2.2.15 access_mask Element

Name: access_mask

Namespace: http://schemas.microsoft.com/security/

Type: hexBinary [XMLSCHEMA2/2] section 3.2.15, but limited to between one and eight digits

Description: The access_mask element is a 32-bit set of flags that are used to encode the user rights to an entity. An access mask is used both to encode the rights to an entity assigned to a security principal and to encode the requested access when opening an entity. This element MUST exist for all ACEs. A bit set to 1 specifies that the right is granted. The unused lower bits MUST be ignored. The lower 16 bits are as follows.

MSB

LSB

15

14

13

12

11

10

9

8

7

6

5

4

3

2

1

0

V

DOI

WOP

WA

RA

E

WP

RP

AM

WB

RB

Value

Meaning

RB

Read body

WB

Write body

AM

Append message

RP

Read property

WP

Write property

E

Execute

RA

Read attributes

WA

Write attributes

WOP

Write own property

DOI

Delete own item

V

View item

Show: