Share via

CSecurityDesc::IsSaclProtected

  • Article

Determines if the system access-control list (SACL) is configured to prevent modifications.

bool IsSaclProtected( ) const throw( );

Return Value

Returns true if the SACL is configured to prevent the security descriptor from being modified by inheritable access-control entries (ACEs). Returns false otherwise.

Remarks

To set this flag, use the CSecurityDesc::SetSacl method.

This method is only meaningful for Windows 2000 or later, as only Windows 2000 supports automatic propagation of inheritable ACEs.

Requirements

Header: atlsecurity.h

See Also

Reference

CSecurityDesc Class

SECURITY_DESCRIPTOR_CONTROL

CSecurityDesc::IsSaclAutoInherited

CSecurityDesc::IsSaclDefaulted

CSecurityDesc::IsSaclPresent

Other Resources

CSecurityDesc Members