Managing roles and rights in a zone
To manage rights and roles in a zone, including creating and deleting role definitions and updating time constraints, your user account must be set with the following permissions:
Select this target object | To apply these permissions |
Container for the authorization store For example: domain/UNIX/Zones/arcade/Authorization
|
On the Object tab, select Allow to apply the following properties to this object and all child objects:
Click the Properties tab and select Allow to apply the following properties to the msDS-AzAdminManager object:
|
AzTaskObjectContainer |
On the Object tab, select Allow to apply the following properties to this object and all child objects:
Click the Properties tab and select Allow to apply the following properties to msDS-AzTask objects:
|
AzOpObjectContainer |
On the Object tab, select Allow to apply the following properties to this object and all child objects:
Click the Properties tab and select Allow to apply the following properties to msDS-AzOperation objects:
|