Overview#Access Control List (ACL) is typically a list of Access Control permissions. EDirectory Access Control List is also an ACL (eDirectory Attribute) Microsoft Active Directory is a list of Access Control Entries (ACE).
Microsoft says - Do not try to work directly with the contents of an Access Control List. To ensure that ACLs are semantically correct, use the appropriate functions to create and manipulate ACLs.
Microsoft says - ACLs also provide access control to Microsoft Active Directory directory service objects. Active Directory Service Interfaces (ADSI) include routines to create and modify the contents of these ACLs.
More Information#There might be more information for this subject on one of the following:
- ACL (eDirectory Attribute)
- Access Control
- Access Control Entry
- Access Proxy
- Adaptive Policy-based Access Management
- Best Practices for LDAP Security
- Microsoft Active Directory Anomalies