It is possible to push ACLs via a file deploy and you would encounter some of the errors you have listed. However, a better way to generate some of those errors amongst your machines might be to run an agentinfo against the same machines in CM. This would notify you of any licensing or connection problems.
Off the top of my head, you may want to look into the pushACL BLCLI call. I'm not sure if it returns the errors you listed below, but if it does, you could capture that output and drop it into a server property (again, using BLCLI calls). Then you can create your smart server groups based on the various messages.