What is ACL and Basic of Access Control List

Access Control Lists

ACL stand for Access Control List (ACL) provides an additional, more flexible permission mechanism for file systems. It is designed to assist with UNIX file permissions. ACL allows you to give permissions for any user or group to any disc resource.

ACL is a listing containing one or more that tells a computer operating system or other network device what rights users have to each item on a computer or network device.

Syntax

Displays or modifies access control lists (ACLs) of files
CACLS filename [/T] [/E] [/C] [/G user:perm] [/R user [...]] [/P user:perm [...]] [/D user [...]]

filename	Displays ACLs.
/T	Changes ACLs of specified files in the current directory and all subdirectories.
/E	Edit ACL instead of replacing it.
/C	Continue on access denied errors.
/G user:perm	Grant specified user access rights. Perm can be: R Read W Write C Change (write) F Full control
/R user	Revoke specified user's access rights (only valid with /E).
/P user:perm	Replace specified user's access rights. Perm can be: N None R Read W Write C Change (write) F Full control
/D user	Deny specified user access.

Wildcards can be used to specify more that one file in a command. You can specify more than one user in a command.

Examples

cacls myfile.txt

Displays the ACLs for the myfile.txt file. Below is an example of what this may look like.

C:\WINNT\MYFILE.TXT

BUILTIN\Users:R BUILTIN\Power Users:C BUILTIN\Administrators:F NT AUTHORITY\SYSTEM:F

cacls myfile.txt /e /g mrhope:f