Login or Register to Ask a Question and Join Our Community


UNIX for Advanced & Expert Users

setfacl

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Top Forums UNIX for Advanced & Expert Users setfacl
# 1  
Old 03-20-2007
setfacl
I use:

setfacl -m user:bbb:rwx folder1

to give user bbb the permission to go into my folder folder1,

and

cd folder1
setfacl -m user:bbb:rwx *

to give bbb the permission under this folder.

however, bbb can not cd to folder1, and got "permission denied" messages.

the umask is 0022.

Can anyone tell me why, and how to fix it? Thanks!
# 2  
Old 03-20-2007
Run the getfacl command and check the mask on the file/directory involved. Usually you have to set the mask to allow whatever permissions you are allocating.

For example:
Code:
# ls -l output.txt 
-rw-------   1 root     other        831 Sep 27 10:34 output.txt
# getfacl output.txt

# file: output.txt
# owner: root
# group: other
user::rw-
group::---              #effective:---
mask:---
other:---
# setfacl -m u:samba:rw- output.txt
# getfacl output.txt

# file: output.txt
# owner: root
# group: other
user::rw-
user:samba:rw-          #effective:---
group::---              #effective:---
mask:---
other:---
# setfacl -d u:samba:rw- output.txt

# setfacl -m u:samba:rw-,m:rw- output.txt
# getfacl output.txt

# file: output.txt
# owner: root
# group: other
user::rw-
user:samba:rw-          #effective:rw-
group::---              #effective:---
mask:rw-
other:---

Note the changes in the setfacl command and the corresponding changes in the effective permissions.
# 3  
Old 03-21-2007
the mask is ---. Can you tell me how to change the mask for the file?
# 4  
Old 03-22-2007
Simply rerun your setfacl command, just add ",m:r-x" after the user specific entries. You can see the setfacl command with the mask settings towards the end of my example above as well.
Login or Register to Ask a Question

Previous Thread | Next Thread

8 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

[Solved] Setfacl command help

HI, How to use setfacl for a domain user? I have an AD domain name manjunath and a domain user of the same domain named boarduser1. My cluster is joined to the domain. I am trying to set ACL for the boarduser1 on a file. I have tried this: setfacl -m u:Manjunath\boarduser1:rwx <file>... (1 Reply)
Discussion started by: prinsh
1 Replies

2. UNIX for Dummies Questions & Answers

help needed with setfacl

Hi, On the setfacl, I am trying to make one user with no rwx privilleges. After reading the man page I still can't get it. Please let me know the correct command. set user - SAM to have NO rwx privilleges on NEW objects setfacl -dm user:sam:--- /opt set user - SAM to have NO... (2 Replies)
Discussion started by: samnyc
2 Replies

3. UNIX for Advanced & Expert Users

setfacl directory limit

hello, I am using XFS filesystem & ACL (setfacl/getfacl). I can set ACL entries only for 21 users per one directory. For the 22nd user it shows invalid argument. Has somebody the same problem? I need to override this limit. thnks in advance david (3 Replies)
Discussion started by: sigd
3 Replies

4. Solaris

setfacl on a directory

Hi All, I am trying to set an ACL for a directory on my Solaris 10 box. I have an application which resides under /opt/CA directory. Application is installed by root and running as root. All log and configuration files are placed under /opt/CA as well. What I am trying to do is granting... (1 Reply)
Discussion started by: niyazi
1 Replies

5. Solaris

Issue with setfacl

Hi Experts, I have set access control to a directory which is under / as /proj1 and set the access to user1 as below Once I logging as user1 I am able to create and modify the file which is created by user1 however I am unable to edit / modify the file which is own by root.... (14 Replies)
Discussion started by: kumarmani
14 Replies

6. Solaris

Please help --setfacl: illegal option -- R

when i am executing setfacl -Rm u:ggoyal2:rwx,m:rwx dir i am getting error bash-3.00# setfacl -Rm u:ggoyal2:rwx,m:rwx dir setfacl: illegal option -- R usage: setfacl -f aclfile file ... setfacl -d acl_entries file ... setfacl -m acl_entries file ... setfacl -s acl_entries file... (2 Replies)
Discussion started by: manoj_dahiya22
2 Replies

7. Solaris

How to use setfacl

Hi all, If, for e.g. I have folder with permissions like this: drwxr-xr-x 2 fuad_ftp nms 96 Jan 8 13:55 test I want to give for user user123 acces rwx using setfacl: setfacl -m user:user123:rwx test But effective rights still is r-x because of mask... ... (1 Reply)
Discussion started by: nypreH
1 Replies

8. Cybersecurity

Usage of setfacl

Hi, I have a directory with 700 permissions. I intend to give rwx privileges to a user which does not belong to the group. I am using the following command setfacl -m u:prod:rwx test when I checked the privileges using getfacl -a test the output was as follows: # file: test #... (1 Reply)
Discussion started by: chakri400
1 Replies
Login or Register to Ask a Question