jspωiki
Discretionary Access Control List
Your trail: 

Overview[1]#

Discretionary Access Control List (DACL) are a component of the Security Descriptor which identifies the trustees that are allowed or denied access to a securable object within Microsoft Active Directory or Microsoft Windows

Discretionary Access Control List is accessed when access to a Securable object is requested and the system checks the ACEs in the object's Discretionary Access Control List to determine whether to grant access to the securable object.

  • If the securable object does NOT have a Discretionary Access Control List, the system grants full access to everyone.
  • If the securable object's Discretionary Access Control List has no Access Control Entry, the system denies all attempts to access the object because the Discretionary Access Control List does not allow any access rights.
The system checks the Access Control Entries in sequence until it finds one or more ACEs that allow all the requested access rights, or until any of the requested access rights are denied.

More Information#

There might be more information for this subject on one of the following:
This page (revision-8) was last changed on 04-Dec-2018 11:37 by jim Top

Main page
About
Recent Changes
Tools Page

Lead Pages#

WikiEtiquette
Find pages
Unused pages
Undefined pages
Page Index
News


Site Maintained By -jim

Costs of Wiki

Donations#

If you like Ldapwiki, please consider a donation.

Donation for LDAPWiki


Active Sessions43
Uptime11d, 2h 50m 17s
Number of pages15436

JSPWiki v2.10.1
jspωiki
Please see our Copyright And Intellectual Property Page and Standard Disclaimer Pages!
JSPWiki v2.10.1