Manualshelf

Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server File Services
21222324252627282930
Chapter 2 Setting Up File Service Permissions 23
What’s Stored in an ACE
An ACE contains the following elds:
 User or Group. An ACE stores a universally unique ID for a group or user, which
permits unambiguous resolution of identity.
 Type. An ACE supports two permission types, Allow and Deny, which determine
whether permissions are granted or denied in Server Admin.
 Permission. This eld stores the settings for the 13 permissions supported by the
Apple ACL model.
 Inherited. This eld species whether the ACE is inherited from the parent folder.
 Applies To. This eld species what the ACE permission is for.
Explicit and Inherited ACEs
Server Admin supports two types of ACEs:
Explicit ACEs, which are those you create in an ACL. See  Adding ACEs to ACLs
on page 51.
Inherited ACEs, which are ACEs you created for a parent folder that were inherited Â
by a descendant le or folder.
Note: Inherited ACEs cannot be edited unless you make them explicit. Server Admin
enables you to convert an inherited ACE to an explicit ACE. For more information,
see “Changing Inherited ACEs for a Folder to Explicit” on page 54.
Understanding Inheritance
ACL inheritance lets you determine how permissions pass from a folder to its
descendants.
The Apple ACL Inheritance Model
The Apple ACL inheritance model denes four options that you select or deselect in
Server Admin to control the application of ACEs (in other words, how to propagate
permissions through a folder hierarchy):