The AddAccessDeniedAce function adds an access-denied ACE to an ACL. The access is denied to a specified SID.
An ACE is an access-control entry. An ACL is an access-control list. A SID is a security identifier.
BOOL AddAccessDeniedAce(
PACL pAcl, |
// pointer to access-control list |
DWORD dwAceRevision, |
// ACL revision level |
DWORD AccessMask, |
// access mask |
PSID pSid |
// pointer to security identifier |
); |
If the function succeeds, the return value is nonzero.
If the function fails, the return value is zero. To get extended error information, call GetLastError.
The AddAccessAllowedAce and AddAccessDeniedAce functions add a new ACE to the end of the list of ACEs for the ACL. These functions do not automatically place the new ACE in the proper canonical order. It is the caller's responsibility to ensure that the ACL is in canonical order by adding ACEs in the proper sequence. For Windows NT versions 4.0 and earlier, the canonical order for a DACL places all access-denied ACEs before any access-allowed ACEs.
The ACE_HEADER structure placed in the ACE by the AddAccessDeniedAce function specifies a type and size, but provides no ACE flags.
ACCESS_DENIED_ACE, ACE_HEADER, ACL, AddAccessAllowedAce, AddAce, AddAuditAccessAce, DeleteAce, GetAce
file: /Techref/os/win/api/win32/func/src/f01.htm, 3KB, , updated: 2000/4/7 11:19, local time: 2024/11/10 04:59,
18.116.40.200:LOG IN ©2024 PLEASE DON'T RIP! THIS SITE CLOSES OCT 28, 2024 SO LONG AND THANKS FOR ALL THE FISH!
|
©2024 These pages are served without commercial sponsorship. (No popup ads, etc...).Bandwidth abuse increases hosting cost forcing sponsorship or shutdown. This server aggressively defends against automated copying for any reason including offline viewing, duplication, etc... Please respect this requirement and DO NOT RIP THIS SITE. Questions? <A HREF="http://linistepper.com/Techref/os/win/api/win32/func/src/f01.htm"> AddAccessDeniedAce</A> |
Did you find what you needed? |