In Microsoft Windows,
cacls and its replacement,
icacls, native command-line utilities capable of displaying and modifying the security descriptors on folders and files. An access-control list is a list of permissions for securable object, such as a file or folder, that controls who can access it. The
cacls command is also available on ReactOS.
|Developer(s)||Microsoft, Thomas Weidenmueller|
|Initial release||1994, 27–28 years ago|
|Operating system||Microsoft Windows, ReactOS|
|License||Windows: Proprietary commercial software|
ReactOS: GNU Lesser General Public License
The cacls.exe utility is a deprecated command line editor of directory and file security descriptors in Windows NT 3.5 and later operating systems of the Windows NT family. Microsoft has produced the following newer utilities, some also subsequently deprecated, that offer enhancements to support changes introduced with version 3.0 of the NTFS filesystem:
The ReactOS version was developed by Thomas Weidenmueller and is licensed under the GNU Lesser General Public License.
|Initial release||2007, 14–15 years ago|
|Operating system||Microsoft Windows|
|License||Proprietary commercial software|
Stands for Integrity Control Access Control List. Windows Server 2003 Service Pack 2 and later include icacls, an in-box command-line utility that can display, modify, backup and restore ACLs for files and folders, as well as to set integrity levels and ownership in Vista and later versions. It is not a complete replacement for cacls, however. For example, it does not support Security Descriptor Definition Language (SDDL) syntax directly via command line parameters (only via the /restore option).
Xcacls.vbs is an unsupported tool that provides additional capabilities not provided with the supported utility, Xcacls.exe.