|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
RE: ADAM, AzMan questionWhen you add a role definition it is actually a task with an attribute of RoleDefinition="True". This is IsRoleDefinition property of IAzRole in fact. Authorization Manager application of microsoft restricts us to create a role definition first then put it in Role Assignments folder. This is actually not a must. By APIs you can add a role to an application and you can see that role is in Role Assignments folder without anything in Role Definition folder. Regards. Reza. Show quoteHide quote "Morten Overgaard" wrote: > Hi Sirs. > > Sorry for the cross posting but I did not no in what group to put this > question :-) > > Anybody knows if the following setup will work: > Use ADAM (win2003 Server) as a policy store for AzMan where users/groups > will be assigned from a Windows2003 AD? > > And another one > > It seems that "Role definitions" created in AzMan is stored in ADAM as > "msDS-AzTask". Why??? and when a role has been assigned a windows user > account it also appears as a "msDS-Az-Role" in ADAM. How come?? > > > Regards Morten. > > > 
Other interesting topics
WindowsIdentity vs User.Identity ??
Role based security on local machine EventLogPermission via caspol.exe declarative security and impersonation Authenticate domain and local users Strong-Name Assembly calling WebService RSA to PKCS#8 CAS and performance Walking Active Directory Can't programatically create a Domain group |
|||||||||||||||||||||||
