Solaris ZFS Administration Guide
Previous Next

New Solaris ACL Model

Previous versions of the Solaris OS supported an ACL implementation that was primarily based on the POSIX ACL draft specification. The POSIX-draft based ACLs are used to protect UFS files. A new ACL model that is based on the NFSv4 specification is used to protect ZFS files.

The main differences of the new Solaris ACL model are as follows:

  • Based on the NFSv4 specification and are similar to NT-style ACLs.

  • Much more granular set of access privileges.

  • Set and displayed with the chmod and ls commands rather than the setfacl and getfacl commands.

  • Richer inheritance semantics for designating how access privileges are applied from directory to subdirectories, and so on.

For more information about using ACLs with ZFS files, see Chapter 7, Using ACLs to Protect ZFS Files.

Previous Next