The topic you requested is included in another documentation set. For convenience, it's displayed below. Choose Switch to see the topic in its original location.

ObjectSecurity::SetSecurityDescriptorSddlForm Method (String^, AccessControlSections)

.NET Framework (current version)

Other Versions

Sets the specified sections of the security descriptor for this ObjectSecurity object from the specified Security Descriptor Definition Language (SDDL) string.

Namespace: System.Security.AccessControl
Assembly: mscorlib (in mscorlib.dll)

Syntax

C++

public:
void SetSecurityDescriptorSddlForm(
	String^ sddlForm,
	AccessControlSections includeSections
)

Parameters

sddlForm: Type: System::String^
The SDDL string from which to set the security descriptor.

includeSections: Type: System.Security.AccessControl::AccessControlSections
The sections (access rules, audit rules, owner, primary group) of the security descriptor to set.

If the security descriptor represented by the SDDL string contains null for its discretionary access control list (DACL), a single access control entry (ACE) that allows everyone full access (AEFA) is added to the DACL. If an application modifies the DACL of a security descriptor to which an AEFA ACE has been added, the AEFA ACE is persisted with the DACL when that DACL is persisted.

This can result in an application unintentionally allowing access to principals. Because of this, an application should check for the existence of an AEFA ACE and remove it before modifying any security descriptor.

Version Information

.NET Framework
Available since 2.0

Deutsch	English	Español	Français
Italiano	日本語	한국어	Português
Pусский	简体中文	繁體中文

ObjectSecurity::SetSecurityDescriptorSddlForm Method (String^, AccessControlSections)

Syntax

Parameters

Remarks

Version Information

See Also