IAzAuthorizationStore::DeleteDelegatedPolicyUser method (azroles.h)

The DeleteDelegatedPolicyUser method removes the specified security identifier (SID) in text form from the list of principals that act as delegated policy users.

Syntax

HRESULT DeleteDelegatedPolicyUser(
  [in]           BSTR    bstrDelegatedPolicyUser,
  [in, optional] VARIANT varReserved
);

Parameters

[in] bstrDelegatedPolicyUser

Text form of the SID to remove from the list of delegated policy users.

[in, optional] varReserved

Reserved for future use.

Return value

If the method succeeds, it will return S_OK. Any other HRESULT value indicates that the operation failed.

Remarks

Delegated policy users are principals that are allowed to read the subset of the policy data that the policy administrator of an IAzApplication or IAzScope object uses to administer the delegated object.

Note

Delegated policy users are not supported for XML stores.

To view the list of delegated policy users, use the DelegatedPolicyUsers property.

Requirements

Requirement Value
Minimum supported client Windows Vista [desktop apps only]
Minimum supported server Windows Server 2003 [desktop apps only]
Target Platform Windows
Header azroles.h
Library Azroles.lib
DLL Azroles.dll
Redistributable Windows Server 2003 Administration Tools Pack on Windows XP

See also

IAzApplication

IAzScope

DelegatedPolicyUsers