system access control list. The part of an object's security descriptor that specifies which events are to be audited per user or group. Examples of auditing events are file access, logon attempts, and system shutdowns. See also: discretionary access control list (DACL); event; object; security descriptor