Add an Authorization Rule to a Role Definition

Applies To: Windows 7, Windows 8, Windows Server 2008 R2, Windows Server 2012

Authorization rules can be used to define a task or a role. For information about using rules, see "Additional references" in this topic.

You must be assigned to the Authorization Manager Administrator user role to complete this procedure. By default, Administrators is the minimum Windows group membership assigned to this role. Review the details in "Additional considerations" in this topic.

Add an authorization rule to a task definition

  1. If necessary, open Authorization Manager.

  2. If necessary, open or create an authorization store containing an application.

  3. In the console tree, expand the application, expand the Definitions folder, and then click Role Definitions . Rules may be used with either application-level or scope-level roles.

  4. In the list of tasks, right-click a role, and click Properties .

  5. In the property sheet, click the Definition tab.

  6. Click Authorization Rule .

  7. In the Script path box, type the location and name of a text file containing the source code for the script you want to load, or click Browse to locate the file.

  8. Click either VBScript or Jscript as the Script type .

  9. Click Reload Rule into Store .

  10. Click OK .

Additional considerations

  • To perform this procedure, you need to have access to an authorization store. By default, members of the Administrators group have the required access, but Authorization Manager allows you to delegate responsibility. For more information, see Allow Other Users to Administer an Authorization Store.

  • To perform this procedure by using the Authorization Manager snap-in, you must be using developer mode.

Additional references