummies” book . This plain-English guide offers simple instructions and focused coverage of this powerful tool, giving you practical solutions to real-world SharePoint challenges. After you read this introduction about SharePoint and starting to feel the SharePoint, you will be able to enter the Training Cycle of SharePoint easily.

The first cycle in the SharePoint Training Cycle, you might need to think about training on SharePoint from end-user perspective, and the SharePoint end-user is divided into two roles , either be member or site owner. Member training is intended for those people that are members/users of a SharePoint 2007 site, but are not the administrator of that site. Members would upload and download documents and work mainly through the web-browser interface and Microsoft Office. Topics in the Member course include:

Navigating and searching SharePoint sites
Adding and Modifying Content
Document Management
Use of recycle bin
Use and management of alerts
Outlook Integration
List management
Understanding and using workflow
Meeting and Document Workspaces

Site Owner training is intended for those people that are not typically in the IT Department, but have been given responsibility for the administration/organization of a SharePoint 2007 site. Topics in the Site Owner course include:

Creating and Managing Lists, Libraries and Views
Managing Users and Groups
Creating and Managing Sites and Web pages
Site Customization
Site Administration

The second cycle in the SharePoint Training is that you train yourself on the SharePoint Central Administration which is managing the Platform Services from ITPro perspective and managing SharePoint Farms and Web Applications, and we need to understand that this cycle is not a short one , the Administration in SharePoint is the core of any SharePoint project as it includes a lot of things , and it need several months to start considering yourself as SharePoint Administrator. The Administration part is the part where you implement and execute the architecture, planning, and the design of the SharePoint project. In other word this is the most operating part in the SharePoint project. It may include several topics that you might need to think about taking look at them:

· Plan server topology.

· Install and configure WSS and MOSS servers.

· Upgrade from WSS 2.0 to 3.0.

· Monitor the server to detect problems early.

· Configure authentication.

· Secure external access with SSL.

· Set up SharePoint security and permissions.

· Control site settings through the Central Administration web site.

· Control site settings through the stsadm command line.

· Backup and restore SharePoint data.

· Customize the overall site appearance through branding.

· Set up network infrastructure (DNS/AD/IIS) to support SharePoint.

· Manage MOSS My Sites, import profiles, and other shared services.

· Create and apply site quotas.

· Plan for and design a Microsoft Office SharePoint Server 2007 implementation

· Deploy Microsoft Office SharePoint Server 2007

· Administer Microsoft Office SharePoint Server 2007

· Implement a portal solution with Microsoft Office SharePoint Server 2007

· Implement a content management solution with Microsoft Office SharePoint Server 2007

· Implement a business intelligence solution with Microsoft Office SharePoint Server 2007

· Implement a search and indexing solution with Microsoft Office SharePoint Server 2007

· Maintain and optimize Microsoft Office SharePoint Server 2007

The third cycle in the SharePoint Training Cycle is for who are interested in being a SharePoint Architect, and to be honest this role is not an easy role in the SharePoint land , to be good at this you need best practices and experience , it’s a long term path . In any case you might need to consider the following topics:

· SharePoint Architecture overview

· SharePoint Foundation architecture

· SharePoint Administration architecture

· SharePoint Configuration architecture

· SharePoint Information Architecture

· SharePoint Search Architecture and Best Practices

· SharePoint Business Intelligence Architecture and Best Practices

· SharePoint Business Data catalog Architecture.

· SharePoint Collaboration tools architecture.

Good book that I read recently that is related to SharePoint Architecture, and I strongly recommend this book. The name of this book is “SharePoint Best Practices 2007”, you can find in the amazon site. This book includes a lot of best practices and practical experiences in real SharePoint scenario written by SharePoint MVPs.

The final cycle in the SharePoint Training Cycle is for who are interested in being a SharePoint Developers, it’s the target of all the .NET developers who are interested in SharePoint. The development in SharePoint is an easy role. The Developer should have a solid understanding of C# and or VB.net and a solid understanding of the SharePoint API as a whole. Building workflows from a completely custom Visual studio direction as well as custom coding SQL and SQL server manipulation and maintenance are certainly highly sought after. In addition to these things that are in the developer’s tool box, comes the addition of more XML/XSLT minded development. Being that most things in SharePoint are xml based or can be converted and fed as xml/xsl, these are just another set of skills are another way that the developer can increase their value. You should consider the following during this training cycle :

· Developing Features.

· Web Parts Development.

· Data Lists Programming.

· Content Types Development.

· Programming Document Libraries.

· Building Workflows using SharePoint Designer.

· Packaging and Deploying SharePoint Artifacts.

The SharePoint Mutt (Superstar)

Let’s see, how do I explain the SharePoint Mutt? I don’t think it’s wise for a corporate organization to go after the “IT STAR.” First, if anyone tells you they are an expert in everything SharePoint, they are probably pulling your leg. There is always someone else that knows a different part of MOSS or integrating features better than the last. But the mutt is what I think, as close as you can get to the IT star as it pertains to SharePoint. The Mutt knows a whole lot of it, but not everything about all of it. He or she gets in the mix with setting up the architecture and the physical environment, administering the services once the farm is up and running and doing development work to some degree or another. The Mutt is the person that knows those gray areas better than the position that only focuses on let’s say administration. They also have a bigger picture view of the project. The mutt is a designated hitter of sorts; they can get involved in any aspect of the project from web parts to server patches. In this consultant’s opinion, the mutt is one the most valuable person on the SP team. The Mutt will almost always have a desire to learn more aggressively, have the initiative to be involved and get results from all directions. They should also be humble; there is no shame in saying they don’t know something but as a specialist in the general, they’ll be the first to figure it out .

Finally I hope that this article address your concerns about SharePoint training as beginner, and eliminate the doubts of the SharePoint roles and responsibilities. I’ll really appreciate your comments and feedback, and if you think that there any important topic that need to be covered in the training, please post it and I’ll edit the article accordingly.

HTH.

Regards,

Saed

Microsoft TechDays in Palestine

2009-10-27T13:50:11Z

For the first time in Palestine , Microsoft in cooperation with PalDev community will present 3 TechDays in Hebron,Ramallah ,and Nablus from 1/11 till 3/11. The main activity in the event will be the Official Launch of Windows 7 and Imagine Cup 2010 as Mr.Jihad Hammad mentioned in his blog post.

Other topics in the event will be as the following :

IE 8
WebsiteSpark
Visual Studio 2008 and 2010 Sneak Peak.
SharePoint 2007 and 2010 Sneak Peak.
Windows Server 2008 R2.
BizSaprk Program
Imagine Cup (Launch)
MSPs Program
.Net clubs
DreamSpark

The first Day (1/11) will be in Hebron at Polytechnic University from 11:30AM till 2:30PM. The second Day(2/11) will be in Ramallah at GrandPark hotel from 9:00AM till 1:00PM. Finally the third day(3/11) will be in Nablus at Nijah University from 9:00AM till 1:00PM .

Your attendance and participation in this event is most appreciated !

For more information :

Microsoft In Palestine

Looking forward to see you there guys.

Thanks,

Saed Shela

I Passed MCTS 70-562 ASP.Net 3.5 : My Experience

2009-08-28T15:41:26Z

Before one week i have registered for MCTS 70-562 Exam , and i was not pretty sure if am ready for it or not . I have studied the exam for two month from its study guide named “MCTS 70-562_Microsoft® .NET Framework 3.5 ASP.NET Application Development Study Guide” , its one of the best books that i have ever read in my life , comprehensive ,reprehensive , and great strip down of lessons. Its very good book for every asp.net developer its my had book now whenever, wherever i code . I have started the exam and i was confident that I'll pass it as i have studied the exam very good , and Yes i have passed with 968/100 grade which is very good grade (actually the grades doesn't matter in these certification as long as you pass) . The book that i have studied covered all the exam aspects and ,material. Now I'm planning to get the MCPD ASP.Net 3.5 in the beginning of November , and still looking for the its book till now.

I just wanted to share my experience in taking the 70-562 exam , so if others are planning to take it , they now how to prepare for it.

Thanks,

Saed Shela

Executing Sql Scripts (.sql files) from Code-Behind

2009-08-28T15:23:30Z

We was building Administration Module for system , and some requirement was that the administrator can change the behaviour of a major function in the system . And to apply this change , we need to alter a lot of procedures in the database. Thus we have figured running the Sql script in the database that contains Alter functions from our code , when the administrator change the settings.

The following code is a sample of how we have run our .sql files in the database from the code:

using System.Data.SqlClient;

using System.IO;

using Microsoft.SqlServer.Management.Common;

using Microsoft.SqlServer.Management.Smo;

 

namespace Training

{

    class Program

    {

        static void Main(string[] args)

        {

            string sqlConnectionString = "Data Source=(local);Initial Catalog=AdventureWorks;Integrated Security=True";

            FileInfo file = new FileInfo("C:\\GetAllSuper.sql");

            string script = file.OpenText().ReadToEnd();

            SqlConnection conn = new SqlConnection(sqlConnectionString);

            Server server = new Server(new ServerConnection(conn));

            server.ConnectionContext.ExecuteNonQuery(script);

        }

    }

}

The Server class is used to create new instances of Sql Server 2005 ,and use it as you want in your code. But please be advised that its very heavy in your application , and the performance is not that good , but looking at the situation this will run once in good portion of time. If you running dozen number of files , you may want to use StringBuilder instead of String in reading the files , it will improve performance.

I hope it was helpful

Thanks,

Saed

Configuring SSL for SharePoint Web Application in Windows Server 2008

2009-07-25T13:31:00Z

In one session of the SharePoint Training that i teach , we have faced a problem in the SSL configuration for SharePoint Web Application in W2k8. We was trying to obtain the SSL self signed certification for certain site but when we open the site page nothing is displayed . Therefore after a lot of digging inside the Issue i have found that the problem was silly.

Thus in this article i will strep down the instructions step by step for this configuration. Before we start i think that we need to go through some definitions and explanation regarding the SSL and its Certificates.

Secure Socket Layer(SSL) is security protocols used to protect your information when you send and receive critical information like credit card info , email password , bank account information and Extranet Site Connection. In SSL there is no possibility that it could be interacted with third party. SSL always use the HTTPS , the secure HTTP protocol. It has private and public key for encryption and decryption of the data. There is different types of digital certificates and they are Self Signed , Windows CA , and Third Party CA(not free) . In this article we will use the Self Signed Certificates.

First step is go IIS Manager ,click on the root of the IIS , and you will find “Server Certificates” double click on it .

Second step , you will find in the right side the actions of the Server Certificates , click on the “Create Self Signed Certificate”.

Then a screen with Friendly Name textbox , Type the Name you want in that Textbox. Please note that this certificates can be used for different sites using SSL , but its always recommended that every IIS website have unique one for browser security reasons.

Now lets go to SharePoint Central Administration , and click the Application Management Tab , you will find “Create or Extend Web Application” click it , then click extend web application and you will get the Extend Web Application Screen with different options and attributes.

Click Yes for Enable SSL option and then click OK.

Go to the IIS manager , and then find the IIS website that you have just extended , then right click and click edit binding.

You will fins one binding , you click this binding ,. then click edit , and you will find a place to assign the certificate , chose the certificate you want and then click OK and save .

Now almost we have finished , you can go now and browse the Web Application that you have assign the SSL to. When you browse you will get this screen . Press continue to this website(not recommended).

Some cases you will fins a certificate error when you continue browsing , this is because your Certification is not trusted , you must import a trusted certification (3rd Party Certificate). Now you can browse using the HTTPS protocol . If you use Firefox there will be nor problem in the Certificate trust issue , as the browser will accept it. Only in IE 7 or later this error appear.

SSL in SharePoint is used commonly for the Extranet zones sites , for secure connection over the WWW .

To enable SSL for SharePoint Sites in windows serer 2003 .

http://www.sharepointblogs.com/tmt/archive/2008/01/30/configuring-ssl-in-sharepoint-2007-development-environment.aspx

I hope that my experience in SSL helped you Guys.

Thanks,

Saed Shela.

Technorati Tags: SharePoint,IIS 7.0

Code Access Security(CAS): 3- DotNetNuke CAS

2009-06-06T12:00:00Z

Technorati Tags: .Net FrameWork,DotNetNuke

In the pervious articles we have mentioned the Trust Levels in CAS, The Trust Level defines a security policy context, which all the asp.net files in a
web application run under. CAS have five levels named full,high, medium, low and minimal, each of which progressively reduce levels of access to
various capabilities.The Default one is Full , and this doesn't grant most kind of permissions, thus its not recommended at all. Microsoft always recommended the Medium Trust policy for share servers and internet facing servers .

When the administrators takes responsibility for publishing DNN Portal on their server, they think about two things when it comes to configuring the DNN for CAS. First thing is what the CAS policy that they will implement in their server , second thing is how can this trust level limit the DotNetNuke functionality.

Lets assume the they need to run the Medium Trust Level policy in their web application that run DotNetNuke. How can this policy effect the DotNetNuke functionality? this is the question. Actually the DNN core code doesn't call any namespace that do not run under medium trust.Thus when you develope or import a thirty part module , you think about the namespace that you use when developing ……. Yes you can use all the dnn namespaces under partial trust environment without any security fail.

In partial trust environment you may face that SQL authentication is restricted. The Sa account and a blank password in your dnn connection strings will not be supported (And its also not recommend to use even if its running under full trust ). Another restriction is the web service permission is so limited in partial environment. But always their is workaround , you can configure it manually by creating custom level that is based on Medium Trust Level, you just need to play with the machine.config and the web.config to free up the web services permissions. Any third party module that will use unmanaged code via pinvoke, access events logs or the registry or use OLE DB sources will fail in medium trust level.

After this explanation it may come to your mind can i run it in Low Trust Level, well my friend DNN needs some air to breath , to be honest the dnn portal will not work under low trust level , but why ?… One bad thing that low level doesn't allow its the SQL client permissions . Yes i know most of the .net applications will not work on low level permissions. And just to mention , if you run the Full trust in dnn your assemblies can do what ever they want ,and the hackers will be very thankful and grateful for your gift !! .

These are two experiences with CAS and DotNetNuke :

Code Access Security Issue for web farms with a separate file server

Security Exception ZedGraphWeb

To know more about what can be working on different trust levels please see the tables below

-Default ASP.NET Policy Permissions &Trust Levels

So we will continue later with our articles about CAS , next article is most excited one . Its the “ Windows SharePoint Services 3.0 and CAS “. I hope that i helped with this article.

Thanks,

Saed

Code Access Security(CAS) : 2- Configuration

2009-06-05T18:34:13Z

After my first article that was introduction to CAS , and as i have promised today we will make some configurations on the CAS.

Our configuration will be on .Net Framework 2.0 , to be honest i didn’t practice it on 3.5 , but I'll soon and I'll post my experience here.

The .NET Framework Configuration tool (Mscorcfg.msc) is a Microsoft Management Console (MMC) snap-in supplied with the .NET Framework that provides a graphical interface to manage various aspects of .NET configuration. We will talk here only about the Security configuration using the mentioned tool. You can perform many different CAS-related tasks, including the following:

Adding new permission sets
Adding new code groups
Increasing an assembly’s trust
Assembly Evaluation in order to determine which permissions to assign
Adjusting zone security
Resetting policy levels

As you can see in the above picture. We have three Security Policy types (Enterprise , Machine , User ). Enterprise is for the assemblies that run on servers and it can be configured with the AD DS help. Machine is the assemblies that is configured in the Machine level (per machine ).

Assembly Evaluation in order to determine which permissions to assign

Before you start configuring the security of the assembly , you need to know what this assembly hold for you . You need to evaluate the assembly in order to determine which permissions you must assign . The following are the steps to evaluate the assembly using .NET Framework 2.0 Configuration:

Right Click on the “Runtime Security Policy “ , then click evaluate assembly

2. You will see the above screen , you need to choose the assembly that you want to evaluate , then choose the type (High l, and Low level).Then choose your policy level that you want to evaluate.(All Levels will show you everything )

3. Clicking Next will show you the below screen.( It depend on the assembly you have choose ) Here you go the evaluation is in front of you now .

Depending on the assembly that i have choose , my assembly have nothing to do with security. In other words it have the default(Minimum) permissions. So this assembly need good security care. Lets configure it.

Creating named permission sets

We have two ways to this , even by code or by configuration tool . lets see Both.

Using Configuration Tool :

Click any policy you need to create the permission set on it . Then fo to Permission Sets and right click then New.. .

Actually the assembly that I'm using in my tutorial is sloppy one ( i cannot trust it ) , its a third part assembly (from the internet ) , and i don’t want it to rune my registry so i will configure it correspondingly .

You have two options , either by creating it using the wizard or by importing the definition from XML file. Well lets do it by the first way.

Fill the Name and description then click Next .

Then select the Permission that you want to grant and Click ADD . In my example i will select Registry and click add then the Above screen will appear . What i need to do is just specify the Registry Key that i want protect. The click finish and your permission set is created.

Programmatically creating Permission set (Write to XML file)

In the Above example we have experienced the Import of Permission Set from Xml file. The question is how to create this XML file . We wil grant some secuirty permissions in this example.

The complexity of information in the XML description of a named permission set means that it is easier to create this information programmatically. This is easy to do by creating a System.Security.NamedPermission object, populating it with permission objects, and calling the ToString method on the System.Security.SecurityElement returned by the ToXml method. The following code demonstrates the creation of the TestSet named permission set (whose XML description we just listed) and displays it to the console :

        1: // Create an empty NamedPermissionSet

       2: NamedPermissionSet ps = new NamedPermissionSet("TestSet", PermissionState.None);

       3:  

       4: // Add an unrestricted FileIOPermission        

       5: ps.AddPermission(new FileIOPermission(PermissionState.Unrestricted));

       6:  

       7: // Add a SecurityPermission with Assertion and Execution permissions

       8: ps.AddPermission(new SecurityPermission(SecurityPermissionFlag.Assertion |

       9:     SecurityPermissionFlag.Execution));

      10:  

      11: // Display an XML version of the named permission set to the console.

      12: Console.WriteLine(ps.ToXml(  ).ToString(  ));

How to Add a Code Group

To add a code group, start the .NET Framework 2.0 Configuration tool and perform
the following steps:

Expand the My Computer node and then expand Runtime Security Policy.
Expand Enterprise, Machine, or User, depending on the policy level in which
you want to define the code group.
Expand Code Groups, expand All_Code (if possible), and examine the existing
child code groups. If the code group that you want to create defines a subset of
permissions for an existing code group, click that code group. Otherwise, click
All_Code.
Click Add A Child Code Group.
On the Identify The New Code Group page, type a name and a description, and
then click Next.
On the Choose A Condition Type page, specify the condition type for the code
group by choosing the evidence that the runtime will use to identify the code
and then click Next.
On the Assign A Permission Set To The Code Group page, select the Use
Existing Permission Set option if one of the current permission sets exactly
meets your needs. Otherwise, select the Create A New Permission Set option
and then click Next.
If you selected the Create A New Permission Set option, perform the following
steps:
a. On the Identify The New Permission Set page, specify a name and description
and then click Next.
b. On the Assign Individual Permissions To Permission Set page, click the permissions
you want in the permission set and click Add. For each permission,
specify the permission settings that are unique to that permission,
click OK, and then click Next.
On the Completing The Wizard page, click Finish.

Other Security Policy Administration Options

Here we outline a number of other operations available through Mscorcfg.msc that you may find useful. By right-clicking the Runtime Security Policy node in the console tree,.

The commands available to you are:

New...

Creates a new policy level based on the default security configuration . You can also specify the location where the policy file will be stored.

Open...

Opens a new policy level from a specified file.

Reset All...

Allows you to reset all security policy to the default configuration . You can also reset individual policy levels to the default settings by right-clicking the individual policy level nodes in the console tree and selecting "Reset" from the shortcut menu.

Adjust Security...

Provides a simple interface through which to adjust the default machine security policy You can configure the level of trust you want to grant to each of the Internet Explorer zones, which modifies the named permission set assigned to that code group.

Evaluate Assembly...

Allows you to test an assembly to see what code groups the assembly is a member of and what permissions policy resolution would grant to the assembly.

Trust Assembly...

Allows you to define the minimum level of trust that will be assigned to an assembly.

Create Deployment Package...

Allows you to create a Windows Installer (.msi) file containing the definition of a security policy level from the current machine. Running this file on a target machine will configure the policy level of that machine. This simplifies the task of configuring security policy on a large number of machines, but .NET contains no mechanism to perform the distribution process. You can simply send the file to people that need it via email or use the normal software distribution processes used by your organization.

Conclusion:

This was the second article in CAS , and as i have talked before we will have another three articles to cover most of the CAS tools and usage.

I hope that this article was helpful for you all.

Thank You,

Saed Shela

Code Access Security(CAS): 1- CAS Introduction & Overview

2009-05-23T18:31:02Z

Most of the people or software end users when they hear the word Authorizations or Authentications , first thing comes to their minds is Users. That's a sure thing in this world , but when it comes to IT people they think about it more deep , they will think about the Code Access and Users as well.

So what is CAS ?, how can we use it? , why we should use it ?, where we will use it? , and when we will use it ?.

What is CAS ?

CAS allows you to restrict actions based on certain characteristics of the assemblies that are executing rather than on the identity of the current user. Maybe this definition will not satisfy our lovely Pro Administrators, they will prefer to say that CAS is feature that manage the code access of individual .Net Framework applications without making the characterises of the assemblies a major requirement.

CAS identifies assemblies using Evidence. Evidence is the information that the runtime gathers about an assembly to determine to which code groups the assembly belongs. Some examples of the information that it gather are the location where the assembly is stored, a hash of the assembly’s code, or the assembly’s signature. An assembly’s evidence determines which code group it belongs to. Code groups, in turn, grant an assembly a permission set.

Security policy is the configurable set of rules that the CLR follows when determining the permissions to grant to code. There are four policy levels - Enterprise, Machine, User and Application Domain, each operating independently from each other. Each level has its own code groups and permission sets. They have the hierarchy given below.

To be able to manage the security that the CLR enforces, an administrator can create new or modify existing security policies. Before the CLR loads an assembly, it checks the assembly’s credentials.The CLR assigns a security policy to the assembly depending on the level of trust granted. The system administrator controls security policies to fend off malicious code. The best approach in setting the security policies is to grant no permissions to an assembly for which you cannot establish an identity. The stricter you define the security policies, the more securely your CLR will operate.

How could we use CAS?

CAS is completely different from the Operating System security(CAS is executed before OSS). Actually CAS have standalone Administrator Configuration tool (Open Control Panel> Open Administrative tools—> Microsoft .NET Framework 2.0 Configuration), and this is not the only one way of using it , there are several other ways to use CAS as example we can use it in our code declaratively or imperatively not only in the assembly level also it can be done in the Methods level . For more information :-

How To: Use Code Access Security in ASP.NET 2.0

Code Access Security in Practice

What Challenges have created the idea of CAS (Why & When to use CAS) ?

Imagine this ……… Your program needs to write and read from Registry.

In the "old days", before the .Net Framework, the only way to allow/deny the rights to read and write from the registry would be:

NTFS/Share permissions on the application
Permissions on the registry keys
A home-brew authentication/authorization scheme that you include in your program

But, do you see a problem? For these steps to be effective, you must trust that the program has your best interests at heart. The .Net Framework attempts to fill in that gap... what if the program was sloppy, careless, or malicious? What then?

That's where Code Access Security comes in... to protect you from a rogue application. In this example, the Framework can be configured to deny access to the local registry for any "untrusted" .Net application.

Another restriction areas that you could use CAS for are :-

Read/Write files.
Sending Emails\Attachments.
Accessing the OS process.
Preventing Virus from Spreading .
Sending confidential files.

Conclusion:-

I hope that i gave you some helpful information in this article,. To be honest this article will be just begging for other related Articles that are coming soon. With in the Next two weeks I'll write at least other four articles about CAS. The articles are :-

Code Access Security(CAS) : 2- Configuring CAS
Code Access Security(CAS) : 3- CAS in DotNetNuke
Code Access Security(CAS) : 4- CAS in Windows SharePoint Services 3.0
Code Access Security(CAS) : 5- CAS in Reporting Services

Helpful Links:-

I hope that it was helpful.