Unix permissions guidelines – Dell PowerVault DR6000 User Manual
Page 23
NOTE: Any user that is part of BUILTIN\Administrators can edit ACLs on CIFS shares. The local DR Series system
administrator is included in the BUILTIN\Administrators group. To add additional domain groups to the BUILTIN
\Administrators group, you can use the Computer Manager tool on a Windows client to connect to the DR Series
system as Domain administrator and add any groups you want. This capability allows users other than the Domain
administrator to modify an ACL as needed.
•
BUILTIN\Administrators:
Allows
Full access, object inherit, and container inherit.
Applies to
This folder, subfolders, and files.
•
CREATOR OWNER:
Allows
Full access, inherit only, object inherit, and container inherit.
Applies to
Subfolders and files only.
•
EVERYONE:
Allows
Traverse folders, execute files, list folders, read data, read attributes, and read extended
attributes.
Applies to
This folder only.
•
NT AUTHORITY\SYSTEM:
Allows
Full access, object inherit, and container inherit.
Applies to
This folder, subfolders, and files.
•
BUILTIN\Users:
Allows
Create folders and append data, inherit-only, and container inherit.
Applies to
This folder, subfolders, and files.
•
BUILTIN\Users:
Allows
Read and execute, and container inherit.
Applies to
This folder, subfolders, and files.
•
BUILTIN\Users:
Allows
Create files and write data, object inherit, and container inherit.
Applies to
Subfolders only.
NOTE: If these permissions are unsuitable for your needs, you can modify the default ACL to suit your own
requirement using the Windows ACL Editor (for example, using Properties → Security from Windows Explorer).
NOTE: The system does not understand the Owner Rights permission and sets the owner of new files/folders
created by the Domain Administrators as DOM\Administrator rather than as BUILTIN\Administrators.
Unix Permissions Guidelines
For a user to create, delete, or rename a file or a directory requires Write access to the parent directory that contains
these files. Only the owner of a file (or the root user) can change permissions.
Permissions are based on the user IDs (UIDs) for the file Owner and group IDs (GIDs) for the primary group. Files have
owner IDs and group owner IDs. To enable Unix access, the DR Series system supports three levels of users:
•
Owner (of the file)
23