Manage ACLs that contain Dynamic Access Control ACEs when Dynamic Access Control is disabled

Contributors

If you have resources that have ACLs applied with Dynamic Access Control ACEs and you disable Dynamic Access Control on the storage virtual machine (SVM), you must remove the Dynamic Access Control ACEs before you can manage the non-Dynamic Access Control ACEs on that resource.

About this task

After Dynamic Access Control is disabled, you cannot remove existing non-Dynamic Access Control ACEs or add new non-Dynamic Access Control ACEs until you have removed the existing Dynamic Access Control ACEs.

You can use whichever tool you normally use to manage ACLs to perform these steps.

Steps
  1. Determine what Dynamic Access Control ACEs are applied to the resource.

  2. Remove the Dynamic Access Control ACEs from the resource.

  3. Add or remove non-Dynamic Access Control ACEs as desired from the resource.