Click here to see the ISA object hierarchy.| Microsoft Internet Security and Acceleration Server 2000 |
The FPCSecurityDescriptor object allows you to access security settings of ISA objects. You can also use it to make copies of a security descriptor. This object is a property of every object that supports security settings. Specifically, the FPCSecurityDescriptor object is a property of the FPCArray, FPCEnterprise, and the FPCEnterprisePolicy objects.
Click here to see the ISA object hierarchy.
This object implements the IFPCSecurityDescriptor interface.
The following table lists the default permissions assigned to each object upon installation.
| Object | Permissions |
|---|---|
| Enterprise | Enterprise Admins, and local system have Full Control permission. All authenticated users have Read permission. |
| Enterprise policy | Enterprise Admins, and local system have Full Control permission. All authenticated users have Read permission. |
| Array | Enterprise Admins, Domain Admins, local Administrators, and local system have Full Control permission. All authenticated users have Read permission. |
| Alerts | Enterprise Admins, Domain Admins, local Administrators, and local system have Read Alerts Information and Reset Alerts permissions. All authenticated users have Read Alerts Information permission. |
| Sessions | Enterprise Admins, Domain Admins, local Administrators, and local system have Read Sessions Information and Stop Sessions permissions. All authenticated users have Read Sessions Information permission. |
The following table lists the methods of the FPCSecurityDescriptor object.
| Method | Description |
|---|---|
| CopySecurityDescriptor | Returns a copy of the current FPCSecurityDescriptor object. |
The following table lists the properties of the FPCSecurityDescriptor object.
| Property | Description |
|---|---|
| Control | Gets or sets flags that qualify the meaning of the security descriptor. |
| DaclDefaulted | Gets or sets a flag to indicate whether the DACL is derived from a default mechanism rather than provided explicitly by the original provider of the security descriptor. |
| DiscretionaryAcl | Gets or sets the values of a discretionary access control list (DACL) that specifies types of access allowed to the object for specified users and groups. |
| Group | Gets or sets a string that specifies the group to which the owner's security identifier (ID) belongs. |
| GroupDefaulted | Gets or sets a flag that indicates whether the group information is derived from a default mechanism rather than provided explicitly by the original provider of the security descriptor. |
| Owner | Gets or sets the owner of the object. |
| OwnerDefaulted | Gets or sets a flag that indicates whether the owner information is derived from a default mechanism rather than from the original provider of the security descriptor explicitly. |
| Revision | Gets or sets the revision level of the security descriptor. |
| SaclDefaulted | Gets or sets a flag that indicates whether the system access control list (SACL) is derived from a default mechanism rather than by the original provider of the security descriptor explicitly. |
| SystemAcl | Gets or sets an SACL used to generate audit records for the object. |
Windows NT/2000: Requires Windows 2000.
Version: Requires ISA Server 2000.
Header: Msfpccom.idl.