File.GetAccessControl Method (String, AccessControlSections)


The .NET API Reference documentation has a new home. Visit the .NET API Browser on to see the new experience.

Gets a FileSecurity object that encapsulates the specified type of access control list (ACL) entries for a particular file.

Namespace:   System.IO
Assembly:  mscorlib (in mscorlib.dll)

public static FileSecurity GetAccessControl(
	string path,
	AccessControlSections includeSections


Type: System.String

The path to a file containing a FileSecurity object that describes the file's access control list (ACL) information.

Type: System.Security.AccessControl.AccessControlSections

One of the AccessControlSections values that specifies the type of access control list (ACL) information to receive.

Return Value

Type: System.Security.AccessControl.FileSecurity

A FileSecurity object that encapsulates the access control rules for the file described by the path parameter.

Exception Condition

An I/O error occurred while opening the file.


The path parameter is null.


The file could not be found.


The path parameter specified a file that is read-only.


This operation is not supported on the current platform.


The path parameter specified a directory.


The caller does not have the required permission.

Use the GetAccessControl method to retrieve the access control list (ACL) entries for a file.

An ACL describes individuals and/or groups who have, or do not have, rights to specific actions on the given file. For more information, see How to: Add or Remove Access Control List Entries.

In NTFS environments, ReadAttributes and ReadExtendedAttributes are granted to the user if the user has ListDirectory rights on the parent folder. To deny ReadAttributes and ReadExtendedAttributes, deny ListDirectory on the parent directory.


for permission to read the access control list. Security action: Demand. Associated enumerations: FileIOPermissionAccess.NoAccess, AccessControlActions.View

.NET Framework
Available since 2.0
Return to top