Win32_SecuritySettingAuditing class
The Win32_SecuritySettingAuditing abstract, association WMI class specifies the auditing for a given trustee on a given object. This class is modeled after EXPLICIT_ACCESS.
The following syntax is simplified from Managed Object Format (MOF) code and includes all of the inherited properties. Properties and methods are in alphabetic order, not MOF order.
Syntax
[abstract, Association, UUID("{8502C588-5FBB-11D2-AAC1-006008C78BC7}"), AMENDMENT]
class Win32_SecuritySettingAuditing
{
uint32 AuditedAccessMask;
string GuidInheritedObjectType;
string GuidObjectType;
uint32 Inheritance;
Win32_SecuritySetting REF SecuritySetting;
Win32_SID REF Trustee;
uint32 Type;
};
Members
The Win32_SecuritySettingAuditing class has these types of members:
Properties
The Win32_SecuritySettingAuditing class has these properties.
-
AuditedAccessMask
-
-
Data type: uint32
-
Access type: Read-only
Bit flags specifying what activities are audited.
-
-
FILE_LIST_DIRECTORY (0)
-
Grants the right to read data from the file. For a directory, this value grants the right to list the contents of the directory.
-
FILE_ADD_FILE (1)
-
Grants the right to write data to the file. For a directory, this value grants the right to create a file in the directory.
-
FILE_ADD_SUBDIRECTORY (2)
-
Grants the right to append data to the file. For a directory, this value grants the right to create a subdirectory.
-
FILE_READ_EA (3)
-
Grants the right to read extended attributes.
-
FILE_WRITE_EA (4)
-
Grants the right to write extended attributes.
-
FILE_TRAVERSE (5)
-
Grants the right to execute a file. For a directory, the directory can be traversed.
-
FILE_DELETE_CHILD (6)
-
Grants the right to delete a directory and all of the files it contains (its children), even if the files are read-only.
-
FILE_READ_ATTRIBUTES (7)
-
Grants the right to read file attributes.
-
FILE_WRITE_ATTRIBUTES (8)
-
Grants the right to change file attributes.
-
DELETE (16)
-
Grants delete access.
-
READ_CONTROL (17)
-
Grants read access to the security descriptor and owner.
-
WRITE_DAC (18)
-
Grants write access to the discretionary access control list (DACL).
-
WRITE_OWNER (19)
-
Assigns the write owner.
-
SYNCHRONIZE (20)
-
Synchronizes access and allows a process to wait for an object to enter the signaled state.
GuidInheritedObjectType
-
Data type: string
-
Access type: Read-only
GUID of the type of object from which this object inherits.
GuidObjectType
-
Data type: string
-
Access type: Read-only
GUID of the type of object to which the security settings are applied.
Inheritance
-
Data type: uint32
-
Access type: Read-only
Bit flags specifying how the audit policies are inherited.
SecuritySetting
-
Data type: Win32_SecuritySetting
-
Access type: Read-only
-
Qualifiers: key
Reference to the instance representing the security settings of an object.
Trustee
-
Data type: Win32_SID
-
Access type: Read-only
-
Qualifiers: key
Reference to the instance representing the trustee for this audit entry.
Type
-
Data type: uint32
-
Access type: Read-only
Type of access specified for the trustee.
Audit success (0)
Audit failure (1)
Requirements
| Minimum supported client |
Windows Vista |
| Minimum supported server |
Windows Server 2008 |
| Namespace |
Root\CIMV2 |
| MOF |
|
| DLL |
|