FpcAceFlag

The FpcAceFlag enumerated type contains values that specify how security may propagate along an inheritance path and how the system generates audit messages.

enum FpcAceFlag{
  fpcAceFlag_Inherit_Ace			= 0x2,
  fpcAceFlag_No_Propagate_Inherit_Ace = 0x4,
  fpcAceFlag_Inherit_Only_Ace		 = 0x8,
  fpcAceFlag_Inherited_Ace			= 0x10,
  fpcAceFlag_Valid_Inherit_Flags	= 0x1f,
  fpcAceFlag_Successful_Access		= 0x40,
  fpcAceFlag_Failed_Access				= 0x80
};

Members

fpcAceFlag_Inherit_Ace

Child objects will inherit this access-control entry (ACE). The inherited ACE is inheritable unless the ADS_ACEFLAG_NO_PROPAGATE_INHERIT_ACE flag is set.

fpcAceFlag_No_Propagate_Inherit_Ace

ADSI will clear the ADS_ACEFLAG_INHERIT_ACE flag for the inherited ACEs of child objects. This prevents the ACE from being inherited by subsequent generations of objects.

fpcAceFlag_Inherit_Only_Ace

Indicates an inherit-only ACE that does not exercise access control on the object to which it is attached. If this flag is not set, the ACE is an effective ACE that exerts access control on the object to which it is attached.

fpcAceFlag_Inherited_Ace

Indicates whether or not the ACE was inherited. The system sets this bit.

fpcAceFlag_Valid_Inherit_Flags

Indicates whether the inherit flags are valid. The system sets this bit.

fpcAceFlag_Successful_Access

Generates audit messages for successful access attempts. Used with ACEs that audit the system in a system access-control list (SACL).

fpcAceFlag_Failed_Access

Generates audit messages for failed access attempts. Used with ACEs that audit the system in a SACL.

Requirements

  Windows NT/2000: Requires Windows 2000.
  Version: Requires ISA Server 2000.
  Header: Msfpccom.idl.