ActiveDirectoryRights Enumeration (System.DirectoryServices)

Switch View

ActiveDirectoryRights Enumeration

Collapse All

Language Filter

This page is specific to

Microsoft Visual Studio 2008/.NET Framework 3.5

Other versions are also available for the following:

.NET Framework Class Library

ActiveDirectoryRights Enumeration

The ActiveDirectoryRights enumeration specifies the access rights that are assigned to an Active Directory Domain Services object.

This enumeration has a FlagsAttribute attribute that allows a bitwise combination of its member values.

Namespace: System.DirectoryServices
Assembly: System.DirectoryServices (in System.DirectoryServices.dll)

Syntax

Visual Basic (Declaration)

<FlagsAttribute> _
Public Enumeration ActiveDirectoryRights

Visual Basic (Usage)

Dim instance As ActiveDirectoryRights

[FlagsAttribute]
public enum ActiveDirectoryRights

Visual C++

[FlagsAttribute]
public enum class ActiveDirectoryRights

JScript

public enum ActiveDirectoryRights

Members

	Member name	Description
	Delete	The right to delete the object.
	ReadControl	The right to read data from the security descriptor of the object, not including the data in the SACL.
	WriteDacl	The right to modify the DACL in the object security descriptor.
	WriteOwner	The right to assume ownership of the object. The user must be an object trustee. The user cannot transfer the ownership to other users.
	Synchronize	The right to use the object for synchronization. This right enables a thread to wait until that object is in the signaled state.
	AccessSystemSecurity	The right to get or set the SACL in the object security descriptor.
	GenericRead	The right to read permissions on this object, read all the properties on this object, list this object name when the parent container is listed, and list the contents of this object if it is a container.
	GenericWrite	The right to read permissions on this object, write all the properties on this object, and perform all validated writes to this object.
	GenericExecute	The right to read permissions on, and list the contents of, a container object.
	GenericAll	The right to create or delete children, delete a subtree, read and write properties, examine children and the object itself, add and remove the object from the directory, and read or write with an extended right.
	CreateChild	The right to create children of the object.
	DeleteChild	The right to delete children of the object.
	ListChildren	The right to list children of this object. For more information about this right, see the topic "Controlling Object Visibility" in the MSDN Library http://msdn.microsoft.com/library.
	Self	The right to perform an operation that is controlled by a validated write access right.
	ReadProperty	The right to read properties of the object.
	WriteProperty	The right to write properties of the object.
	DeleteTree	The right to delete all children of this object, regardless of the permissions of the children.
	ListObject	The right to list a particular object. For more information about this right, see the topic "Controlling Object Visibility" in the MSDN Library at http://msdn.microsoft.com/library.
	ExtendedRight	A customized control access right. For a list of possible extended rights, see the topic "Extended Rights" in the MSDN Library at http://msdn.microsoft.com. For more information about extended rights, see the topic "Control Access Rights" in the MSDN Library at http://msdn.microsoft.com.

Platforms

Windows 7, Windows Vista, Windows XP SP2, Windows XP Media Center Edition, Windows XP Professional x64 Edition, Windows XP Starter Edition, Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows Server 2000 SP4, Windows Millennium Edition, Windows 98

The .NET Framework and .NET Compact Framework do not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.

Version Information

.NET Framework

Supported in: 3.5, 3.0, 2.0

Reference

System.DirectoryServices Namespace

ActiveDirectoryRights

CreateChildAccessRule

DeleteChildAccessRule

Tags

: Add a tag

Community Content

Add new content

Annotations

ActiveDirectoryRights Enum with PowerShell

Thomas Lee | Edit | Show History

# enum-ActiveDirectoryRights.ps1
# Enum sample using PowerShell
# Thomas Lee - tfl@psp.co.uk

# Get enums
$enums=[enum]::GetValues([System.DirectoryServices.ActiveDirectoryRights]) 
# Display values
"System.DirectoryServices.ActiveDirectoryRights enum has {0} possible values:" -f $enums.count
$i=1
$enums | %{"Value {0}: {1}" -f $i,$_.tostring();$i++}
""

# Checking against an enum value 
$ToCheck = "Delete"
if ($ToCheck -eq  [System.DirectoryServices.ActiveDirectoryRights]::Delete) 
{"`$ToCheck is Delete"}
else 
{"`$ToCheck is NOT Delete"}

This script produces the following output:

PS C:\Documents and Settings\LeeT> 
D:\foo\enum-ActiveDirectoryRights.ps1
System.DirectoryServices.ActiveDirectoryRights enum has 19 possible values:
Value 1: CreateChild
Value 2: DeleteChild
Value 3: ListChildren
Value 4: Self
Value 5: ReadProperty
Value 6: WriteProperty
Value 7: DeleteTree
Value 8: ListObject
Value 9: ExtendedRight
Value 10: Delete
Value 11: ReadControl
Value 12: GenericExecute
Value 13: GenericWrite
Value 14: GenericRead
Value 15: WriteDacl
Value 16: WriteOwner
Value 17: GenericAll
Value 18: Synchronize
Value 19: AccessSystemSecurity

$ToCheck is Delete