Skip to main content

Enable or disable Dynamic Access Control overview

Contributors netapp-thomi netapp-ahibbard netapp-aherbin

The option that enables you to use Dynamic Access Control (DAC) to secure objects on your CIFS server is disabled by default. You must enable the option if you want to use Dynamic Access Control on your CIFS server. If you later decide that you do not want to use Dynamic Access Control to secure objects stored on the CIFS server, you can disable the option.

About this task

Once Dynamic Access Control is enabled, the file system can contain ACLs with Dynamic Access Control-related entries. If Dynamic Access Control is disabled, the current Dynamic Access Control entries will be ignored, and new ones will not be allowed.

This option is available only at the advanced privilege level.

Step
  1. Set the privilege level to advanced: set -privilege advanced

  2. Perform one of the following actions:

    If you want Dynamic Access Control to be…​

    Enter the command…​

    Enabled

    vserver cifs options modify -vserver vserver_name -is-dac-enabled true

    Disabled

    vserver cifs options modify -vserver vserver_name -is-dac-enabled false

  3. Return to the administrator privilege level: set -privilege admin