FILE Class (Windows Environment)

Valid in the Windows environment
capamsc141
Valid in the Windows environment
Each record in the FILE class defines a file on a file system (for example, FAT, NTFS, or CDFS) on a physical or logical drive of a computer.
You cannot use 
Privileged Access Manager
to physically create files on disk.
The key of the FILE class record is the name of the file or directory protected by the record. The full path must be specified.
The following definitions describe the properties contained in a FILE record. You can use selang or the Web based GUI to change the record's modifiable properties.
  • ATIME
    Displays the time the file was last accessed.
  • ATTRIB
    Displays attributes for the file or directory. The attributes can be one or more of the following:
    • ARCHIVE
    • COMPRESSED
    • DIRECTORY
    • HIDDEN
    • NORMAL
    • OFFLINE
    • READONLY
    • SYSTEM
    • TEMPORARY
  • CTIME
    Displays the created time.
  • DACL
    Defines the standard access control list that contains the user names and group names authorized to access the resource, and the level of access granted to each.
    Users who want to modify this property must be the owner of the resource or have special access to the resource (to modify the ACL).
    Each element in the access control list contains the following information:
    • Access Type
      Specifies permissions to the resource:
      1. Allowed
        -Permits special access to the resource.
      2. Denied
        -Denies special access to the resource.
    • Accessor
      The user or group for whom the access rights are allowed or denied.
    • Access
      The access authority that the accessor has to the resource.
    In an empty ACL, no accesses are explicitly granted, so access is implicitly denied. For a resource that has no ACL, no protection is assigned to the object, so any access request is granted.
    Use auth or auth- command to modify this property.
  • DEV
    Displays the serial number of the volume where the file is located.
  • FILE_SYSTEM
    Displays the name of the file system where the file is located.
  • GID
    Displays the group information for the file or device.
  • INDEX
    Displays the unique identifier associated with the file.
  • ISDIR
    Indicates whether the file is a directory.
  • LINKS_NUMB
    Displays the number of links to the file. For the FAT file systems, this property is always one. For NTFS, it can be more than one.
  • MTIME
    Displays the time the file was last modified.
  • NAME
    Displays the file name.
  • OWNER
    Defines the user or group that owns the record.
  • SACL
    Windows System Access Control List. Displays audit directives.
  • SIZE
    Displays the size of the file in bytes.