2.2.1.17 AD ACCESS_MASK
These access mask values are specific to ACEs that apply to Active Directory objects. More information about these values is specified in [MS-ADTS] section 5.1.3.
|
Constant/value |
Description |
|---|---|
|
ACTRL_DS_LIST 0x00000004 |
Indicates the ability to read the children of an object in Active Directory. |
|
ACTRL_DS_READ_PROP 0x00000010 |
Indicates the access control to read a property in Active Directory. |
|
ACTRL_DS_WRITE_PROP 0x00000020 |
Indicates the access control to write a property in Active Directory. |
|
ACTRL_DS_DELETE_TREE 0x00000040 |
Indicates the ability to delete a tree of objects. |
|
ACTRL_DS_CONTROL_ACCESS 0x00000100 |
Indicates the ability to perform an operation on an object as indicated by the ObjectGuid field in the ACE. See value CR in [MS-ADTS] section 5.1.3.2. |