How to work with Item and Folder Permissions using WebDAV?

Permissions to folders and items can be read and changed via WebDAV using an XML descriptor.  It’s also possible to use other APIs such as ADO update security settings.   An XML descriptor is an XML document in a string which describes security permissions to an item or folder.  A PROPFIND is used to read security information.  PROPPATCH is used to update the permission. 


Here is what a descriptor looks like:

Example Descriptor in XML


This is the format of the descriptor:

Exchange Store XML Security Descriptor Format


Before starting to use the XML descriptor, it’s important to have an understanding of security…



Here are some basic examples on usage:

Getting an Item's XML Security Descriptor


How to add an access control entry to a folder item in Exchange 2000 Web Storage System by coding in Exchange 2000 Server.


Note: ADO can also be used instead of WebDAV…

How To Deny a User Read Permissions on a Mail Item (ADO)


Here is some additional information on the subject:

Web Storage System Security Roles

Skip to main content