You install the Web Server (IIS) server role on a new server that runs Windows Server 2008 R2. You
install a Microsoft .NET Framework 1.0 application on a Web site on the Web server. The company
security policy states that all applications must run by using the minimum level of permission. You
need to configure the Web site application so that it has the permissions to execute without creating
any other content and without accessing any operating system components. What should you do?
A.
Set the .NET Framework trust level to Full for the Web site.
B.
Set the .NET Framework trust level to Low for the Web site.
C.
Set the .NET Framework trust level to High for the Web site.
D.
Set the .NET Framework trust level to Medium for the Web site.
Explanation:
To configure the website application to have permission to execute without creating other content
or accessing Windows Server 2008 system components, you should configure the .NET Framework
website trust level to full. In the .NET Framework, code access security controls access to resources
by controlling how code runs. When a user runs an application, the common language runtime
assigns the application to any one of the following five zones:
My Computer – The application code is hosted directly on the user’s computer. Local Intranet – The
application code runs from a file share on the user’s intranet. Internet – The application code runs
from the Internet.
Trusted Sites – The application code runs from a Web site that is defined as “Trusted” in Internet
Explorer.Untrusted Sites – The application code runs from a Web site that is defined as “Restricted” in
Internet Explorer.
You can set the security level for each zone to High, Medium, Medium-low, or Low. Reference:
http://support.microsoft.com/kb/832742