IAzScope interface (azroles.h)

The IAzScope interface defines a logical container of resources to which the application manages access. The scope name will be used in calls to the AccessCheck method to determine whether a user has the requested access to resources logically contained within the scope.

Inheritance

The IAzScope interface inherits from the IDispatch interface. IAzScope also has these types of members:

Methods

The IAzScope interface has these methods.

 
IAzScope::AddPolicyAdministrator

The AddPolicyAdministrator method of IAzScope adds the specified security identifier in text form to the list of principals that act as policy administrators.
IAzScope::AddPolicyAdministratorName

The AddPolicyAdministratorName method of IAzScope adds the specified account name to the list of principals that act as policy administrators.
IAzScope::AddPolicyReader

The AddPolicyReader method of IAzScope adds the specified security identifier in text form to the list of principals that act as policy readers.
IAzScope::AddPolicyReaderName

The AddPolicyReaderName method of IAzScope adds the specified account name to the list of principals that act as policy readers.
IAzScope::AddPropertyItem

Adds the specified principal to the specified list of principals.
IAzScope::CreateApplicationGroup

Creates an IAzApplicationGroup object with the specified name.
IAzScope::CreateRole

Creates an IAzRole object with the specified name.
IAzScope::CreateTask

Creates an IAzTask object with the specified name.
IAzScope::DeleteApplicationGroup

Removes the IAzApplicationGroup object with the specified name from the IAzScope object.
IAzScope::DeletePolicyAdministrator

The DeletePolicyAdministrator method of IAzScope removes the specified security identifier in text form from the list of principals that act as policy administrators.
IAzScope::DeletePolicyAdministratorName

The DeletePolicyAdministratorName method of IAzScope removes the specified account name from the list of principals that act as policy administrators.
IAzScope::DeletePolicyReader

The DeletePolicyReader method of IAzScope removes the specified security identifier in text form from the list of principals that act as policy readers.
IAzScope::DeletePolicyReaderName

The DeletePolicyReaderName method of IAzScope removes the specified account name from the list of principals that act as policy readers.
IAzScope::DeletePropertyItem

Removes the specified principal from the specified list of principals.
IAzScope::DeleteRole

Removes the IAzRole object with the specified name from the IAzScope object.
IAzScope::DeleteTask

Removes the IAzTask object with the specified name from the IAzScope object.
IAzScope::get_ApplicationData

The ApplicationData property of IAzScope sets or retrieves an opaque field that can be used by the application to store information.
IAzScope::get_ApplicationGroups

Retrieves an IAzApplicationGroups object that is used to enumerate IAzApplicationGroup objects from the policy data.
IAzScope::get_BizrulesWritable

Retrieves a value that indicates whether a non-delegated scope is writable.
IAzScope::get_CanBeDelegated

Retrieves a value that indicates whether the scope can be delegated.
IAzScope::get_Description

Sets or retrieves a comment that describes the scope.
IAzScope::get_Name

Sets or retrieves the name of the scope.
IAzScope::get_PolicyAdministrators

The PolicyAdministrators property of IAzScope retrieves the security identifiers (SIDs), in text form, of principals that act as policy administrators.
IAzScope::get_PolicyAdministratorsName

Retrieves the account names of principals that act as policy administrators.
IAzScope::get_PolicyReaders

The PolicyReaders property of IAzScope retrieves the security identifiers (SIDs), in text form, of principals that act as policy readers.
IAzScope::get_PolicyReadersName

Retrieves the account names of principals that act as policy readers.
IAzScope::get_Roles

Retrieves an IAzRoles object that is used to enumerate IAzRole objects from the policy data.
IAzScope::get_Tasks

Retrieves an IAzTasks object that is used to enumerate IAzTask objects from the policy data.
IAzScope::get_Writable

Retrieves a value that indicates whether the scope can be modified by the user context that initialized it.
IAzScope::GetProperty

Returns the IAzScope object property with the specified property ID.
IAzScope::OpenApplicationGroup

Opens an IAzApplicationGroup object by specifying its name.
IAzScope::OpenRole

Opens an IAzRole object with the specified name.
IAzScope::OpenTask

Opens an IAzTask object with the specified name.
IAzScope::put_ApplicationData

The ApplicationData property of IAzScope sets or retrieves an opaque field that can be used by the application to store information.
IAzScope::put_Description

Sets or retrieves a comment that describes the scope.
IAzScope::put_Name

Sets or retrieves the name of the scope.
IAzScope::SetProperty

Sets the specified value to the IAzScope object property with the specified property ID.
IAzScope::Submit

Persists changes made to the IAzScope object.

Requirements

   
Minimum supported client Windows Vista [desktop apps only]
Minimum supported server Windows Server 2003 [desktop apps only]
Target Platform Windows
Header azroles.h
Redistributable Windows Server 2003 Administration Tools Pack on Windows XP