Previous Topic: Strategies for Managing Security and Users

Next Topic: SiteMinder Security Policies

Access Control Lists

An access control list is an object associated with a resource that defines access privileges for individual users or groups of users. ACLs are associated with resources to establish:

ACLs provide a straightforward way of granting or denying a specified user or groups of users access to a resource. For example:

Access control list example

The access control list above assigns users in the manager group complete access, users in the clerk group read-only access, and users in all other groups no access to the resource.

Several drawbacks are associated with ACLs:

ACLs are an effective way to protect a resource but an ineffective way to manage the user experience.


Copyright © 2010 CA. All rights reserved. Email CA about this topic