Article ID: 255126
Article Last Modified on 9/28/2007
APPLIES TO
- Microsoft Exchange Server 5.5 Standard Edition
- Microsoft Active Directory Service Interfaces 2.5
This article was previously published under Q255126
SYMPTOMS
When you use Active Directory Service Interfaces (ADSI) to retrieve the Exchange Server 5.5 recipient attribute NT-Security-Descriptor as a binary value, instead of as an ASCII value, you use the binary operator as follows:
set obj = GetObject(AdsPath) obj.GetInfoEx Array("NT-Security-Descriptor;binary"), 0
If you have not installed Exchange Server 5.5 Service Pack 1 (SP1) or later, you may receive the following error:
If your Exchange Server 5.5 is running on Microsoft Windows 2000 and you choose to modify the GetInfoEx command to not include the binary operator, and then attempt to convert a raw security descriptor to an IADsSecurityDescriptor by using the following code:
obj.GetInfoEx Array("NT-Security-Descriptor"), 0 v = obj.Get("NT-Security-Descriptor")<BR/> Set propVal = CreateObject("PropertyValue") propVal.PutObjectProperty ADSTYPE_OCTET_STRING, v Set sd = propVal.GetObjectProperty(ADSTYPE_NT_SECURITY_DESCRIPTOR)
you may receive the following error:
RESOLUTION
To resolve both errors, install Exchange Server 5.5 Service Pack 1 (SP1) or later, and use the binary operator as follows:
obj.GetInfoEx Array("NT-Security-Descriptor;binary"), 0
REFERENCES
For a complete sample that demonstrates how to retrieve and modify the NT-Security-Descriptor, see the sample "Setting and Modifying the Exchange Security Descriptor" in the Adsi.htm file. The Adsi.htm file is part of the ADSI 2.5 Resource Kit, which is available for download from the following Web site:
To locate the sample, open Adsi.htm, select Interop, and then click Exchange. You will see the sample listed in the table of contents.
Additional query words: -2147016694(8007200a) -2147023591(80070519)
Keywords: kbmsg kbprb KB255126