API Reference
GpoApplicabilityDecision
Diagnostic decision for a single GPO link when evaluating applicability.
Inheritance
- Object
- GpoApplicabilityDecision
Constructors
public GpoApplicabilityDecision() #Inherited Methods
Properties
public String GpoDistinguishedName { get; set; } #GPO distinguishedName (CN={GUID},CN=Policies,…) when available.
public Nullable<Boolean> HasWmiFilter { get; set; } #True when a WMI filter is linked to this GPO; false when none; null when not evaluated.
public Nullable<Boolean> WmiMatched { get; set; } #True when WMI filter matched; false when it did not; null when no filter.
public Nullable<Boolean> WmiAccessDenied { get; set; } #True when WMI filter or its attributes could not be read due to access being denied; null when not evaluated.
public String WmiFilterDistinguishedName { get; set; } #Distinguished name of the linked WMI filter (when readable).
public String WmiFilterName { get; set; } #Display name of the linked WMI filter (when readable).
public Nullable<Int32> WmiQueryCount { get; set; } #Number of WMI queries in the filter (when readable).
public String WmiEvaluation { get; set; } #Evaluation mode for WMI: Runtime, Heuristic, Denied, or null.
public Nullable<Boolean> SecurityAllowed { get; set; } #True when security filtering allows Apply GP; false when denied; null when not evaluated.
public String SecurityReason { get; set; } #Optional reason string for the security decision (matched ACE, denies, missing rights).
public IReadOnlyList<String> SecurityAllowSources { get; set; } #Optional list of sources that allowed application (e.g., "Apply: Authenticated Users", "Read: Domain Computers").
public IReadOnlyList<String> SecurityDenySources { get; set; } #Optional list of sources that denied application (e.g., "Deny Apply: SomeGroup").
public Boolean Included { get; set; } #True when the GPO is included in the effective order after evaluations.