manage the application-wide access control. The access control handler is defined through an extensible interface, so that alternate implementations can be created. Only one access control handler may be active in the server at any given time. Note that also has a privilege subsystem, which may have an impact on what clients may be allowed to do in the server. For example, any user with the bypass-acl privilege is not subject to access control checking regardless of whether the access control implementation is enabled. ds-cfg-access-control-handler top Indicates whether the is enabled. If set to FALSE, then no access control is enforced, and any client (including unauthenticated or anonymous clients) could be allowed to perform any operation if not subject to other restrictions, such as those enforced by the privilege subsystem. ds-cfg-enabled Specifies the fully-qualified name of the Java class that provides the implementation. org.opends.server.api.AccessControlHandler ds-cfg-java-class