Configuring the Software Restriction Policy
When you explicitly set the software restriction policy trust levels of a COM+ application, you are overriding the default systemwide settings. This is often necessary for COM+ server applications because the systemwide trust level is set the same for all server applications (because they all run in the same file, dllhost.exe). However, when you set the software restriction policy trust level of a COM+ library application, you are affecting the systemwide configuration for that application. For a discussion of how to use the software restriction policy in COM+, see Using the Software Restriction Policy in COM+.
To set the software restriction policy
Right-click the COM+ application for which you are setting the software restriction policy, and then click Properties.
In the application properties dialog box, click the Security tab.
Under Software Restriction Policy, select the Apply software restriction policy check box; this enables you to set the trust level. Clearing the check box will cause COM+ to use the systemwide configuration of the software restriction policy for the application. This check box corresponds to the SRPEnabled property of the Applications collection.
In the Restriction Level box, select the appropriate level. This drop-down box corresponds to the SRPTrustLevel property of the Applications collection. The levels are as follows, ordered from least to most trusted:
- Disallowed. The application is disallowed from using the full privileges of the user. Components with any trust level can be loaded into it.
- Unrestricted. The application has unrestricted access to the user's privileges. Only components with an Unrestricted trust level can be loaded into it.
Click OK.
Related topics