You install the Web Server (IIS) server role on a new server that runs Windows Server 2008 R2.
You install a Microsoft .NET Framework 1.0 application on a Web site on the Web server.
The company security policy states that all applications must run by using the minimum level of permission.
You need to configure the Web site application so that it has the permissions to execute without creating any other content and without accessing any operating system components.
What should you do?
A.
Set the .NET Framework trust level to Full for the Web site.
B.
Set the .NET Framework trust level to Low for the Web site.
C.
Set the .NET Framework trust level to High for the Web site.
D.
Set the .NET Framework trust level to Medium for the Web site.
Explanation:
An application’s trust level determines the permissions that are granted by the ASP.NET code access security (CAS) policy. CAS defines two trust categories: full trust and partial trust. An application that has full trust permissions can access all resource types on a server and perform privileged operations. Applications with full trust are affected only by the security settings of the operating system.
ASP.NET applications that use .NET Framework version 1.0 always run with full trust. By default, ASP.NET applications that use .NET Framework version 1.1 and 2.0 run with full trust. However, you can configure the trust levels of these applications.
Source: http://technet.microsoft.com/en-us/library/cc772237(WS.10).aspx