The cacls command in Windows

The cacls command displays or modifies an arbitrary access control list (DACL) on the specified file. The command applies to Windows Server (Semi-Annual Channel), Windows Server 2016, Windows Server 2012 R2, Windows Server 2012.

Applies to: Windows Server (Semi-Annual Channel), Windows Server 2016, Windows Server 2012 R2, Windows Server 2012.

The cacls command displays or modifies an arbitrary access control list (DACL) on the specified file.

The cacls command in Windows

  1. Syntax
  2. Parameters
  3. Note

Syntax

 cacls [/ t] [/ m] [/ l] [/ s []] [/ e] [/ c] [/ g user:] [/ r user [.]] [/ p user: [.]] [/ d user [.]]

Parameters

ParameterDescription Required. Display Acls of specified files. / t Change the specified Acls in the current directory and all subdirectories. / m Change the Acls of the mounted drive to a folder. / l Working with Symbolic Link, not the target. / s: sddl replaces Acls with the ones specified in the SDDL string (invalid with / e , / g , / r , / p , or / d ). / e Edit ACL instead of replacing it. / c Continue to deny access error. / g user: Grant access to the specified user. Valid values ​​for permissions:

- n - none: No
- r - read: Read
- w - write: Write
- c - change (write): Change write permissions
- f - full control: Full control / r user [.] Revoke access of the specified user (only valid for / e ). [/ p user: [.] Replace the access of specific users.
Valid values ​​for permissions:

- n - none: No
- r - read: Read
- w - write: Write
- c - change (write): Change write permissions
- f - full control: Full control [/ d user [.] Denies access to specified users. /? Show help at the command prompt.

Note

  1. If this command has not been accepted, please use icacls instead.
  2. Use the following table to interpret the results:
Output ( Access ) The access control entry (ACE) applies to OI (Short for Object inherit) / Folders and these files. CI (Short for Container inherit) / This directory and subdirectory. IO (Inherit only) / ACE does not apply to the current file / directory | No output message | Only this directory. OI) (CI) This directory, subdirectory and file. (OI) (CI) (IO) Only subdirectories and files. (CI) (IO) Only subfolder (OI) (IO) File only.
  1. You can use wildcards (? And *) to specify multiple files.
  2. You can specify multiple users.

See more:

  1. The command bitadmin addfilewithranges in Windows
  2. Bitsadmin create command in Windows
  3. Bitsadmin complete command in Windows
Update 26 May 2019

You should read it

Maybe you are interested

Category

System

Mac OS X

Hardware

Game

Tech info

Technology

Science

Life

Application

Electric

Program

Mobile