An administrative role defines a collection of rights, which authorize users and groups to perform specific actions. When a role is assigned to a user or group, Forefront TMG configures the discretionary access control list (DACL) in the security descriptor of each applicable object to grant the permissions needed to perform the actions allowed by the role to the user or group. Forefront TMG also reconfigures the DACLs in the applicable security descriptors whenever you modify the assignments of the administrative roles or the Microsoft Forefront TMG Control service (isactrl) is restarted.
The FPCDelegatedAdmin object is used to specify the administrative role assigned to a user or group of users for the FPCArray, FPCEnterprise (not available in Forefront TMG Medium Buisness Edition), and FPCPolicy (not available in Forefront TMG Medium Buisness Edition) objects.
The FPCDelegatedAdmin object is an element of an FPCDelegatedAdmins collection, and a new object representing a delegated administrator or group of delegated administrators can be created by calling the Add or AddWithType method of this collection.
Click here to see the Forefront TMG object hierarchy.
This object inherits from the FPCPersist object, which contains methods and properties related to the persistent storage of an object's data. They include methods for exporting the object's data to and importing it from an XML document.
The FPCDelegatedAdmin object does not define any methods.
The FPCDelegatedAdmin object defines the following properties.
Gets or sets the name or security identifier (SID) of the user or group of users.
Gets a Boolean value that indicates whether the delegated administrator or group of delegated administrators is predefined (installed with Forefront TMG). A predefined delegated administrator or group of delegated administrators cannot be deleted.
Gets an FPCRef object that references the FPCSecurityRole object defining the administrative role of the user or group of users.
Gets a 32-bit bitmask containing one bit flag from the FpcDelegatedAdminType enumerated type that indicates whether the user or group of users is identified in the Account property by security identifier (SID) or by name.
|CancelWaitForChanges||Cancels the registration established by the WaitForChanges method (for use in C and C++ programming only).|
|CanImport||Returns a Boolean value that indicates whether the object's properties can be imported from the specified XML document.|
|Export||Recursively writes the stored values of all the properties of the object and its subobjects to the specified XML document.|
|ExportToFile||Recursively writes the stored values of all the properties of the object and its subobjects to the specified XML file.|
|GetServiceRestartMask||Retrieves a 32-bit bitmask of the FpcServices enumerated type that specifies which services need to be restarted for currently unsaved changes to take effect.|
|Import||Recursively copies the values of all the properties of the object and of its subobjects from the specified XML document to persistent storage.|
|ImportFromFile||Recursively copies the values of all the properties of the object and of its subobjects from the specified XML file to persistent storage.|
|LoadDocProperties||Provides the XML document's properties so that you can know what information can be imported from the document.|
|Refresh||Recursively reads the values of all the properties of the object and of its subobjects from persistent storage, overwriting any changes that have not been saved.|
|Save||Recursively writes the current values of all the properties of the object and its subobjects to persistent storage.|
|WaitForChanges||Registers to wait for an event indicating that the contents of the object have changed (for use in C and C++ programming only).|
|PersistentName||Gets the persistent name of the object. The persistent name of an object is a name that is unique for the object at the respective level of the COM object hierarchy.|
|VendorParameterSets||Gets an FPCVendorParametersSets collection that can hold sets of custom data for extending the object.|
|Client||Requires Windows Vista or Windows XP.|
|Server||Requires Windows Server 2008.|
|Version||Requires Forefront Threat Management Gateway (TMG).|
Declared in Msfpccom.idl.
Build date: 11/30/2009
© 2008 Microsoft Corporation. All rights reserved.