What is Authorization Manager?

Authorization Manager in Windows Server 2003 is used to implement role-based security. Administrators can define roles and the tasks those roles can perform by using Authorization Manager. It can nest roles to inherit characteristics from other roles, and can define application groups. Moreover, Authorization Manager lets the administrators use scripts to modify permissions dynamically, and it allows wrapping the security logic in a security policy that can be stored in Active Directory. Authorization Manager also includes an easy-to-use API for running access checks.