Which settings should you use?

HOTSPOT
Your organization is developing a web application. The application will access data from a Microsoft SQL Server database.
You must implement a security solution that meets the following requirements:
All user logins must be associated with an Active Directory (AD) user account.
Service accounts are not permitted.
Constrained databases are not permitted.
Users must not be able to log on to SQL Server as the web application and access the database The web application must be permitted to display records and add records to the database.
You need to implement the required security and permissions structure for the web application while enforcing the principle of least privilege.
Which settings should you use? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Correct Answer:

Explanation/Reference:
Explanation:
Box 1: Use Windows authentication
Windows authentication is usually the best choice in the following situations:
There is a domain controller.
The application and the database are on the same computer.
You are using an instance of SQL Server Express or LocalDB.
Box 2: Database application role
An application role is a database principal that enables an application to run with its own, user-like permissions. You can use application roles to enable access to specific data to only those users who connect through a particular application.
Box 3: Select/Insert
The web application must be permitted to display records and add records to the database.
References: https://docs.microsoft.com/en-us/sql/relational-databases/security/authentication-access/application-roles