Grant-SPObjectSecurity

新增安全性主體至 SPObjectSecurity 物件。

Syntax

Grant-SPObjectSecurity
     [-Identity] <SPObjectSecurity>
     [-Principal] <SPClaim>
     [-Rights] <String[]>
     [-AssignmentCollection <SPAssignmentCollection>]
     [-Replace]
     [<CommonParameters>]

Description

The Grant-SPObjectSecurity cmdlet adds a new security principal, such as a user, to a SPObjectSecurity object. An SPObjectSecurity object is a common object that is used to represent the security access control list (ACL) of SharePoint administrative objects, in particular, service applications.

如需適用於 SharePoint 產品的 Windows PowerShell 權限及最新資訊,請參閱線上文件 SharePoint Server Cmdlet

範例

------------------範例------------------

$principal = New-SPClaimsPrincipal "CONTOSO\JaneDoe" -IdentityType WindowsSamAccountName 
$sa = Get-SPServiceApplication | ?{$_.TypeName -eq 'User Profile Service Application'}
$security = Get-SPServiceApplicationSecurity $sa -Admin
Grant-SPObjectSecurity $security $principal "Full Control"
Set-SPServiceApplicationSecurity $sa -Admin $security

此範例會擷取對應至 User Profile Service Application 上系統管理員 ACL 的 SPObjectSecurity 物件,並將新的使用者主體新增至該 ACL。

新使用者是服務應用程式 $serviceApp 的管理員。

參數

-AssignmentCollection

Manages objects for the purpose of proper disposal. Use of objects, such as SPWeb or SPSite, can use large amounts of memory and use of these objects in Windows PowerShell scripts requires proper memory management. Using the SPAssignment object, you can assign objects to a variable and dispose of the objects after they are needed to free up memory. When SPWeb, SPSite, or SPSiteAdministration objects are used, the objects are automatically disposed of if an assignment collection or the Global parameter is not used.

When the Global parameter is used, all objects are contained in the global store. If objects are not immediately used, or disposed of by using the Stop-SPAssignment command, an out-of-memory scenario can occur.

Type:SPAssignmentCollection
Position:Named
Default value:None
Accept pipeline input:True
Accept wildcard characters:False
Applies to:SharePoint Server Subscription Edition

-Identity

指定要新增安全性主體的目標 SPObjectSecurity 物件。 您可以使用 Get-SPServiceApplicationSecurity Cmdlet 取得 SPObjectSecurity 物件。

Type:SPObjectSecurity
Position:1
Default value:None
Accept pipeline input:True
Accept wildcard characters:False
Applies to:SharePoint Server Subscription Edition

-Principal

指定要套用權限的主體。

其類型必須是有效的主體名稱,例如 [完全控制]。

Type:SPClaim
Position:2
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
Applies to:SharePoint Server Subscription Edition

-Replace

Replaces the existing rights on the SPObjectSecurity object with the new rights specified. If this parameter is not specified, the new rights are added to the existing rights.

Type:SwitchParameter
Position:Named
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
Applies to:SharePoint Server Subscription Edition

-Rights

指定要授與主體的權限。

此類型必須是有效的字串陣列,代表授與主體的權限。

Type:String[]
Position:3
Default value:None
Accept pipeline input:False
Accept wildcard characters:False
Applies to:SharePoint Server Subscription Edition