Manualshelf

Specifications

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Print Service Administration For Version 10.4 or Later
31323334353637383940
34 Chapter 2 Setting Up Share Points
Setting Privileges
Mac OS X Server provides two methods of access control to files and folders:
Standard POSIX permissions
Access Control Lists (ACLs)
These methods are described in the following sections.
Setting Standard Permissions
When you don’t require the flexibility and granularity that access control lists (ACLs)
provide, or in cases where ACLs are not supported, you can use the standard POSIX
permissions (Read & Write, Read Only, Write Only, and None) to control access to a
share point and its contents.
To set standard permissions on a share point:
1 Open Workgroup Manager and click Sharing.
2 Click Share Points and select the share point.
3 Click Access.
4 To set the owner or group of the shared item, type names or drag names from the
Users & Groups drawer.
To open the drawer, click Users & Groups. If you don’t see a recently created user or
group, click Refresh. To change the autorefresh interval, choose Workgroup Manager >
Preferences and change the value of the Auto-refresh Sharing every field.
5 Use the pop-up menus next to the fields to change the permissions for the Owner,
Group, and Everyone.
Everyone is any user who is not the owner and does not belong to the group but can
log in to the file server: other registered users and guests.
6 Click Save.
The new share point is shared using the AFP, SMB/CIFS, and FTP protocols, but not NFS.
Setting ACL Permissions
To configure access control list (ACL) permissions for a share point or folder, you create
a list of access control entries (ACEs). Each ACE lets you set 17 permissions with allow,
deny, and static inheritance. This allows you to have fine-grain control over access
permissions, something that you can’t do using standard permissions. For example, you
can separate delete permissions from write permissions so that a user can edit a file
but cannot delete it.
Note: You can’t explicitly configure ACL permissions for files. However, because files can
inherit ACL permissions from their parent folder, you can set permissions for files by
setting them for the parent folder and propagating them to descendant files.