discretionary access control list. Part of the security descriptor for an object. The DACL can be applied to a newly created object in order to restrict access to the object. See also ACE, access right, ACL and security descriptor.
discretionary access control list. A list used by the Microsoft Exchange Server directory to control access to its objects. A DACL consists of a list of security identifiers (which identify users) and specific permissions for each.
discretionary access control list. The part of an object's security descriptor that grants or denies specific users and groups permission to access the object. Only the owner of an object can change permissions granted or denied in a DACL; thus, access to the object is at the owner's discretion. See also: distribution group; object; security descriptor; security group