How to setup a central access policy

This topic describes a Central Access Policy (CAP).


Step 1: Central Access Policy (msAuthz-CentralAccessPolicy)

A central access policy consists of a unique GUID (msAuthz-CentralAccessPolicyID) and multiple central access rules (msAuthz-MemberRulesInCentralAccessPolicy). They can be published through group policy to target file servers. Once published, they can be selected by file administrators on file servers they manage. At any time, only one policy can be assigned to one resource explicitly or inherited from parent.

Related topics

How to use central access policies for dynamic access control