Use the Server Manager to select the server instance.
Choose the Preferences tab.
Click the Restrict Access link.
Choose the ACL File to edit.
Browse the Pick a Resource section and select the directory you want to restrict.
The directories in the server’s document root are displayed. Once selected, the Editing drop-down list displays the absolute path to the directory.
If you want to view all files in your server root, click Options and then List files as well as directories.
Click Edit Access Control.
Create a new rule and leave the defaults to deny access to everyone from everywhere.
Create another new rule allowing users in a specific group to have read and execute rights only.
Create a third rule to allow a specific user to have all rights.
Deselect Continue for the second and third lines and click Update.
Submit and Apply your changes.
An absolute path to the file or directory is created in the docrootdirectory. The entry in the ACL file would appear as: acl “path=d:\sun\suitespot\docroot1\sales/”;