An access control list (ACL) protects access to objects
in your system by ensuring that only authorized users can access certain
functions and stored objects.
An access control list consists of a set of
ACL rules. An ACL rule is the combination of one user ID or one user
group and one privilege set. Beginning in Version 8.6, you can create
more than one ACL rule for a user or user group in an ACL.
Restriction: If you enable administrative domains, you must
belong to the SuperDomain to define access control lists or privilege
sets. The SuperDomain is where you can manage system objects for all
domains. If you do not belong to the SuperDomain, you can define access
control lists or privilege sets if you assign the privilege to create
access control lists or privilege sets to a domain. Access control
lists and privilege sets can be associated with multiple domains,
but they cannot be managed by users in any subdomains.
Requirement: When you create an ACL, you must
have one or more privilege sets defined.