Setting traditional GPFS access control lists
Use the following information to set GPFS access control lists (ACLs).
GUI navigation
To work with this function in the GUI, log on to the IBM Storage Scale GUI and select .
Use the mmputacl command to set the access ACL of a file or
subdirectory, or the default ACL of a directory. For example, to set the ACL for a file named
project2.history, you can create a file that is named
project2.acl that contains:
user::rwxc
group::rwx-
other::--x-
mask::rwxc
user:alpha:r-xc
group:audit:rw--
group:system:rwx-In this example,
- The first three lines are the required ACL entries that set the permissions for the file's owner, the owner's group, and for processes that are not covered by any other ACL entry.
- The last three lines contain named entries for specific users and groups.
- Because the ACL contains named entries for specific users and groups, the fourth line contains the required mask entry, which is applied to all named entries (entries other than the user and other).
After you are satisfied that the correct permissions are set in the ACL file, you can apply them
to the target file with the mmputacl command. For example, to set
permissions contained in the file project2.acl for the file project2.history, enter:
mmputacl -i project2.acl project2.historymmgetacl project2.history#owner:guest
#group:usr
user::rwxc
group::rwx- #effective:rw--
other::--x-
mask::rw-c
user:alpha:rwxc #effective:rw-c
group:audit:rwx- #effective:rw--
group:system:-w--You can issue the mmputacl command without using the -i option to specify an ACL input file, and make ACL entries through standard input. However, the -i option is more useful for avoiding errors when you are creating a new ACL.
For complete usage information, see the mmputacl command and the mmgetacl command.