banner art

Using the WMS NTFS ACL Authorization plug-in

If you have set access permissions on files and directories in an NTFS file system, you can enable the WMS NTFS ACL Authorization plug-in to enforce the permissions. This plug-in enforces discretionary access control lists (DACLs) and system access control lists (SACLs) that have been set on files and directories in an NTFS file system. A DACL is a list of user accounts, groups, and computers that are allowed or denied access to an Active Directory object. A SACL defines the events that are audited for a user, group or computer. This plug-in is useful when you want to set different access control policies for your content.

The WMS NTFS ACL Authorization plug-in can be enabled for specific on-demand publishing points or for an entire server. Once this plug-in is enabled, each piece of content streamed from the publishing point or server must be authorized for the user account specified by the authentication plug-in. This means that if you are streaming content from a playlist, the user account must be authorized for every item listed in the playlist. If a user account cannot be authenticated for a certain item in the playlist, that item is skipped and the next item in the playlist for which authentication succeeded is streamed to the client.

Because this plug-in enforces access control policies that you set on files or directories, it is not appropriate for use in the following situations:

Note Image Notes

Related topics

© 2005 Microsoft Corporation. All rights reserved.