The DCE Visual ACL Editor supports four DCE ACL types:
· Object ACL
The object ACL is used to control access to any object.
· Initial Object ACL
The initial object ACL determines the default ACL for simple objects created within a container. For example, a file system initial object ACL for a directory specifies the default object ACL for files created within that directory.
· Initial Container ACL
The initial container ACL determines the default ACL for containers created within a container. For example, a file system initial container ACL for a directory specifies the default object ACL for directories created within that directory.
· Namespace Entry ACL
The namespace entry ACL is associated with the child pointer of a CDS or namespace directory or a leaf entry. A child pointer is a pointer that connects a directory to a directory immediately below it in the namespace.
For example, it you create a file named status.txt in the directory code, the system assigns status the Initial Object ACL of the directory code. If you create a subdirectory in code, the system assigns the new subdirectory an object ACL that is the same as the Initial Container ACL of code. New subdirectories also receive a set of initial ACLs that match the parent directory's initial ACLs. In the example just described, the new subdirectory also receives code's initial ACLs as its own initial ACLs.