Adding New Security Rule to Hosting Security Metadata File Template

A security rule is an access permission for a Windows user account or
group that will be added to a Windows object once the rule is applied to
it. A single rule may be applied to more than one object depending on
the attribute values specified. To add a security rule, you need to
create an Entry element in a security metadata file template and
include in it the necessary information by using the available
declaration options for the element’s attributes. For detailed
description of the attributes and information about values that can be
assigned to the attributes, see General Security Metadata
Structure.

To add a security rule:

1. Identify the Windows object for which you want to create a security
   rule.

   The example used here assumes that you want to add a security rule
   for the error_docs folder located in the domain root directory.

2. Identify the Windows object to which the rule will be applied by
   specifying the Path and, if applicable, the SubPath attribute
   in the new Entry element.

   Consult General Security Metadata Structure for
   applicable declaration options.

   For example,

   <Entry AccounType="" Account="" Path=" [HTTPD_VHOSTS_D] " SubPath=" error_docs " AceFlags="" AccessMask="" EntryFlags="" Tag="" Tag2="" />

3. Specify the Windows user account to which you want to assign the
   security rule.

   For example, to specify a domain FTP user account, make the following
   declarations:

   <Entry AccounType=" 0 " Account=" Null " Path="" SubPath="" AceFlags="" AccessMask="" EntryFlags="" Tag=" DomainUser <…