Access control lists for file system objects

File system objects are typically associated with an Access Control List (ACL), which normally consists of series of Access Control Entries (ACEs). Each ACE defines the identity and its related access rights.

To maintain access control lists, use the aclget, acledit, aclput and aclconvert commands.

Note that ACL is typically stored and managed on the media by the physical file system (PFS). The AIX® operating system provides an infrastructure for physical file systems to support and manage multiple ACL types. The JFS2 file system shipped with AIX supports two ACL types:
  • AIXC
  • NFS4
Earlier file systems supported only the AIXC ACL type as in the previous AIX releases. These ACL types are discussed in detail in the Security.