CSecurityDesc::IsSaclProtected

  • Article

 

Determines if the system access-control list (SACL) is configured to prevent modifications.

Syntax

bool IsSaclProtected( ) const throw( );

Return Value

Returns true if the SACL is configured to prevent the security descriptor from being modified by inheritable access-control entries (ACEs). Returns false otherwise.

Remarks

To set this flag, use the CSecurityDesc::SetSacl method.

This method is only meaningful for Windows 2000 or later, as only Windows 2000 supports automatic propagation of inheritable ACEs.

Requirements

Header: atlsecurity.h

See Also

CSecurityDesc Class
SECURITY_DESCRIPTOR_CONTROL
CSecurityDesc::IsSaclAutoInherited
CSecurityDesc::IsSaclDefaulted
CSecurityDesc::IsSaclPresent