ActiveDirectoryAccessRule Class
The ActiveDirectoryAccessRule class is used to represent an access control entry (ACE) in the discretionary access control list (DACL) of an Active Directory Domain Services object.
Assembly: System.DirectoryServices (in System.DirectoryServices.dll)
System.Security.AccessControl.AuthorizationRule
System.Security.AccessControl.AccessRule
System.Security.AccessControl.ObjectAccessRule
System.DirectoryServices.ActiveDirectoryAccessRule
System.DirectoryServices.CreateChildAccessRule
System.DirectoryServices.DeleteChildAccessRule
System.DirectoryServices.DeleteTreeAccessRule
System.DirectoryServices.ExtendedRightAccessRule
System.DirectoryServices.ListChildrenAccessRule
System.DirectoryServices.PropertyAccessRule
System.DirectoryServices.PropertySetAccessRule
| Name | Description | |
|---|---|---|
![]() | ActiveDirectoryAccessRule(IdentityReference, ActiveDirectoryRights, AccessControlType) | Initializes a new instance of the ActiveDirectoryAccessRule class with the specified identity reference, Active Directory Domain Services rights, and access rule type. |
![]() | ActiveDirectoryAccessRule(IdentityReference, ActiveDirectoryRights, AccessControlType, ActiveDirectorySecurityInheritance) | Initializes a new instance of the ActiveDirectoryAccessRule class with the specified identity reference, Active Directory Domain Services rights, access rule type, and inheritance type. |
![]() | ActiveDirectoryAccessRule(IdentityReference, ActiveDirectoryRights, AccessControlType, ActiveDirectorySecurityInheritance, Guid) | Initializes a new instance of the ActiveDirectoryAccessRule class with the specified identity reference, Active Directory Domain Services rights, access rule type, inheritance type, and inherited object type. |
![]() | ActiveDirectoryAccessRule(IdentityReference, ActiveDirectoryRights, AccessControlType, Guid) | Initializes a new instance of the ActiveDirectoryAccessRule class with the specified identity reference, Active Directory Domain Services rights, access rule type, and object type. |
![]() | ActiveDirectoryAccessRule(IdentityReference, ActiveDirectoryRights, AccessControlType, Guid, ActiveDirectorySecurityInheritance) | Initializes a new instance of the ActiveDirectoryAccessRule class with the specified identity reference, Active Directory Domain Services rights, access rule type, object type, and inheritance type. |
![]() | ActiveDirectoryAccessRule(IdentityReference, ActiveDirectoryRights, AccessControlType, Guid, ActiveDirectorySecurityInheritance, Guid) | Initializes a new instance of the ActiveDirectoryAccessRule class with the specified identity reference, Active Directory Domain Services rights, access rule type, object type, inheritance type, and inherited object type. |
| Name | Description | |
|---|---|---|
![]() | AccessControlType | Gets the AccessControlType value associated with this AccessRule object.(Inherited from AccessRule.) |
![]() | AccessMask | Gets the access mask for this rule.(Inherited from AuthorizationRule.) |
![]() | ActiveDirectoryRights | Gets the Active Directory Domain Services rights for this access rule. |
![]() | IdentityReference | Gets the IdentityReference to which this rule applies.(Inherited from AuthorizationRule.) |
![]() | InheritanceFlags | Gets the value of flags that determine how this rule is inherited by child objects.(Inherited from AuthorizationRule.) |
![]() | InheritanceType | Gets the inheritance type for this access rule. |
![]() | InheritedObjectType | Gets the type of child object that can inherit the ObjectAccessRule object.(Inherited from ObjectAccessRule.) |
![]() | IsInherited | Gets a value indicating whether this rule is explicitly set or is inherited from a parent container object.(Inherited from AuthorizationRule.) |
![]() | ObjectFlags | Gets flags that specify if the ObjectType and InheritedObjectType properties of the ObjectAccessRule object contain valid values.(Inherited from ObjectAccessRule.) |
![]() | ObjectType | Gets the type of object to which the ObjectAccessRule applies.(Inherited from ObjectAccessRule.) |
![]() | PropagationFlags | Gets the value of the propagation flags, which determine how inheritance of this rule is propagated to child objects. This property is significant only when the value of the InheritanceFlags enumeration is not None.(Inherited from AuthorizationRule.) |
| Name | Description | |
|---|---|---|
![]() | Equals(Object) | Determines whether the specified object is equal to the current object.(Inherited from Object.) |
![]() | Finalize() | Allows an object to try to free resources and perform other cleanup operations before it is reclaimed by garbage collection.(Inherited from Object.) |
![]() | GetHashCode() | Serves as the default hash function. (Inherited from Object.) |
![]() | GetType() | |
![]() | MemberwiseClone() | |
![]() | ToString() | Returns a string that represents the current object.(Inherited from Object.) |
The ActiveDirectoryAccessRule class contains properties of the access rule such as the trustee, access control type, access mask, and inheritance flags. This type of access rule is set on an ActiveDirectorySecurity object.
After the ActiveDirectorySecurity object is committed to the directory store, it will modify the security descriptor of the object according to the rules set on the ActiveDirectoryAccessRule object.
Available since 2.0
Any public static ( Shared in Visual Basic) members of this type are thread safe. Any instance members are not guaranteed to be thread safe.



