ObjectSecurity.SetSecurityDescriptorBinaryForm Method (Byte[])

 
System_CAPS_noteNote

The .NET API Reference documentation has a new home. Visit the .NET API Browser on docs.microsoft.com to see the new experience.

Sets the security descriptor for this ObjectSecurity object from the specified array of byte values.

Namespace:   System.Security.AccessControl
Assembly:  mscorlib (in mscorlib.dll)

public void SetSecurityDescriptorBinaryForm(
	byte[] binaryForm
)

Parameters

binaryForm
Type: System.Byte[]

The array of bytes from which to set the security descriptor.

If the security descriptor represented by the binary data contains null for its discretionary access control list (DACL), a single access control entry (ACE) that allows everyone full access (AEFA) is added to the DACL. If an application modifies the DACL of a security descriptor to which an AEFA ACE has been added, the AEFA ACE is persisted with the DACL when that DACL is persisted.

This can result in an application unintentionally allowing access to principals. Because of this, an application should check for the existence of an AEFA ACE and remove it before modifying any security descriptor.

.NET Framework
Available since 2.0
Return to top
Show: