Open main menu
Home
Random
Recent changes
Special pages
Community portal
Preferences
About Wikipedia
Disclaimers
Incubator escapee wiki
Search
User menu
Talk
Dark mode
Contributions
Create account
Log in
Editing
Access-control list
(section)
Warning:
You are not logged in. Your IP address will be publicly visible if you make any edits. If you
log in
or
create an account
, your edits will be attributed to your username, along with other benefits.
Anti-spam check. Do
not
fill this in!
=== Active Directory ACLs === [[Microsoft]]'s [[Active Directory]] service implements an [[LDAP]] server that stores and disseminates configuration information about users and computers in a domain.<ref>{{cite web |title=[MS-ADTS]: Active Directory Technical Specification |date=7 June 2024 |url=https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-adts/d2435927-0999-4c62-8c6d-13ba31a52e1a}}</ref> Active Directory extends the LDAP specification by adding the same type of access-control list mechanism as Windows NT uses for the NTFS filesystem. Windows 2000 then extended the syntax for access-control entries such that they could not only grant or deny access to entire LDAP objects, but also to individual attributes within these objects.<ref>{{cite journal |last=Swift |first=Michael M. |title=Improving the granularity of access control for [[Windows 2000]] |journal=ACM Transactions on Information and System Security |volume=5 |issue=4| pages=398β437 |date=November 2002 |doi=10.1145/581271.581273 |s2cid=10702162}}</ref>
Edit summary
(Briefly describe your changes)
By publishing changes, you agree to the
Terms of Use
, and you irrevocably agree to release your contribution under the
CC BY-SA 4.0 License
and the
GFDL
. You agree that a hyperlink or URL is sufficient attribution under the Creative Commons license.
Cancel
Editing help
(opens in new window)