Export (0) Print
Expand All
Expand Minimize

ActiveDirectoryRights Enumeration

The ActiveDirectoryRights enumeration specifies the access rights that are assigned to an Active Directory Domain Services object.

This enumeration has a FlagsAttribute attribute that allows a bitwise combination of its member values.

Namespace:  System.DirectoryServices
Assembly:  System.DirectoryServices (in System.DirectoryServices.dll)

[FlagsAttribute]
public enum ActiveDirectoryRights

Member nameDescription
AccessSystemSecurityThe right to get or set the SACL in the object security descriptor.
CreateChildThe right to create children of the object.
DeleteThe right to delete the object.
DeleteChildThe right to delete children of the object.
DeleteTreeThe right to delete all children of this object, regardless of the permissions of the children.
ExtendedRightA customized control access right. For a list of possible extended rights, see the topic "Extended Rights" in the MSDN Library at http://msdn.microsoft.com. For more information about extended rights, see the topic "Control Access Rights" in the MSDN Library at http://msdn.microsoft.com.
GenericAllThe right to create or delete children, delete a subtree, read and write properties, examine children and the object itself, add and remove the object from the directory, and read or write with an extended right.
GenericExecuteThe right to read permissions on, and list the contents of, a container object.
GenericReadThe right to read permissions on this object, read all the properties on this object, list this object name when the parent container is listed, and list the contents of this object if it is a container.
GenericWriteThe right to read permissions on this object, write all the properties on this object, and perform all validated writes to this object.
ListChildrenThe right to list children of this object. For more information about this right, see the topic "Controlling Object Visibility" in the MSDN Library http://msdn.microsoft.com/library.
ListObjectThe right to list a particular object. For more information about this right, see the topic "Controlling Object Visibility" in the MSDN Library at http://msdn.microsoft.com/library.
ReadControlThe right to read data from the security descriptor of the object, not including the data in the SACL.
ReadPropertyThe right to read properties of the object.
SelfThe right to perform an operation that is controlled by a validated write access right.
SynchronizeThe right to use the object for synchronization. This right enables a thread to wait until that object is in the signaled state.
WriteDaclThe right to modify the DACL in the object security descriptor.
WriteOwnerThe right to assume ownership of the object. The user must be an object trustee. The user cannot transfer the ownership to other users.
WritePropertyThe right to write properties of the object.

.NET Framework

Supported in: 4.5.2, 4.5.1, 4.5, 4, 3.5, 3.0, 2.0

.NET Framework Client Profile

Supported in: 4, 3.5 SP1

Windows 8.1, Windows Server 2012 R2, Windows 8, Windows Server 2012, Windows 7, Windows Vista SP2, Windows Server 2008 (Server Core Role not supported), Windows Server 2008 R2 (Server Core Role supported with SP1 or later; Itanium not supported)

The .NET Framework does not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.

Show:
© 2014 Microsoft