Named ACLs or separate ACL files can be referenced in the obj.conf file in the PathCheck directive using the check-acl function. The line has the following syntax:
PathCheck fn="check-acl" acl="aclname"
where aclname is the unique name of an ACL as it appears in any ACL file.
For example, you might add the following lines to the obj.conf file to restrict access to a directory using the ACL named testacl:
<Object ppath="https://"PathCheck fn="check-acl" acl="testacl"</Object>
In this example, the first line is the object that states the server resource to which you want to restrict access. The second line is the PathCheck directive that uses the check-acl function to bind the named ACL (testacl) to the object in which the directive appears. The testacl ACL can appear in any ACL file referenced in server.xml.