VOOZH

URL: https://learn.microsoft.com/en-us/windows/win32/secauthz/security-descriptor-definition-language

⇱ Security Descriptor Definition Language - Win32 apps | Microsoft Learn

Note

Access to this page requires authorization. You can try signing in or .

Access to this page requires authorization. You can try .

Security descriptor definition language

The security descriptor definition language (SDDL) defines the string format that the ConvertSecurityDescriptorToStringSecurityDescriptor and ConvertStringSecurityDescriptorToSecurityDescriptor functions use to describe a security descriptor as a text string. The language also defines string elements for describing information in the components of a security descriptor.

Note

Conditional access control entries (ACEs) have a different SDDL format than other ACE types. For ACEs, see ACE Strings. For conditional ACEs, see Security Descriptor Definition Language for Conditional ACEs.

Related content

Security Descriptor String Format

[MS-DTYP]: Security Descriptor Description Language

Feedback

Was this page helpful?

Additional resources

Last updated on