Summary:
Security descriptor.
Type specification:
Name |
Min/Max |
Type |
Description |
|
|
Security ID of a security object owner. The owner is the user that is always allowed to control the DACL of the object. |
|
|
|
|
|
|
|
|
Discretionary Access Control List (DACL). |
|
|
|
|
|
|
Access control entry. |
|
|
|
|
|
Description:
Each object protected by the Agent access control system must have a state associated with it to track its security settings. This state is called security descriptor.
The discretionary access control list (DACL) contains a list of permissions granted or denied to various users and groups. The owner of the object is always allowed to control the DACL contents.
The access control entry (ACE) is an individual record in a DACL. It includes the SID of a single user or a group along with an access mask that specifies the permissions being granted or denied.