Export (0) Print
Expand All

IAzScope interface

The IAzScope interface defines a logical container of resources to which the application manages access. The scope name will be used in calls to the AccessCheck method to determine whether a user has the requested access to resources logically contained within the scope.

Members

The IAzScope interface inherits from the IDispatch interface. IAzScope also has these types of members:

Methods

The IAzScope interface has these methods.

MethodDescription
AddPolicyAdministrator

Adds the specified security identifier (SID) in text form to the list of principals that act as policy administrators.

AddPolicyAdministratorName

Adds the specified account name to the list of principals that act as policy administrators.

AddPolicyReader

Adds the specified SID in text form to the list of principals that act as policy readers.

AddPolicyReaderName

Adds the specified account name to the list of principals that act as policy readers.

AddPropertyItem

Adds the specified principal to the specified list of principals.

CreateApplicationGroup

Creates an IAzApplicationGroup object with the specified name.

CreateRole

Creates an IAzRole object with the specified name.

CreateTask

Creates an IAzTask object with the specified name.

DeleteApplicationGroup

Removes the IAzApplicationGroup object with the specified name from the IAzScope object.

DeletePolicyAdministrator

Removes the specified SID in text form from the list of principals that act as policy administrators.

DeletePolicyAdministratorName

Removes the specified account name from the list of principals that act as policy administrators.

DeletePolicyReader

Removes the specified SID in text form from the list of principals that act as policy readers.

DeletePolicyReaderName

Removes the specified account name from the list of principals that act as policy readers.

DeletePropertyItem

Removes the specified principal from the specified list of principals.

DeleteRole

Removes the IAzRole object with the specified name from the IAzScope object.

DeleteTask

Removes the IAzTask object with the specified name from the IAzScope object.

GetProperty

Returns the IAzScope object property with the specified property ID.

OpenApplicationGroup

Opens an IAzApplicationGroup object with the specified name.

OpenRole

Opens an IAzRole object with the specified name.

OpenTask

Opens an IAzTask object with the specified name.

SetProperty

Sets the specified value to the AzScope object property with the specified property ID.

Submit

Persists changes made to the IAzScope object.

 

Properties

The IAzScope interface has these properties.

PropertyAccess typeDescription

ApplicationData

Read/write

Sets or retrieves an opaque field that can be used by the application to store information.

ApplicationGroups

Read-only

Retrieves an IAzApplicationGroups object that is used to enumerate groups from the policy data.

BizrulesWritable

Read-only

Retrieves a value that indicates whether a non-delegated scope is writable.

CanBeDelegated

Read-only

Retrieves a value that indicates whether the scope can be delegated.

Description

Read/write

Sets or retrieves a comment that describes the scope.

Name

Read/write

Sets or retrieves the name of the scope.

PolicyAdministrators

Read-only

Retrieves the text form of SIDs of principals that act as policy administrators.

PolicyAdministratorsName

Read-only

Retrieves the account names of principals that act as policy administrators.

PolicyReaders

Read-only

Retrieves the text form of SIDs of principals that act as policy readers.

PolicyReadersName

Read-only

Retrieves the account names of principals that act as policy readers.

Roles

Read-only

Retrieves an IAzRoles object that is used to enumerate groups from the policy data.

Tasks

Read-only

Retrieves an IAzTasks object that is used to enumerate groups from the policy data.

Writable

Read-only

Retrieves a value that indicates whether the scope can be modified by the user context that initialized it.

 

Requirements

Minimum supported client

Windows Vista [desktop apps only]

Minimum supported server

Windows Server 2003 [desktop apps only]

Redistributable

Windows Server 2003 Administration Tools Pack on Windows XP

Header

Azroles.h

Library

Azroles.lib

DLL

Azroles.dll

IID

IID_IAzScope is defined as 00e52487-e08d-4514-b62e-877d5645f5ab

 

 

Community Additions

ADD
Show:
© 2014 Microsoft