Which security feature is available in a Microsoft Windows file sharing environment using Network
Attached Storage?

A.
Windows Security Identifier (SID)

B.
Discretionary Access Control Lists (DACL)

C.
Operating System Control Lists (OSCL)

D.
Global Unique Identifier (GUID)

Explanation:
NAS File Sharing: Windows ACLs
Windows supports two types of ACLs: discretionary access control lists (DACLs) and system
access control lists (SACLs). The DACL, commonly referred to as the ACL, that determines
access control. The SACL determines what accesses need to be audited if auditing is enabled.
In addition to these ACLs, Windows also supports the concept of object ownership. The owner of
an object has hard-coded rights to that object, and these rights do not need to be explicitly granted
in the SACL. The owner, SACL, and DACL are all statically held as attributes of each object.
Windows also offers the functionality to inherit permissions, which allows the child objects existing
within a parent object to automatically inherit the ACLs of the parent object.
ACLs are also applied to directory objects known as security identifiers (SIDs). These are
automatically generated by a Windows server or domain when a user or group is created, and
they are abstracted from the user. In this way, though a user may identify his login ID as “User1,” it
is simply a textual representation of the true SID, which is used by the underlying operating
system. Internal processes in Windows refer to an account’s SID rather than the account’s
username or group name while granting access to an object. ACLs are set by using the standard
Windows Explorer GUI but can also be configured with CLI commands or other third-party tools.
EMC E10-001 Student Resource Guide. Module 14: Securing the Storage Infrastructure