Summary
The .NET Framework provides the ability to create rich client applications, but there is some information that you need to have to properly administer those applications:
Default security policy will prevent managed code from executing in the Internet zone. You may need to modify this policy to run applications important to your organization.
The absence of the AllowPartiallyTrustedCallersAttribute will prevent the ability for semi-trusted code to call many managed code libraries installed on client machines. If an application needs to use one of these libraries, it will need to be granted full trust to run properly. If that decision is inappropriate, the application simply cannot be executed.
Managed code has been tied into Internet Explorer in ways both similar to and different from ActiveX controls. Understanding how they are related is important for properly controlling your clients.