How to setup a central access policy
This topic describes a Central Access Policy (CAP).
A central access policy consists of a unique GUID (msAuthz-CentralAccessPolicyID) and multiple central access rules (msAuthz-MemberRulesInCentralAccessPolicy). They can be published through group policy to target file servers. Once published, they can be selected by file administrators on file servers they manage. At any time, only one policy can be assigned to one resource explicitly or inherited from parent.