Configuring .NET Trust Levels in IIS 7

Applies To: Windows 7, Windows Server 2008, Windows Server 2008 R2, Windows Vista

An application's trust level determines the permissions that are granted by the ASP.NET code access security (CAS) policy. CAS defines two trust categories: full trust and partial trust. An application that has full trust permissions can access all resource types on a server and perform privileged operations. Applications with full trust are affected only by the security settings of the operating system.

ASP.NET applications that use .NET Framework version 1.0 always run with full trust. By default, ASP.NET applications that use .NET Framework version 1.1 and 2.0 run with full trust. However, you can configure the trust levels of these applications.

Partial trust is defined as any trust level less than full trust. Applications that run with partial trust have varying levels of operating permissions and access to resources. For example, application code that is stored on a network share generally is assigned a lower level of trust than application code that is stored on the local server. You can assign one of the predefined partial trust levels provided by the .NET Framework.


For information about the levels at which you can perform these procedures, and the modules, handlers, and permissions that are required to perform these procedures, see Trust Levels Feature Requirements (IIS 7).


This task includes the following procedure:

Set a Trust Level (IIS 7)