Operation | Enables any assigned actor to |
---|
AddToManagementRole | add another EmpowerID Actor type to a Management Role as an actor, giving them the ability to add Access Levels to the Management Role. Info |
---|
To complete this assignment, the actor making the assignment must also have the AddToManagementRole operation allowed for the Management Role in question. |
|
AllowLogin | select the Allow Login option on the Advanced Tab of the Account Details Screen. |
ChangePassword | change the password of a user account. |
ClaimAccount | claim an orphaned account. |
CreateUserHomeFolder | create a home folder. |
DisableUser | disable a user account from the Password Options section of the Account Tab on the Account Details Screen. |
EditTerminalServicesAccess | select or clear the Allow this user permissions to log on to Terminal Services option in the Account Details screen on the Remote Desktop tab's Profile section. |
EditTerminalServicesProfile | edit the Profile Path for an account from the Profile Section of the Remote Desktop Tab on the Account Details Screen. |
EditUserAccountHomeFolder | edit the Home Directory for an account from the Profile Section of the Remote Desktop Tab on the Account Details Screen. |
EditUserAccountProfile | edit the Profile settings for an account from the Profile Tab of the Account Details Screen. |
EditUserAdvancedSettings | edit the settings applied to the Prevent Deletion in EmpowerID and Hide in EmpowerID settings for accounts from the Advanced Tab of the Account Details Screen. |
EditUserExpiration | set the expiration date for an account in Active Directory. |
EditUserExtensionAttributes | edit the user extension attributes from the Extension Tab of the Account Details Screen. |
EditUserNameAttributes | edit the user name attributes from the Account Name Information section of the Account Tab on the Account Details Screen. |
EditUserOrganizationAttributes | edit the Organization Information section for an account from the Organization Tab of the Account Details Screen. |
EditUserPasswordOptions | edit the Password Options settings for an account from the Account Tab of the Account Details Screen. |
EditUserTerminalServicesEnvironment | edit the Terminal Services Environment settings for an account from the Environment section of the Remote Desktop Tab of the Account Details Screen. |
EditUserTerminalServicesHomeDrive | edit the Terminal Services Home Drive setting for an account from the Profile section of the Remote DesktopTab on the Account Details Screen. |
EditUserTerminalServicesRemoteControl | edit the Terminal Services Remote Control settings for an account from Remote Control section of the Remote Desktop Tab on the Account Details Screen. |
EditUserTerminalServicesSession | edit the Terminal Services Session settings for an account from Session and Timeout Settings section of the Remote Desktop Tab on the Account Details Screen. |
EnableRequireSmartCardLogon | set the Require SmartCard Logon option for an account from the Password Options section of the Account Tab on the Account Details Screen. |
EnableUser | enable a disabled account from the Password Options section of the Account Tab on the Account Details Screen. |
JoinAccountToPerson | join an orphaned account to a Person object. |
MailDisable | remove the Mail-enabled flag from an account. |
MailDisableAccount | remove the Mail-enabled flag from an account. |
MailEnable | set an account as mail-enabled, making it available in the Exchange GAL. |
MailEnableAccount | set an account as mail-enabled, making it available in the Exchange GAL. |
MoveAccount | move an account from one location to another. |
RemoveFromManagementRole | remove another EmpowerID Actor type from a Management Role as an actor, removing their ability to add Access Levels to the Management Role. Info |
---|
To complete this assignment, the actor making the assignment must also have the RemoveFromManagementRole operation allowed for the Management Role in question. |
|
ResetPassword | reset a password for an account. |
RestoreDeletedAccount | restore a deleted account. |
RestoreDeletedMailbox | restore a mailbox that has been deleted from an account. |
SetAccountManager | select the AD line manager for an account. |
SetAllowDialIn | set the Allow Dialin option for an account from the Password Options section on the Account Tab of the Account Details Screen. |
UnlockUser | unlock an account that is locked in Active Directory. |
UnlockPersonAccounts | unlock accounts for a Person object. |
ViewAccountNameInformationAttributes | view the Account Name Information section on the Account Tab of the Account Details Screen. |
ViewAddressandPhoneNumberAttributes | view the Address and Phone Numbers section on the Organization Tab of the Account Details Screen. |
ViewAdvancedAttributeInformation | view the Advanced Attribute Information section on the Advanced Tab of the Account Details Screen. |
ViewExtensionAtttributes | view the Extension Attributes section on the Extension Tab of the Account Details Screen. |
ViewOrganizationInformationAttributes | view the Organization Information section on the Organization Tab of the Account Details Screen. |
ViewPasswordOptionAttributes | view the Password Options section on the Account Tab of the Account Details Screen. |
ViewProfileOptionAttributes | view the Profile Options section on the Profile Tab of the Account Details Screen. |
ViewRemoteDesktopAttributes | view the Remote Desktop Tab of the Account Details Screen. |
ViewRemoteDesktopEnvironmentAttributes | view the Environment section on the Remote Desktop Tab of the Account Details Screen. |
ViewRemoteDesktopProfileAttributes | view the Profile section on the Remote Desktop Tab of the Account Details Screen. |
ViewRemoteDesktopRemoteControlAttributes | view the Environment section on the Remote Desktop Tab of the Account Details Screen. |
ViewRemoteDesktopSessionandTimeOutSettings | view the Session and Timeout Settings section on the Remote Desktop Tab of the Account Details Screen. |