Manualshelf

HP CIFS Server Administrator's Guide Version A.03.01.02 (5900-1766, September 2011)

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
41424344454647484950
Figure 17 Modifying an ACE Type With Apply To value
IMPORTANT: If you want different permissions on default and access ACEs for the same user or
group , you must select two different ACE entries in the advanced ACE view dialog box before
you click on the OK button.
If you modify an ACE entry and clear both Allow and Deny check boxes, the Windows 2000 or
XP client removes that ACE and does not send it to the HP CIFS Server.
To prevent a directory owner from losing access, both access and default ACEs for the owner
should be set to Full Control permissions.
Removing an ACE entry from Windows 2000/XP clients
For mandatory ACLs (user, owning group, everyone), removing an ACE entry from the Advanced
Windows permission screen does not remove that ACE entry on the UNIX system. The HP CIFS
Server generates the missing ACEs from the existing access ACEs on the file.
For any other user or group ACEs, removing an ACE entry from the Advanced Windows screen
will remove that ACE entry on the HP CIFS Server.
Examples
Following are three examples to show the changes of the directory ACEs on the HP CIFS Server
when an ACE entry is removed from the Windows 2000/XP client.
Example 1:
In the example 1, assume that the existing directory ACEs for testdir on the HP CIFS Server
are:
# file:testdir
# owner:testuser
# owning group:users
access:owner:rwx
access:owning group:rwx
access:other:rwx
default:owner:rwx
default:owning group:r-x
HP CIFS Server Directory ACLs and Windows 2000, Windows XP, Windows Vista and Windows 7 Clients 49