So far we have seen the basic and extended permission levels. When a permission level is assigned to an accessor (user or group) it is referred to as a permission. Permissions are created within an ACL (Access Control List also known as permission set). In other words, an ACL is simply a set of basic and extended permission levels associated with various accessors.
It is common to refer to permission levels as permissions and usually no distinction is made between the two terms.
An ACL is stored as an object of type
dm_acl. ACLs are used for controlling access to sysobjects. The valid operations on renditions are controlled by the ACL on the associated sysobject. Recall that renditions cannot be edited or checked out.
There are four categories ...