internal/components/DefaultAccessRules/forest/accessRules/addefault_services_claims.psd1
|
@{ Path = 'CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ Path = 'CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, DeleteChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' Present = 'false' } @{ Path = 'CN=Claim Types,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, DeleteChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ Path = 'CN=Claim Types,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'GenericAll' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' Present = 'false' } @{ Path = 'CN=Resource Properties,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, DeleteChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ Path = 'CN=Resource Properties,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'GenericAll' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' Present = 'false' } @{ Path = 'CN=Value Types,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ Path = 'CN=Value Types,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, DeleteChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' Present = 'false' } @{ Path = 'CN=Global Resource Property List,CN=Resource Property Lists,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = 'S-1-1-0' ActiveDirectoryRights = 'DeleteTree, Delete' InheritanceType = 'None' AccessControlType = 'Deny' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ Path = 'CN=Global Resource Property List,CN=Resource Property Lists,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ Path = 'CN=Global Resource Property List,CN=Resource Property Lists,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'GenericAll' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' Present = 'false' } @{ Path = 'CN=Central Access Policies,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, DeleteChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ Path = 'CN=Central Access Policies,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'GenericAll' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' Present = 'false' } @{ Path = 'CN=Central Access Rules,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, DeleteChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ Path = 'CN=Central Access Rules,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'GenericAll' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' Present = 'false' } @{ Path = 'CN=Claims Transformation Policies,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = 'S-1-5-11' ActiveDirectoryRights = 'GenericRead' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ Path = 'CN=Claims Transformation Policies,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, DeleteChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ Path = 'CN=Claims Transformation Policies,CN=Claims Configuration,CN=Services,%ConfigurationDN%' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'GenericAll' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' Present = 'false' } #region Resource Properties @{ ObjectCategory = 'cfg_claim_resourceProperty' Identity = 'S-1-1-0' ActiveDirectoryRights = 'DeleteTree, Delete' InheritanceType = 'None' AccessControlType = 'Deny' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ ObjectCategory = 'cfg_claim_resourceProperty' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ ObjectCategory = 'cfg_claim_resourceProperty' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'GenericAll' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' Present = 'false' } #endregion Resource Properties #region Value Types @{ ObjectCategory = 'cfg_claim_valueType' Identity = 'S-1-1-0' ActiveDirectoryRights = 'DeleteTree, Delete' InheritanceType = 'None' AccessControlType = 'Deny' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ ObjectCategory = 'cfg_claim_valueType' Identity = 'S-1-5-11' ActiveDirectoryRights = 'GenericRead' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ ObjectCategory = 'cfg_claim_valueType' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'CreateChild, Self, WriteProperty, ExtendedRight, GenericRead, WriteDacl, WriteOwner' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' } @{ ObjectCategory = 'cfg_claim_valueType' Identity = '%DomainSID%-512' ActiveDirectoryRights = 'GenericAll' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' Present = 'false' } @{ ObjectCategory = 'cfg_claim_valueType' Identity = '%DomainSID%-519' ActiveDirectoryRights = 'GenericAll' InheritanceType = 'None' AccessControlType = 'Allow' ObjectType = '<All>' InheritedObjectType = '<All>' Present = 'false' } #endregion Value Types |