Information
The topic you requested is included in another documentation set. For convenience, it's displayed below. Choose Switch to see the topic in its original location.

ObjectSecurity.SetSecurityDescriptorBinaryForm Method

Sets the security descriptor for this ObjectSecurity object from the specified binary data.

This member is overloaded. For complete information about this member, including syntax, usage, and examples, click a name in the overload list.

  NameDescription
Public method SetSecurityDescriptorBinaryForm(Byte[]) Sets the security descriptor for this ObjectSecurity object from the specified array of byte values.
Public method SetSecurityDescriptorBinaryForm(Byte[], AccessControlSections) Sets the specified sections of the security descriptor for this ObjectSecurity object from the specified array of byte values.
Top

If the security descriptor represented by the binary data contains null for its discretionary access control list (DACL), a single access control entry (ACE) that allows everyone full access (AEFA) is added to the DACL. If an application modifies the DACL of a security descriptor to which an AEFA ACE has been added, the AEFA ACE is persisted with the DACL when that DACL is persisted.

This can result in an application unintentionally allowing access to principals. Because of this, an application should check for the existence of an AEFA ACE and remove it before modifying any security descriptor.

Community Additions

Show:
© 2014 Microsoft