Release notes
Enable or disable Dynamic Access Control overview
Suggest changes
-
PDF of this doc site
-
Cluster administration
-
Volume administration
-
Logical storage management with the CLI
-
-
NAS storage management
-
Configure NFS with the CLI
-
Manage NFS with the CLI
-
Manage SMB with the CLI
-
Manage file access using SMB
-
-
-
Security and data encryption
-
Data protection and disaster recovery
-
Data protection with the CLI
-
-
Collection of separate PDF docs
Creating your file...
The option that enables you to use Dynamic Access Control (DAC) to secure objects on your CIFS server is disabled by default. You must enable the option if you want to use Dynamic Access Control on your CIFS server. If you later decide that you do not want to use Dynamic Access Control to secure objects stored on the CIFS server, you can disable the option.
Once Dynamic Access Control is enabled, the file system can contain ACLs with Dynamic Access Control-related entries. If Dynamic Access Control is disabled, the current Dynamic Access Control entries will be ignored, and new ones will not be allowed.
This option is available only at the advanced privilege level.
-
Set the privilege level to advanced:
set -privilege advanced -
Perform one of the following actions:
If you want Dynamic Access Control to be…
Enter the command…
Enabled
vserver cifs options modify -vserver vserver_name -is-dac-enabled trueDisabled
vserver cifs options modify -vserver vserver_name -is-dac-enabled false -
Return to the administrator privilege level:
set -privilege admin
Configuring central access policies to secure data on CIFS servers