简体中文版经机器翻译而成,仅供参考。如与英语版出现任何冲突,应以英语版为准。
删除存储级别访问防护
贡献者
建议更改
PDF
如果您不再需要在存储级别设置访问安全性,则可以删除卷或 qtree 上的存储级别访问防护。删除存储级别访问防护不会修改或删除常规 NTFS 文件和目录安全性。
步骤
-
使用验证卷或qtree是否已配置存储级别访问防护
vserver security file-directory show命令:vserver security file-directory show -vserver vs1 -path /datavol2Vserver: vs1 File Path: /datavol2 File Inode Number: 99 Security Style: ntfs Effective Style: ntfs DOS Attributes: 10 DOS Attributes in Text: ----D--- Expanded Dos Attributes: - Unix User Id: 0 Unix Group Id: 0 Unix Mode Bits: 777 Unix Mode Bits in Text: rwxrwxrwx ACLs: NTFS Security Descriptor Control:0xbf14 Owner:BUILTIN\Administrators Group:BUILTIN\Administrators SACL - ACEs AUDIT-EXAMPLE\Domain Users-0xf01ff-OI|CI|FA DACL - ACEs ALLOW-EXAMPLE\Domain Admins-0x1f01ff-OI|CI ALLOW-EXAMPLE\Domain Users-0x1301bf-OI|CI Storage-Level Access Guard security DACL (Applies to Directories): ALLOW-BUILTIN\Administrators-0x1f01ff ALLOW-CREATOR OWNER-0x1f01ff ALLOW-EXAMPLE\Domain Admins-0x1f01ff ALLOW-EXAMPLE\Domain Users-0x120089 ALLOW-NT AUTHORITY\SYSTEM-0x1f01ff DACL (Applies to Files): ALLOW-BUILTIN\Administrators-0x1f01ff ALLOW-CREATOR OWNER-0x1f01ff ALLOW-EXAMPLE\Domain Admins-0x1f01ff ALLOW-EXAMPLE\Domain Users-0x120089 ALLOW-NT AUTHORITY\SYSTEM-0x1f01ff -
使用删除存储级别访问防护
vserver security file-directory remove-slag命令:vserver security file-directory remove-slag -vserver vs1 -path /datavol2 -
使用验证是否已从卷或qtree中删除存储级别访问防护
vserver security file-directory show命令:vserver security file-directory show -vserver vs1 -path /datavol2Vserver: vs1 File Path: /datavol2 File Inode Number: 99 Security Style: ntfs Effective Style: ntfs DOS Attributes: 10 DOS Attributes in Text: ----D--- Expanded Dos Attributes: - Unix User Id: 0 Unix Group Id: 0 Unix Mode Bits: 777 Unix Mode Bits in Text: rwxrwxrwx ACLs: NTFS Security Descriptor Control:0xbf14 Owner:BUILTIN\Administrators Group:BUILTIN\Administrators SACL - ACEs AUDIT-EXAMPLE\Domain Users-0xf01ff-OI|CI|FA DACL - ACEs ALLOW-EXAMPLE\Domain Admins-0x1f01ff-OI|CI ALLOW-EXAMPLE\Domain Users-0x1301bf-OI|CI