Share via

CSecurityDesc::IsDaclDefaulted

  • Article

Determines if the security descriptor is configured with a default discretionary access-control list (DACL).

bool IsDaclDefaulted( ) const throw( );

Return Value

Returns true if the security descriptor contains a default DACL, false otherwise.

Remarks

This flag can affect how the system treats the DACL, with respect to access-control entry (ACE) inheritance. For example, if an object's creator does not specify a DACL, the object receives the default DACL from the creator's access token. The system ignores this flag if the SE_DACL_PRESENT flag is not set.

This flag is used to determine how the final DACL on the object is to be computed and is not stored physically in the security descriptor control of the securable object.

To set this flag, use the CSecurityDesc::SetDacl method.

Requirements

Header: atlsecurity.h

See Also

Reference

CSecurityDesc Class

SECURITY_DESCRIPTOR_CONTROL

CSecurityDesc::IsDaclAutoInherited

CSecurityDesc::IsDaclPresent

CSecurityDesc::IsDaclProtected

Other Resources

CSecurityDesc Members