Dynamic access control (DAC) facility, introduced in windows server 8 is a nice provision for security management. Previous versions of windows enforced file/folder security by granting access to the users and groups directly. Many security groups have been created and managed to offer access. With DAC, administrators could add conditional expressions with AD attributes to grant the permissions. This has considerably reduced group management complexities. Dynamic Access Control can be applied in addition to any existing share and NTFS permissions, which enforces centrally governed rules. Dynamic Access Control is one of the key components of Active Directory in Windows Server 8.
Your last visit:x