Edit

Share via

ADS_SD_CONTROL_ENUM enumeration (iads.h)

  • Article

The ADS_SD_CONTROL_ENUM enumeration specifies control flags for a security descriptor.

Syntax

typedef enum __MIDL___MIDL_itf_ads_0001_0048_0005 {
  ADS_SD_CONTROL_SE_OWNER_DEFAULTED = 0x1,
  ADS_SD_CONTROL_SE_GROUP_DEFAULTED = 0x2,
  ADS_SD_CONTROL_SE_DACL_PRESENT = 0x4,
  ADS_SD_CONTROL_SE_DACL_DEFAULTED = 0x8,
  ADS_SD_CONTROL_SE_SACL_PRESENT = 0x10,
  ADS_SD_CONTROL_SE_SACL_DEFAULTED = 0x20,
  ADS_SD_CONTROL_SE_DACL_AUTO_INHERIT_REQ = 0x100,
  ADS_SD_CONTROL_SE_SACL_AUTO_INHERIT_REQ = 0x200,
  ADS_SD_CONTROL_SE_DACL_AUTO_INHERITED = 0x400,
  ADS_SD_CONTROL_SE_SACL_AUTO_INHERITED = 0x800,
  ADS_SD_CONTROL_SE_DACL_PROTECTED = 0x1000,
  ADS_SD_CONTROL_SE_SACL_PROTECTED = 0x2000,
  ADS_SD_CONTROL_SE_SELF_RELATIVE = 0x8000
} ADS_SD_CONTROL_ENUM;

Constants

 
ADS_SD_CONTROL_SE_OWNER_DEFAULTED
Value: 0x1
A default mechanism provides the owner security identifier (SID) of the security descriptor rather than the original provider of the security descriptor.
ADS_SD_CONTROL_SE_GROUP_DEFAULTED
Value: 0x2
A default mechanism provides the group SID of the security descriptor rather than the original provider of the security descriptor.
ADS_SD_CONTROL_SE_DACL_PRESENT
Value: 0x4
The discretionary access-control list (DACL) is present in the security descriptor. If this flag is not set, or if this flag is set and the DACL is NULL, the security descriptor allows full access to everyone.
ADS_SD_CONTROL_SE_DACL_DEFAULTED
Value: 0x8
The security descriptor uses a default DACL built from the creator's access token.
ADS_SD_CONTROL_SE_SACL_PRESENT
Value: 0x10
The system access-control list (SACL) is present in the security descriptor.
ADS_SD_CONTROL_SE_SACL_DEFAULTED
Value: 0x20
The security descriptor uses a default SACL built from the creator's access token.
ADS_SD_CONTROL_SE_DACL_AUTO_INHERIT_REQ
Value: 0x100
THE DACL of the security descriptor must be inherited.
ADS_SD_CONTROL_SE_SACL_AUTO_INHERIT_REQ
Value: 0x200
The SACL of the security descriptor must be inherited.
ADS_SD_CONTROL_SE_DACL_AUTO_INHERITED
Value: 0x400
The DACL of the security descriptor supports automatic propagation of inheritable access-control entries (ACEs) to existing child objects.
ADS_SD_CONTROL_SE_SACL_AUTO_INHERITED
Value: 0x800
The SACL of the security descriptor supports automatic propagation of inheritable ACEs to existing child objects.
ADS_SD_CONTROL_SE_DACL_PROTECTED
Value: 0x1000
The security descriptor will not allow inheritable ACEs to modify the DACL.
ADS_SD_CONTROL_SE_SACL_PROTECTED
Value: 0x2000
The security descriptor will not allow inheritable ACEs to modify the SACL.
ADS_SD_CONTROL_SE_SELF_RELATIVE
Value: 0x8000
The security descriptor is of self-relative format with all the security information in a continuous block of memory.

Remarks

For more information, see Access Control under Security in the Platform Software Development Kit (SDK).

Since VBScript cannot read information from a type library, VBScript applications do not understand the symbolic constants as defined above. You should use the numerical constants instead to set the appropriate flags in your VBScript applications. If you want to use the symbolic constants as a good programming practice, you should make explicit declarations of such constants, as done here, in your VBScript applications.

Requirements

Requirement Value
Minimum supported client Windows Vista
Minimum supported server Windows Server 2008
Header iads.h

See also

ADSI Enumerations

Access Control