Deleting NFS V4 access control lists

Use the mmdelacl command to delete NFS V4 ACLs. After the ACL is deleted, the permissions revert to the mode bits. If the mmgetacl command is used to display the ACL (mmgetacl -k native), it appears as a traditional GPFS ACL.

When assigning an ACL to a file that already has an NFS V4 ACL, there are some NFS rules that must be followed. Specifically, in the case of a directory, there will not be two separate (access and default) ACLs, as there are with traditional ACLs. NFS V4 needs a single ACL entity and allows individual ACL entries to be flagged if they are to be inherited. Therefore, mmputacl -d isn’t allowed if the existing ACL was the NFS V4 type, since this attempts to change only the default ACL. Likewise, mmputacl (without the -d flag) isn’t allowed because it attempts to change only the access ACL, leaving the default unchanged. To change such an ACL, use the mmeditacl command to change the entire ACL as a unit. You can also use the mmdelacl command to remove an NFS V4 ACL, followed by the mmputacl command.