System.Security.AccessControl
TOC
Collapse the table of content
Expand the table of content

System.Security.AccessControl Namespace

 

The System.Security.AccessControl namespace provides programming elements that control access to and audit security-related actions on securable objects.

ClassDescription
System_CAPS_pubclassAccessRule

Represents a combination of a user's identity, an access mask, and an access control type (allow or deny). An AccessRule object also contains information about the how the rule is inherited by child objects and how that inheritance is propagated.

System_CAPS_pubclassAccessRule<T>

Represents a combination of a user's identity, an access mask, and an access control type (allow or deny). An AccessRule`1 object also contains information about the how the rule is inherited by child objects and how that inheritance is propagated.

System_CAPS_pubclassAceEnumerator

Provides the ability to iterate through the access control entries (ACEs) in an access control list (ACL).

System_CAPS_pubclassAuditRule

Represents a combination of a user's identity and an access mask. An AuditRule object also contains information about how the rule is inherited by child objects, how that inheritance is propagated, and for what conditions it is audited.

System_CAPS_pubclassAuditRule<T>

Represents a combination of a user’s identity and an access mask.

System_CAPS_pubclassAuthorizationRule

Determines access to securable objects. The derived classes AccessRule and AuditRule offer specializations for access and audit functionality.

System_CAPS_pubclassAuthorizationRuleCollection

Represents a collection of AuthorizationRule objects.

System_CAPS_pubclassCommonAce

Represents an access control entry (ACE).

System_CAPS_pubclassCommonAcl

Represents an access control list (ACL) and is the base class for the DiscretionaryAcl and SystemAcl classes.

System_CAPS_pubclassCommonObjectSecurity

Controls access to objects without direct manipulation of access control lists (ACLs). This class is the abstract base class for the NativeObjectSecurity class.

System_CAPS_pubclassCommonSecurityDescriptor

Represents a security descriptor. A security descriptor includes an owner, a primary group, a Discretionary Access Control List (DACL), and a System Access Control List (SACL).

System_CAPS_pubclassCompoundAce

Represents a compound Access Control Entry (ACE).

System_CAPS_pubclassCryptoKeyAccessRule

Represents an access rule for a cryptographic key. An access rule represents a combination of a user's identity, an access mask, and an access control type (allow or deny). An access rule object also contains information about the how the rule is inherited by child objects and how that inheritance is propagated.

System_CAPS_pubclassCryptoKeyAuditRule

Represents an audit rule for a cryptographic key. An audit rule represents a combination of a user's identity and an access mask. An audit rule also contains information about the how the rule is inherited by child objects, how that inheritance is propagated, and for what conditions it is audited.

System_CAPS_pubclassCryptoKeySecurity

Provides the ability to control access to a cryptographic key object without direct manipulation of an Access Control List (ACL).

System_CAPS_pubclassCustomAce

Represents an Access Control Entry (ACE) that is not defined by one of the members of the AceType enumeration.

System_CAPS_pubclassDirectoryObjectSecurity

Provides the ability to control access to directory objects without direct manipulation of Access Control Lists (ACLs).

System_CAPS_pubclassDirectorySecurity

Represents the access control and audit security for a directory. This class cannot be inherited.

System_CAPS_pubclassDiscretionaryAcl

Represents a Discretionary Access Control List (DACL).

System_CAPS_pubclassEventWaitHandleAccessRule

Represents a set of access rights allowed or denied for a user or group. This class cannot be inherited.

System_CAPS_pubclassEventWaitHandleAuditRule

Represents a set of access rights to be audited for a user or group. This class cannot be inherited.

System_CAPS_pubclassEventWaitHandleSecurity

Represents the Windows access control security applied to a named system wait handle. This class cannot be inherited.

System_CAPS_pubclassFileSecurity

Represents the access control and audit security for a file. This class cannot be inherited.

System_CAPS_pubclassFileSystemAccessRule

Represents an abstraction of an access control entry (ACE) that defines an access rule for a file or directory. This class cannot be inherited.

System_CAPS_pubclassFileSystemAuditRule

Represents an abstraction of an access control entry (ACE) that defines an audit rule for a file or directory. This class cannot be inherited.

System_CAPS_pubclassFileSystemSecurity

Represents the access control and audit security for a file or directory.

System_CAPS_pubclassGenericAce

Represents an Access Control Entry (ACE), and is the base class for all other ACE classes.

System_CAPS_pubclassGenericAcl

Represents an access control list (ACL) and is the base class for the CommonAcl, DiscretionaryAcl, RawAcl, and SystemAcl classes.

System_CAPS_pubclassGenericSecurityDescriptor

Represents a security descriptor. A security descriptor includes an owner, a primary group, a Discretionary Access Control List (DACL), and a System Access Control List (SACL).

System_CAPS_pubclassKnownAce

Encapsulates all Access Control Entry (ACE) types currently defined by Microsoft Corporation. All KnownAce objects contain a 32-bit access mask and a SecurityIdentifier object.

System_CAPS_pubclassMutexAccessRule

Represents a set of access rights allowed or denied for a user or group. This class cannot be inherited.

System_CAPS_pubclassMutexAuditRule

Represents a set of access rights to be audited for a user or group. This class cannot be inherited.

System_CAPS_pubclassMutexSecurity

Represents the Windows access control security for a named mutex. This class cannot be inherited.

System_CAPS_pubclassNativeObjectSecurity

Provides the ability to control access to native objects without direct manipulation of Access Control Lists (ACLs). Native object types are defined by the ResourceType enumeration.

System_CAPS_pubclassObjectAccessRule

Represents a combination of a user's identity, an access mask, and an access control type (allow or deny). An ObjectAccessRule object also contains information about the type of object to which the rule applies, the type of child object that can inherit the rule, how the rule is inherited by child objects, and how that inheritance is propagated.

System_CAPS_pubclassObjectAce

Controls access to Directory Services objects. This class represents an Access Control Entry (ACE) associated with a directory object.

System_CAPS_pubclassObjectAuditRule

Represents a combination of a user's identity, an access mask, and audit conditions. An ObjectAuditRule object also contains information about the type of object to which the rule applies, the type of child object that can inherit the rule, how the rule is inherited by child objects, and how that inheritance is propagated.

System_CAPS_pubclassObjectSecurity

Provides the ability to control access to objects without direct manipulation of Access Control Lists (ACLs). This class is the abstract base class for the CommonObjectSecurity and DirectoryObjectSecurity classes.

System_CAPS_pubclassObjectSecurity<T>

Provides the ability to control access to objects without direct manipulation of Access Control Lists (ACLs); also grants the ability to type-cast access rights.

System_CAPS_pubclassPrivilegeNotHeldException

The exception that is thrown when a method in the System.Security.AccessControl namespace attempts to enable a privilege that it does not have.

System_CAPS_pubclassQualifiedAce

Represents an Access Control Entry (ACE) that contains a qualifier. The qualifier, represented by an AceQualifier object, specifies whether the ACE allows access, denies access, causes system audits, or causes system alarms. The QualifiedAce class is the abstract base class for the CommonAce and ObjectAce classes.

System_CAPS_pubclassRawAcl

Represents an Access Control List (ACL).

System_CAPS_pubclassRawSecurityDescriptor

Represents a security descriptor. A security descriptor includes an owner, a primary group, a Discretionary Access Control List (DACL), and a System Access Control List (SACL).

System_CAPS_pubclassRegistryAccessRule

Represents a set of access rights allowed or denied for a user or group. This class cannot be inherited.

System_CAPS_pubclassRegistryAuditRule

Represents a set of access rights to be audited for a user or group. This class cannot be inherited.

System_CAPS_pubclassRegistrySecurity

Represents the Windows access control security for a registry key. This class cannot be inherited.

System_CAPS_pubclassSemaphoreAccessRule

Represents a set of access rights allowed or denied for a user or group. This class cannot be inherited.

System_CAPS_pubclassSemaphoreAuditRule

Represents a set of access rights to be audited for a user or group. This class cannot be inherited.

System_CAPS_pubclassSemaphoreSecurity

Represents the Windows access control security for a named semaphore. This class cannot be inherited.

System_CAPS_pubclassSystemAcl

Represents a System Access Control List (SACL).

DelegateDescription
System_CAPS_protdelegateNativeObjectSecurity.ExceptionFromErrorCode

Provides a way for integrators to map numeric error codes to specific exceptions that they create.

EnumerationDescription
System_CAPS_pubenumAccessControlActions

Specifies the actions that are permitted for securable objects.

System_CAPS_pubenumAccessControlModification

Specifies the type of access control modification to perform. This enumeration is used by methods of the ObjectSecurity class and its descendents.

System_CAPS_pubenumAccessControlSections

Specifies which sections of a security descriptor to save or load.

System_CAPS_pubenumAccessControlType

Specifies whether an AccessRule object is used to allow or deny access. These values are not flags, and they cannot be combined.

System_CAPS_pubenumAceFlags

Specifies the inheritance and auditing behavior of an access control entry (ACE).

System_CAPS_pubenumAceQualifier

Specifies the function of an access control entry (ACE).

System_CAPS_pubenumAceType

Defines the available access control entry (ACE) types.

System_CAPS_pubenumAuditFlags

Specifies the conditions for auditing attempts to access a securable object.

System_CAPS_pubenumCompoundAceType

Specifies the type of a CompoundAce object.

System_CAPS_pubenumControlFlags

These flags affect the security descriptor behavior.

System_CAPS_pubenumCryptoKeyRights

Specifies the cryptographic key operation for which an authorization rule controls access or auditing.

System_CAPS_pubenumEventWaitHandleRights

Specifies the access control rights that can be applied to named system event objects.

System_CAPS_pubenumFileSystemRights

Defines the access rights to use when creating access and audit rules.

System_CAPS_pubenumInheritanceFlags

Inheritance flags specify the semantics of inheritance for access control entries (ACEs).

System_CAPS_pubenumMutexRights

Specifies the access control rights that can be applied to named system mutex objects.

System_CAPS_pubenumObjectAceFlags

Specifies the presence of object types for Access Control Entries (ACEs).

System_CAPS_pubenumPropagationFlags

Specifies how Access Control Entries (ACEs) are propagated to child objects. These flags are significant only if inheritance flags are present.

System_CAPS_pubenumRegistryRights

Specifies the access control rights that can be applied to registry objects.

System_CAPS_pubenumResourceType

Specifies the defined native object types.

System_CAPS_pubenumSecurityInfos

Specifies the section of a security descriptor to be queried or set.

System_CAPS_pubenumSemaphoreRights

Specifies the access control rights that can be applied to named system semaphore objects.

Return to top
Show:
© 2016 Microsoft