FILE Class (Windows Environment)
Valid in the Windows environment
capamsc141
Valid in the Windows environment
Each record in the FILE class defines a file on a file system (for example, FAT, NTFS, or CDFS) on a physical or logical drive of a computer.
You cannot use
Privileged Access Manager
to physically create files on disk.The key of the FILE class record is the name of the file or directory protected by the record. The full path must be specified.
The following definitions describe the properties contained in a FILE record. You can use selang or the Web based GUI to change the record's modifiable properties.
- ATIMEDisplays the time the file was last accessed.
- ATTRIBDisplays attributes for the file or directory. The attributes can be one or more of the following:
- ARCHIVE
- COMPRESSED
- DIRECTORY
- HIDDEN
- NORMAL
- OFFLINE
- READONLY
- SYSTEM
- TEMPORARY
- CTIMEDisplays the created time.
- DACLDefines the standard access control list that contains the user names and group names authorized to access the resource, and the level of access granted to each.Users who want to modify this property must be the owner of the resource or have special access to the resource (to modify the ACL).Each element in the access control list contains the following information:
- Access TypeSpecifies permissions to the resource:
- Allowed-Permits special access to the resource.
- Denied-Denies special access to the resource.
- AccessorThe user or group for whom the access rights are allowed or denied.
- AccessThe access authority that the accessor has to the resource.
In an empty ACL, no accesses are explicitly granted, so access is implicitly denied. For a resource that has no ACL, no protection is assigned to the object, so any access request is granted.Use auth or auth- command to modify this property. - DEVDisplays the serial number of the volume where the file is located.
- FILE_SYSTEMDisplays the name of the file system where the file is located.
- GIDDisplays the group information for the file or device.
- INDEXDisplays the unique identifier associated with the file.
- ISDIRIndicates whether the file is a directory.
- LINKS_NUMBDisplays the number of links to the file. For the FAT file systems, this property is always one. For NTFS, it can be more than one.
- MTIMEDisplays the time the file was last modified.
- NAMEDisplays the file name.
- OWNERDefines the user or group that owns the record.
- SACLWindows System Access Control List. Displays audit directives.
- SIZEDisplays the size of the file in bytes.