IAzAuthorizationStore::DeletePolicyReader method (azroles.h)

The DeletePolicyReader method removes the specified security identifier (SID) in text form from the list of principals that act as policy readers.

Syntax

HRESULT DeletePolicyReader(
  [in]           BSTR    bstrReader,
  [in, optional] VARIANT varReserved
);

Parameters

[in] bstrReader

Text form of the SID to remove from the list of policy readers.

[in, optional] varReserved

Reserved for future use.

Return value

If the method succeeds, it will return S_OK. Any other HRESULT value indicates that the operation failed.

Remarks

Policy readers for an object can read attributes for the object and for child objects of the object. Readers can also use the policy; for example, readers can call the AccessCheck method. Readers cannot modify the object or its child objects.

To view the list of policy readers, use the PolicyReaders property.

Requirements

Requirement Value
Minimum supported client Windows Vista [desktop apps only]
Minimum supported server Windows Server 2003 [desktop apps only]
Target Platform Windows
Header azroles.h
Library Azroles.lib
DLL Azroles.dll
Redistributable Windows Server 2003 Administration Tools Pack on Windows XP

See also

AccessCheck

PolicyReaders