@@ -212,26 +212,9 @@ To have a better understanding of previous commands, you can read man pages:
Extended ACLs provide another security mechanism beside the standard POSIX ACLs, which are defined by three entries (for owner/group/others). Extended ACLs have more than the three basic entries. In addition, they also contain a mask entry and may contain any number of named user and named group entries.
ACLs on a Lustre file system work exactly like ACLs on any Linux file system. They are manipulated with the standard tools in the standard manner. Below, we create a directory and allow a specific user access.
ACLs on a Lustre file system work exactly like ACLs on any Linux file system. They are manipulated with the standard tools in the standard manner.
*[nfs4_setfacl][e]
*[nfs4_getfacl][l]
```console
vop999@login1:~$nfs4_getfacl test
#file: test
A::OWNER@:rwaxtTcCy
A::GROUP@:rwatcy
A::EVERYONE@:rtcy
vop999@login1:~$nfs4_setfacl -a A::GROUP@:RWX test
vop999@login1:~$nfs4_getfacl test
#file: test
A::OWNER@:rwaxtTcCy
A::GROUP@:rwaxtcy
A::EVERYONE@:rtcy
```
Default ACL mechanism can be used to replace setuid/setgid permissions on directories. Setting a default ACL on a directory will cause the ACL permissions to be inherited by any newly created file or subdirectory within the directory.
For more information, see the [Access Control List][11] section of the documentation.
## Local Filesystems
...
...
@@ -355,6 +338,7 @@ Transfer rates of about 28 MB/s can be expected.
