Add an Authorization Rule to a Role Definition
Applies To: Windows Server 2008
Authorization Manager is available for use in the following versions of Windows: Windows Server 2003, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows XP, Windows Vista, Windows 7, and Windows 8. It is deprecated as of Windows Server 2012 R2 and may be removed in subsequent versions.
Authorization rules can be used to define a task or a role. For information about using rules, see "Additional references" in this topic.
You must be assigned to the Authorization Manager Administrator user role to complete this procedure. By default, Administrators is the minimum Windows group membership assigned to this role. Review the details in "Additional considerations" in this topic.
Add an authorization rule to a task definition
If necessary, open Authorization Manager.
If necessary, open or create an authorization store containing an application.
In the console tree, expand the application, then expand the Definitions folder, and then click Role Definitions. Rules may be used with either application-level or scope-level roles.
In the list of tasks, right-click a role and choose Properties.
In the property sheet, click the Definition tab.
Click the Authorization Rule button.
In the Script path text box, type the location and name of a text file containing the source code for the script you wish to load, or click Browse to locate the file.
Click either VBScript or Jscript as the Script type.
Click Reload Rule into Store.
To perform this procedure, you need to have access to an authorization store. By default, members of the Administrators group have the required access, but Authorization manager allows you to delegate responsibility. For more information, see Allow Other Users to Administer an Authorization Store.
To perform this procedure using the Authorization Manager console, you must be using Developer Mode.