Manualshelf

Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server File Services
11121314151617181920
 Group—You can put users who need the same access to les and folders in group
accounts. Only one group can be assigned access permissions to a shared item.
For more information about creating groups, see User Management.
 Others—Others is any user (registered user or guest) who can log in to the le
server.
Hierarchy of Permissions
If a user is included in more than one category of users, each of which has dierent
permissions, these rules apply:
Group permissions override Others permissions. Â
Owner permissions override Group permissions. Â
For example, when a user is the owner of a shared item and a member of the group
assigned to it, the user has the permissions assigned to the owner.
The more restrictive permissions always take precedence. For example, if a user
belongs to a group that has No Access assigned to an item while the Others
permissions are set to Read & Write access, the item with a No Access privilege
overrides the Others setting, denying the user access to the item.
Client Users and Permissions
Users of AppleShare Client software can set access privileges for les and folders they
own. Users who use Windows le sharing services can also set access privileges.
Standard Permission Propagation
Server Admin lets you specify which standard permissions to propagate. For example,
you can propagate only the permission for Others to all descendants of a folder and
leave the permissions for Owner and Group unchanged. For more information, see
“Propagating Permissions on page 55.
ACLs
When standard POSIX permissions are not enough, use access control lists (ACLs).
An ACL is a list of access control entries (ACEs), each specifying the permissions to
be granted or denied to a group or user and how these permissions are propagated
throughout a folder hierarchy.
ACLs in Mac OS X Server enable you to set le and folder access permissions to
multiple users and groups in addition to standard POSIX permissions. This makes it
easy to set up collaborative environments with smooth le sharing and uninterrupted
workows, without compromising security.
ACLs provide an extended set of permissions for a le or folder to give you more
granularity when assigning privileges than standard permissions would provide. For
example, rather than giving a user full writing permissions, you can restrict him or her
to create only folders and not les.
20 Chapter 2 Setting Up File Service Permissions