Which type of group can be used for controlling access to objects?

The correct choice is security groups because they are specifically designed to control access to objects within a system or network. Security groups allow administrators to grant permissions for users and computers to access resources, such as files, folders, and applications. By using these groups, permissions can be efficiently managed and applied to multiple users at once, simplifying the process of access control.

When a user is added to a security group, they inherit the permissions assigned to that group, which can include read, write, modify, and execute privileges. This capability is crucial in organizational environments where different users need different levels of access based on their roles or responsibilities within the company.

Other options may seem related but serve different purposes. Authorization groups are more about defining what users are permitted to do rather than controlling access to specific objects. Distribution groups are used mainly for email distribution lists and do not affect permissions or access. DACL, which stands for Discretionary Access Control List, is a component that contains security information for an object, but it is not a type of group that is used to control access directly. Instead, it defines the permissions and access levels for the specific users or groups associated with the object.