AccessControlDSC

1.1.0.0

DscResources/ActiveDirectoryAuditRuleEntry/ActiveDirectoryAuditRuleEntry.schema.mof

[ClassVersion("0.9.0.0")]
class ActiveDirectoryAuditRule
{
    [Required, Description("Specifies the conditions for auditing attempts to access a securable object."), ValueMap{"Success","Failure"}, Values{"Success","Failure"}] String AuditFlags;
    [Required, Description("Specifies the access rights that are assigned to an Active Directory Domain Services object."), ValueMap{"AccessSystemSecurity","CreateChild","Delete","DeleteChild","DeleteTree","ExtendedRight","GenericAll","GenericExecute","GenericRead","GenericWrite","ListChildren","ListObject","ReadControl","ReadProperty","Self","WriteDacl","WriteOwner","WriteProperty"}, Values{"AccessSystemSecurity","CreateChild","Delete","DeleteChild","DeleteTree","ExtendedRight","GenericAll","GenericExecute","GenericRead","GenericWrite","ListChildren","ListObject","ReadControl","ReadProperty","Self","WriteDacl","WriteOwner","WriteProperty"}] String ActiveDirectoryRights[];
    [Write, Description("Specifies if, and how, ACE information is applied to an object and its descendents."), ValueMap{"1","4","2","0","3"}, Values{"All","Children","Descendents","None","SelfAndChildren"}] String InheritanceType;
    [Write, Description("Specifies the object type name that identifies the type of child object that can inherit this access rule.")] String InheritedObjectType;
    [Required, ValueMap{"Present", "Absent"},Values{"Present", "Absent"}] String Ensure;
};
 
[ClassVersion("0.9.0.0")]
class ActiveDirectorySystemAccessControlList
{
    [Write, Description("Indicates the identity of the principal.")] String Principal;
    [Write] Boolean ForcePrincipal;
    [Write, Description("Indicates the access control entry in the form of an array of instances of the AccessControlList CIM class."), EmbeddedInstance("ActiveDirectoryAuditRule")] String AccessControlEntry[];
};
 
[ClassVersion("0.9.0.0"), FriendlyName("ActiveDirectoryAuditRuleEntry")]
class ActiveDirectoryAuditRuleEntry : OMI_BaseResource
{
    [Key, Description("Indicates the Distinguished Name value for the target Active Directory Object.")] String DistinguishedName;
    [Required, Description("Indicates the access control information in the form of an array of instances of the ActiveDirectoryAuditRuleList CIM class."), EmbeddedInstance("ActiveDirectorySystemAccessControlList")] String AccessControlList[];
    [Write] Boolean Force;
};