You need to SecurityPlugin.php located in the app/plugins (if memory serves), to register the ACL settings page (controller and action(Iya)).
If you want to make the page accessible to all (public) -
~59 a string:
$publicResources = array(
'index' => array('index'),
'about' => array('index'),
'register' => array('index'),
'errors' => array('show401', 'show404', 'show500'),
'session' => array('index', 'register', 'start', 'end'),
'contact' => array('index', 'send'),
'test' => array('index') // something Like this: test indicates TestController, index by indexAction
);
If the page should be available only to registered users (private), do similar in $privateResources (
~48 line):
$privateResources = array(
'companies' => array('index', 'search', 'new', 'edit', 'save', 'create', 'delete'),
'products' => array('index', 'search', 'new', 'edit', 'save', 'create', 'delete'),
'producttypes' => array('index', 'search', 'new', 'edit', 'save', 'create', 'delete'),
'invoices' => array('index', 'profile'),
'test' => array('index') // Here, something like that:)
);
Good luck!