Cross-domain policy files enable access to web services outside the application’s domain. By default, Adobe Flash and Microsoft Silverlight web applications are not allowed to access web services that reside outside the domain where the application is hosted.
When the Cross-domain Policy Files feature is enabled, two cross-domain policy files will be installed in the IIS web server root folder: crossdomain.xml for Adobe Flash applications and clientaccesspolicy.xml for Microsoft Silverlight applications.
You can limit access to specific web server resources, for example, folders, files, types of requests, and protocols, by creating or modifying a cross-domain policy file. To learn how to do this, see the following:
- To create or modify a crossdomain.xml file, see the Adobe cross-domain policy file specification.
- To create or modify a clientaccesspolicy.xml file, see Making a service available across domain boundaries and Network security access restrictions in Microsoft Silverlight.