Enable or disable Dynamic Access Control overview
The option that enables you to use Dynamic Access Control (DAC) to secure objects on your CIFS server is disabled by default. You must enable the option if you want to use Dynamic Access Control on your CIFS server. If you later decide that you do not want to use Dynamic Access Control to secure objects stored on the CIFS server, you can disable the option.
Once Dynamic Access Control is enabled, the file system can contain ACLs with Dynamic Access Control-related entries. If Dynamic Access Control is disabled, the current Dynamic Access Control entries will be ignored, and new ones will not be allowed.
This option is available only at the advanced privilege level.
-
Set the privilege level to advanced:
set -privilege advanced
-
Perform one of the following actions:
If you want Dynamic Access Control to be…
Enter the command…
Enabled
vserver cifs options modify -vserver vserver_name -is-dac-enabled true
Disabled
vserver cifs options modify -vserver vserver_name -is-dac-enabled false
-
Return to the administrator privilege level:
set -privilege admin
Configuring central access policies to secure data on CIFS servers