In Windows Server 2008, several new features were introduced in Authorization Manager. These include:

Many additional improvements and changes were made to Authorization Manager. Some of these are:

  • Improvements were made to the Authorization Manager application programming interface (API), including optimization of common functions and the introduction of simpler, faster versions of commonly used methods, such as AccessCheck.

  • LDAP queries are not limited to only user objects.

  • Additional events are recorded in the log if auditing is active.

  • The use of business rules and authorization rules is controlled by a registry setting. In Windows Server 2008 R2 and Windows Server 2008, rules are disabled by default. In earlier versions of Windows, rules were enabled by default.


Table Of Contents