DefaultAccessPermission
Sets the Access Control List (ACL) of the principals that can access classes for which there is no AccessPermission setting. This ACL is used only by applications that do not call CoInitializeSecurity and do not have an AccessPermission value under their AppID key.
Registry Entry
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole DefaultAccessPermission = ACL
Remarks
This is a REG_BINARY value.
The COM runtime in the server checks the ACL described by this value while impersonating the caller that is attempting to connect to the object, and its success determines whether the access is allowed or disallowed. If the access-check fails, the connection to the object is disallowed. If this named value does not exist, only the server principal and local system are allowed to call the server.
By default, this value has no entries in it. Only the server principal and system are allowed to call the server.
This value provides a simple level of centralized administration of the default connection access to running objects on a computer.
Related topics