Security policy properties (General tab)
Use the General tab to view, modify, or access the following properties and
actions. See About access rights for more information about the order of evaluation of security applied by security policy templates compared to security applied from other sources.
The object's name appears at the top.
- Description
- Modify the object's description.
- Preserve Direct ACEs
- Select this check box if you want to preserve permissions that were not inherited
in the target object's Access Control List when a security template is
applied to it from the security policy. Permissions placed on the object from
its class and any additional permissions applied by directly editing the object
would be kept on the object if the check box is selected, and will be removed
if the check box is cleared. See Preserve Direct ACEs for more information.
The setting on this check box affects all the security templates belonging
to the security policy. Any permissions that can be applied from a security
parent are not affected by the setting on this check box. Directly applied
permissions always take precedence over indirectly applied permissions.
Security Templates
Lists the templates currently assigned to the security policy.
- Add
- Click Add to open the Add Templates dialog
box where you can add or remove templates for the four version states of In
Process, Superseded, Reservation, and Released. You can also create templates
that are applied by an application.
- Modify
- Select one of the templates listed under Security Templates, and click Modify
to enable or disable the template and also to set the template's permissions
list.
- Remove
- Select one of the templates listed under Security Templates, and click Remove
to remove the template from the security policy.