Previous page

Next page

Locate page in Contents

Print this page

security_descriptorType

Summary:

Security descriptor.

Type specification:

Name

Min/Max

Type

Description

owner

1..1

sidType

Security ID of a security object owner. The owner is the user that is always allowed to control the DACL of the object.

group

1..1

sidType

Linux Group security ID. It is used as a way of tracking a group for each object providing support for Linux permissions.

dacl

0..1

 

Discretionary Access Control List (DACL).

{

 

 

 

ace

0..[]

aceType

Access control entry.

}

 

 

 

Description:

Each object protected by the Agent access control system must have a state associated with it to track its security settings. This state is called security descriptor.

The discretionary access control list (DACL) contains a list of permissions granted or denied to various users and groups. The owner of the object is always allowed to control the DACL contents.

The access control entry (ACE) is an individual record in a DACL. It includes the SID of a single user or a group along with an access mask that specifies the permissions being granted or denied.

Please send us your feedback on this help page