DOC: Documentation About ADsSecurity.dll in the ADSI Resource Kit Is Incorrect (285008)


The information in this article applies to:

  • Microsoft Active Directory Services Interface, System Component
  • Microsoft Active Directory Services Interface, Microsoft Active Directory Client
This article was previously published under Q285008

SUMMARY

The Platform Software Developer's Kit (SDK) documentation (Rtl.htm) incorrectly states that the IADsSecurity object's IADsSecurityDescriptor interface can be used to modify permissions on a shared network resource.

In fact, the IADsSecurityDescriptor interface implemented by ADsSecurity.dll cannot be used to modify the permissions on a shared network resource. The interface can be used to modify the permissions for a network file share's underlying directory if that directory is located on an NTFS drive.

MORE INFORMATION

If a file-share path is entered as input to the IADsSecurity::GetSecurityDescriptor interface, an IADsSecurityDescriptor object for the underlying directory is returned. If the shared folder is not on an NTFS partition, the IADsSecurity object will terminate abnormally, causing the calling program to stop execution.

You can use Windows Management Instrumentation (WMI) to modify permissions on a shared network resource.

REFERENCES

For more information about the IADsSecurityDescriptor interface, browse to the following MDSN Web site:

IADsSecurityDescriptor

For more information about WMI, browse to the following MSDN Web site:

Windows Management Instrumentation

For more information about the WMI Security provider, browse to the following MSDN Web site:

Security Provider

Modification Type:MajorLast Reviewed:2/12/2004
Keywords:kbDSWADSI2003Swept kb32bitOnly kbbug kbdocerr kbMsg kbpending KB285008 kbAudDeveloper
©2004 Microsoft Corporation. All rights reserved.