application. The following rules can be used to distinguish between users in the accounting
department and users in the IT department:
•
All users in the accounting department are members of a group named Company\Accounting.
•
Some users in the IT department are members of the Company\Accounting group.
•
All users in the IT department are members of a group named Company\Domain Admin.
•
No users in the accounting department are members of the Company\Domain Admin group.
You need to configure URL authorization for the application by adding an <authorization>
element to the Web.config file in the application root. Which element should you use?
A. <authorization>
<deny roles=”Company\Domain Admin”/>
<allow roles=”Company\Accounting”/>
<deny users=”*”/>
</authorization>
B. <authorization>
<allow roles=”Company\Accounting”/>
<deny roles=”Company\Domain Admin”/>
<dent users=”?”/>
<authorization>
C. <authorization>
<deny roles=”Domain Admin”/>
<allow roles=”Accounting”/>
<deny users=”*”/>
</authorization>
D. <authorization>
<allow roles=”Accounting”/>
<deny roles=”Domain Admin”/>
<deny users=”?”/>
</authorization>
Answer:
A
Explanation
<authorization> Element
Configures ASP.NET authorization support. The <authorization> tag controls client access to
URL resources.
This element can be declared at any level (machine, site, application, subdirectory, or page).
<configuration>
<system.web>
