Access the Server Manager for the server instance.
On the Preferences tab, click the Administer Access Control link.
Click Regular Expression in the Select A Resource section, and specify the regular expression, for example, *.cgi.
Click Edit.
Create a rule to allow read access to all users.
Create another rule that allows write and delete access only to a specified group.
Click Submit to save your changes.
For file type restriction, you would leave both Continue boxes selected. If a request for a file comes in, the server then checks the ACL for the file type first.
A Pathcheck function is created in the obj.conf file that might include wildcard patterns for files or directories. The entry in the ACL file would appear as follows: acl"*.cgi";