|
Getting Information From an ACL
Windows NT version 4.0 provides several functions for retrieving
access-control information from an ACL. These include functions for determining the access
rights that an ACL grants or audits for a specified trustee. A trustee can be a
user account, group account, or a logon account for a program such as a Windows
NT service. Other functions enable you to extract ACE information from an ACL.
The GetEffectiveRightsFromAcl function enables you to determine the effective access rights that a DACL
grants to a specified trustee. The trustee's effective access rights are the
access rights that the ACL grants to the trustee or to any groups of which the
trustee is a member. GetEffectiveRightsFromAcl checks all access-allowed and access-denied ACEs in the ACL to determine the
effective rights for the trustee.
The GetAuditedPermissionsFromAcl function enables you to check a SACL to determine the audited access rights
for a specified trustee. The audited rights indicate the types of access
attempts that cause the system to generate an audit record in the system event log.
The function returns two access masks: one containing the access rights monitored
for failed access attempts, and another containing the access rights monitored
for successful access. GetAuditedPermissionsFromAcl checks all system-audit ACEs in the ACL. The returned access masks indicate
the rights that the ACL audits for the trustee or for any groups of which the
trustee is a member.
The GetExplicitEntriesFromAcl function retrieves an array of EXPLICIT_ACCESS structures that describe the ACEs in an ACL. This can be useful when you are
copying ACE information from one ACL to another. For example, you can call GetExplicitEntriesFromAcl to get information about the ACEs in one ACL. Then pass the returned EXPLICIT_ACCESS structures in a call to the SetEntriesInAcl function to create equivalent ACEs in the new ACL.
You can use the GetAce function to copy an ACE from an existing ACL. This can be useful if you are
using the low-level access control functions to build an ACL. For more
information, see Low-Level Access Control Functions.
| Last news from Greatis Software |
 |
|
Nostalgia .Net |
|
.Net is powerful, but not all-powerful, so sometimes we need to use Win32 API for our .Net applications. It's simple enough with Platform Invoke if you have Win32 skill, but we do not always have time to dig the ancient documentation, declare the special types that are compatible with Win32, find the values of the Win32's constants and so on. Nostalgia .Net offers several simple-to-use classes, and components that will allow you to forget about the headache of Win32 and just use the power of Win32 in your application the same way as you use the native. Net classes. More » |
| Recommended software for developers |
 |
|
Ultimate Pack |
|
Component pack for Delphi and C++ Builder that contains runtime form designer, runtime object inspector, print suite and much more for the very special price. More » |
 |
|
Form Designer .Net |
|
Unique runtime form design solution that allows to edit any form in .Net WinForms application at runtime with full source codes for only 300 euro! More » |
 |
|
Print Suite .Net |
|
Print Suite .Net is a set of components for easy printing texts, images and grids from your WinForms applications. Full C# source codes are available More » |
 |
|
Gradient Controls .Net |
|
Gradient Controls .Net offers controls with gradient background feature. Labels, panels and so on... Full C# source codes are available More » |
 |
|
Greatis iGrid |
|
iGrid plots drawing grid right over your desktop, so you can use it everywhere, with any drawing application without any special plugins for different graphic editors. More » |
All the contacts and projectsDmitry Vasiliev (just.dmitry)
Related LinksSoftware for Visual Studio .NET developers
Software for Delphi and C++ Builder developers
Software for Visual Basic 6 developers
Delphi Tips&Tricks
MegaDetailed.NET More Online Helps Win32 Programmer's Reference
Win32 Multimedia Programmer's Reference
OLE Programmer's Reference
Microsoft Windows Pen API Programmer's Reference
Microsoft Windows Sockets 2 Reference
Microsoft Windows Telephony API (TAPI) Programmer's Reference
Unix Manual Pages
|
