The AdminACL property contains a Microsoft® Windows NT® security descriptor that can be used to control access to any metabase subtree. This property can be used to grant read access, restricted write access, or unrestricted write access. See MD_ADMIN_ACL for details of the flags used in this property.
The following table describes this property:
| Data type | Windows NT security descriptor |
| Default value | Empty (No ACL) |
| Default inheritance | True |
Accessible by IIS Admin Objects:
| IIsFtpService | IIsFtpServer | IIsWebService | IIsWebServer |