Configuring the Software Restriction Policy
When you explicitly set the software restriction trust levels of a COM+ application, you are overriding the default systemwide settings for the software restriction policy. This is often necessary for COM+ server applications because the systemwide restriction policy is set the same for all server applications (because they all run in the same file, dllhost.exe).
Note When you set the trust level of a COM+ library application, you are affecting the systemwide software restriction policy for that application. For an overview of how to use the software restriction policy in COM+, see Software Restriction Policy.
To set the software restriction policy
- Right-click the COM+ application for which you are setting the restriction policy, and then click Properties.
- In the application properties dialog box, click the Security tab.
- Under Software Restriction Policy, select the Apply software restriction policy check box to enable setting the trust level; clearing the check box causes COM+ to use the systemwide software restriction policy for the application.
- In the Restriction Level box, select the appropriate level. The levels are as follows, ordered from least to most trusted:
- Disallowed The application is disallowed from using the full privileges of the user. Components with any restriction policy trust level can be loaded into it.
- Unrestricted The application has unrestricted access to the user's privileges. Only components with an Unrestricted trust level can be loaded into it.
- Disallowed The application is disallowed from using the full privileges of the user. Components with any restriction policy trust level can be loaded into it.
- Click OK.
The trust level you select takes effect the next time the application is started.