Export (0) Print
Expand All

ActiveDirectorySecurity Class

Uses the object security layer of the managed ACL library to wrap access control functionality for directory objects.

Namespace:  System.DirectoryServices
Assembly:  System.DirectoryServices (in System.DirectoryServices.dll)

public class ActiveDirectorySecurity : DirectoryObjectSecurity

The ActiveDirectorySecurity type exposes the following members.

  NameDescription
Public methodActiveDirectorySecurityInitializes a new instance of the ActiveDirectorySecurity class.
Top

  NameDescription
Public propertyAccessRightTypeGets the Type object that represents an access right for this object. (Overrides ObjectSecurity.AccessRightType.)
Protected propertyAccessRulesModifiedGets or sets a Boolean value that specifies whether the access rules associated with this ObjectSecurity object have been modified. (Inherited from ObjectSecurity.)
Public propertyAccessRuleTypeGets the Type that represents an access rule for this object. (Overrides ObjectSecurity.AccessRuleType.)
Public propertyAreAccessRulesCanonicalGets a Boolean value that specifies whether the access rules associated with this ObjectSecurity object are in canonical order. (Inherited from ObjectSecurity.)
Public propertyAreAccessRulesProtectedGets a Boolean value that specifies whether the Discretionary Access Control List (DACL) associated with this ObjectSecurity object is protected. (Inherited from ObjectSecurity.)
Public propertyAreAuditRulesCanonicalGets a Boolean value that specifies whether the audit rules associated with this ObjectSecurity object are in canonical order. (Inherited from ObjectSecurity.)
Public propertyAreAuditRulesProtectedGets a Boolean value that specifies whether the System Access Control List (SACL) associated with this ObjectSecurity object is protected. (Inherited from ObjectSecurity.)
Protected propertyAuditRulesModifiedGets or sets a Boolean value that specifies whether the audit rules associated with this ObjectSecurity object have been modified. (Inherited from ObjectSecurity.)
Public propertyAuditRuleTypeGets the Type that represents an audit rule for this object. (Overrides ObjectSecurity.AuditRuleType.)
Protected propertyGroupModifiedGets or sets a Boolean value that specifies whether the group associated with the securable object has been modified. (Inherited from ObjectSecurity.)
Protected propertyIsContainerGets a Boolean value that specifies whether this ObjectSecurity object is a container object. (Inherited from ObjectSecurity.)
Protected propertyIsDSGets a Boolean value that specifies whether this ObjectSecurity object is a directory object. (Inherited from ObjectSecurity.)
Protected propertyOwnerModifiedGets or sets a Boolean value that specifies whether the owner of the securable object has been modified. (Inherited from ObjectSecurity.)
Top

  NameDescription
Public methodAccessRuleFactory(IdentityReference, Int32, Boolean, InheritanceFlags, PropagationFlags, AccessControlType)Creates an AccessRule object with the specified values. (Overrides ObjectSecurity.AccessRuleFactory(IdentityReference, Int32, Boolean, InheritanceFlags, PropagationFlags, AccessControlType).)
Public methodAccessRuleFactory(IdentityReference, Int32, Boolean, InheritanceFlags, PropagationFlags, AccessControlType, Guid, Guid)Creates an AccessRule object with the specified values. (Overrides DirectoryObjectSecurity.AccessRuleFactory(IdentityReference, Int32, Boolean, InheritanceFlags, PropagationFlags, AccessControlType, Guid, Guid).)
Public methodAddAccessRule(ActiveDirectoryAccessRule)Adds an access rule to the DACL of an object.
Protected methodAddAccessRule(ObjectAccessRule)Adds the specified access rule to the Discretionary Access Control List (DACL) associated with this DirectoryObjectSecurity object. (Inherited from DirectoryObjectSecurity.)
Public methodAddAuditRule(ActiveDirectoryAuditRule)Adds an audit rule to the SACL of an object.
Protected methodAddAuditRule(ObjectAuditRule)Adds the specified audit rule to the System Access Control List (SACL) associated with this DirectoryObjectSecurity object. (Inherited from DirectoryObjectSecurity.)
Public methodAuditRuleFactory(IdentityReference, Int32, Boolean, InheritanceFlags, PropagationFlags, AuditFlags)Creates an AuditRule object with the specified values. (Overrides ObjectSecurity.AuditRuleFactory(IdentityReference, Int32, Boolean, InheritanceFlags, PropagationFlags, AuditFlags).)
Public methodAuditRuleFactory(IdentityReference, Int32, Boolean, InheritanceFlags, PropagationFlags, AuditFlags, Guid, Guid)Creates an AuditRule object with the specified values. (Overrides DirectoryObjectSecurity.AuditRuleFactory(IdentityReference, Int32, Boolean, InheritanceFlags, PropagationFlags, AuditFlags, Guid, Guid).)
Public methodEquals(Object)Determines whether the specified object is equal to the current object. (Inherited from Object.)
Protected methodFinalizeAllows an object to try to free resources and perform other cleanup operations before it is reclaimed by garbage collection. (Inherited from Object.)
Public methodGetAccessRulesGets a collection of the access rules associated with the specified security identifier. (Inherited from DirectoryObjectSecurity.)
Public methodGetAuditRulesGets a collection of the audit rules associated with the specified security identifier. (Inherited from DirectoryObjectSecurity.)
Public methodGetGroupGets the primary group associated with the specified owner. (Inherited from ObjectSecurity.)
Public methodGetHashCodeServes as the default hash function. (Inherited from Object.)
Public methodGetOwnerGets the owner associated with the specified primary group. (Inherited from ObjectSecurity.)
Public methodGetSecurityDescriptorBinaryFormReturns an array of byte values that represents the security descriptor information for this ObjectSecurity object. (Inherited from ObjectSecurity.)
Public methodGetSecurityDescriptorSddlFormReturns the Security Descriptor Definition Language (SDDL) representation of the specified sections of the security descriptor associated with this ObjectSecurity object. (Inherited from ObjectSecurity.)
Public methodGetTypeGets the Type of the current instance. (Inherited from Object.)
Protected methodMemberwiseCloneCreates a shallow copy of the current Object. (Inherited from Object.)
Protected methodModifyAccessApplies the specified modification to the Discretionary Access Control List (DACL) associated with this DirectoryObjectSecurity object. (Inherited from DirectoryObjectSecurity.)
Public methodModifyAccessRuleApplies the specified modification to the specified AccessRule. (Overrides ObjectSecurity.ModifyAccessRule(AccessControlModification, AccessRule, Boolean).)
Protected methodModifyAuditApplies the specified modification to the System Access Control List (SACL) associated with this DirectoryObjectSecurity object. (Inherited from DirectoryObjectSecurity.)
Public methodModifyAuditRuleApplies the specified modification to the specified AuditRule. (Overrides ObjectSecurity.ModifyAuditRule(AccessControlModification, AuditRule, Boolean).)
Protected methodPersist(SafeHandle, AccessControlSections)Saves the specified sections of the security descriptor associated with this ObjectSecurity object to permanent storage. We recommend that the values of the includeSections parameters passed to the constructor and persist methods be identical. For more information, see Remarks. (Inherited from ObjectSecurity.)
Protected methodPersist(String, AccessControlSections)Saves the specified sections of the security descriptor associated with this ObjectSecurity object to permanent storage. We recommend that the values of the includeSections parameters passed to the constructor and persist methods be identical. For more information, see Remarks. (Inherited from ObjectSecurity.)
Protected methodPersist(Boolean, String, AccessControlSections)Saves the specified sections of the security descriptor associated with this ObjectSecurity object to permanent storage. We recommend that the values of the includeSections parameters passed to the constructor and persist methods be identical. For more information, see Remarks. (Inherited from ObjectSecurity.)
Public methodPurgeAccessRulesRemoves all access rules associated with the specified IdentityReference. (Overrides ObjectSecurity.PurgeAccessRules(IdentityReference).)
Public methodPurgeAuditRulesRemoves all audit rules associated with the specified IdentityReference. (Overrides ObjectSecurity.PurgeAuditRules(IdentityReference).)
Protected methodReadLockLocks this ObjectSecurity object for read access. (Inherited from ObjectSecurity.)
Protected methodReadUnlockUnlocks this ObjectSecurity object for read access. (Inherited from ObjectSecurity.)
Public methodRemoveAccessRemoves all access rules that have the specified IdentityReference object and AccessControlType object from the DACL of an object.
Public methodRemoveAccessRule(ActiveDirectoryAccessRule)Removes all access rules that contain the same security identifier and access mask as the specified access rule from the DACL of an object.
Protected methodRemoveAccessRule(ObjectAccessRule)Removes access rules that contain the same security identifier and access mask as the specified access rule from the Discretionary Access Control List (DACL) associated with this DirectoryObjectSecurity object. (Inherited from DirectoryObjectSecurity.)
Protected methodRemoveAccessRuleAllRemoves all access rules that have the same security identifier as the specified access rule from the Discretionary Access Control List (DACL) associated with this DirectoryObjectSecurity object. (Inherited from DirectoryObjectSecurity.)
Public methodRemoveAccessRuleSpecific(ActiveDirectoryAccessRule)Removes all access rules that exactly match the specified access rule from the DACL of an object.
Protected methodRemoveAccessRuleSpecific(ObjectAccessRule)Removes all access rules that exactly match the specified access rule from the Discretionary Access Control List (DACL) associated with this DirectoryObjectSecurity object. (Inherited from DirectoryObjectSecurity.)
Public methodRemoveAudit Removes all audit rules that have the specified IdentityReference object from the SACL of an object.
Public methodRemoveAuditRule(ActiveDirectoryAuditRule)Removes all audit rules that contain the same security identifier and access mask as the specified audit rule from the System Access Control List (SACL) of an object.
Protected methodRemoveAuditRule(ObjectAuditRule)Removes audit rules that contain the same security identifier and access mask as the specified audit rule from the System Access Control List (SACL) associated with this CommonObjectSecurity object. (Inherited from DirectoryObjectSecurity.)
Protected methodRemoveAuditRuleAllRemoves all audit rules that have the same security identifier as the specified audit rule from the System Access Control List (SACL) associated with this DirectoryObjectSecurity object. (Inherited from DirectoryObjectSecurity.)
Public methodRemoveAuditRuleSpecific(ActiveDirectoryAuditRule)Removes all audit rules that exactly match the specified audit rule from the SACL of an object.
Protected methodRemoveAuditRuleSpecific(ObjectAuditRule)Removes all audit rules that exactly match the specified audit rule from the System Access Control List (SACL) associated with this DirectoryObjectSecurity object. (Inherited from DirectoryObjectSecurity.)
Public methodResetAccessRule(ActiveDirectoryAccessRule)Searches an object's DACL for all access rules that contain a security identifier (SID) that matches the SID specified in the rule object, and replaces all of those access rules with the access rules that are contained in the rule object.
Protected methodResetAccessRule(ObjectAccessRule)Removes all access rules in the Discretionary Access Control List (DACL) associated with this DirectoryObjectSecurity object and then adds the specified access rule. (Inherited from DirectoryObjectSecurity.)
Public methodSetAccessRule(ActiveDirectoryAccessRule)Searches an object's DACL for all access rules that contain a security identifier (SID) that matches the SID specified in the rule object, and an access control type (Allow or Deny) that matches the type specified in the rule object, and replaces all of those access rules with the access rules that are contained in the rule object.
Protected methodSetAccessRule(ObjectAccessRule)Removes all access rules that contain the same security identifier and qualifier as the specified access rule in the Discretionary Access Control List (DACL) associated with this DirectoryObjectSecurity object and then adds the specified access rule. (Inherited from DirectoryObjectSecurity.)
Public methodSetAccessRuleProtectionSets or removes protection of the access rules associated with this ObjectSecurity object. Protected access rules cannot be modified by parent objects through inheritance. (Inherited from ObjectSecurity.)
Public methodSetAuditRule(ActiveDirectoryAuditRule) Replaces all audit rules that contain the same security identifier as the specified audit rule in the SACL of an object with the specified audit rule.
Protected methodSetAuditRule(ObjectAuditRule)Removes all audit rules that contain the same security identifier and qualifier as the specified audit rule in the System Access Control List (SACL) associated with this DirectoryObjectSecurity object and then adds the specified audit rule. (Inherited from DirectoryObjectSecurity.)
Public methodSetAuditRuleProtectionSets or removes protection of the audit rules associated with this ObjectSecurity object. Protected audit rules cannot be modified by parent objects through inheritance. (Inherited from ObjectSecurity.)
Public methodSetGroupSets the primary group for the security descriptor associated with this ObjectSecurity object. (Inherited from ObjectSecurity.)
Public methodSetOwnerSets the owner for the security descriptor associated with this ObjectSecurity object. (Inherited from ObjectSecurity.)
Public methodSetSecurityDescriptorBinaryForm(Byte[])Sets the security descriptor for this ObjectSecurity object from the specified array of byte values. (Inherited from ObjectSecurity.)
Public methodSetSecurityDescriptorBinaryForm(Byte[], AccessControlSections)Sets the specified sections of the security descriptor for this ObjectSecurity object from the specified array of byte values. (Inherited from ObjectSecurity.)
Public methodSetSecurityDescriptorSddlForm(String)Sets the security descriptor for this ObjectSecurity object from the specified Security Descriptor Definition Language (SDDL) string. (Inherited from ObjectSecurity.)
Public methodSetSecurityDescriptorSddlForm(String, AccessControlSections)Sets the specified sections of the security descriptor for this ObjectSecurity object from the specified Security Descriptor Definition Language (SDDL) string. (Inherited from ObjectSecurity.)
Public methodToStringReturns a string that represents the current object. (Inherited from Object.)
Protected methodWriteLockLocks this ObjectSecurity object for write access. (Inherited from ObjectSecurity.)
Protected methodWriteUnlockUnlocks this ObjectSecurity object for write access. (Inherited from ObjectSecurity.)
Top

.NET Framework

Supported in: 4.6, 4.5, 4, 3.5, 3.0, 2.0

.NET Framework Client Profile

Supported in: 4, 3.5 SP1

Windows 8.1, Windows Server 2012 R2, Windows 8, Windows Server 2012, Windows 7, Windows Vista SP2, Windows Server 2008 (Server Core Role not supported), Windows Server 2008 R2 (Server Core Role supported with SP1 or later; Itanium not supported)

The .NET Framework does not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.

Any public static (Shared in Visual Basic) members of this type are thread safe. Any instance members are not guaranteed to be thread safe.
Show:
© 2014 Microsoft