ACT uses default security permissions instead of user's biometric permissions. (Only tested in multiplayer, but may happen in single player once the security terminal is placed into a system.)

Without setting a "default"/blank biometric card with deposit/withdraw permissions, all users, including the "owner" of the system who placed the security terminal and any users with existing biometric cards with those permissions can't deposit/withdraw items. The problem is fixed once a blank biometric card is created with the proper permissions.

By the way, wands seem exempt from any deposit/withdraw permission requirements, or they respect the user's biometric card restrictions. I don't know if this is intended.

Also, a question: Why is it that you need both deposit and withdraw permissions to access the ACT? D:

Wow, good catch. As it turns out while cleaning up some code I transposed the the get-Player, and make-permission-source. So the A.C.T. was telling the network that a null player was using it.

The wand slot, along with the crafting grid are not protected by the AE security settings. So to prevent anyone from coming up and taking items in those slots, I restricted the GUI to those who can import and export.