I recently installed truenas scale. I am trying to reset the permissions on zfs volume / data set that were from my old freenas install. So recursively cleared all the acl’s. I recursively set all owner and group to root. chmod directories to 755 and files to 640. Now I want to go through and set up acls properly. So I try, for example
nfs4xdr_setfacl -R -a "A:df:OWNER@:rwatTcCy" /mnt/volume0/home
But now matter how I seem to form the command it always returns an error of invalid tag.
After a little more exploration and creating some child datasets, it looks like I can do what I want through the UI. This is great as dealing with acl’s from CL is a real pain.
Creating child datasets and using the UI is not the solution though, it’s a workaround.
Anyone able to set nfs4xdr_setfacl on sub directories? I get the tag errors no matter which format i try to add smb/nfsv4 acls:
nfs4xdr_setfacl: malformed ACL: invalid “tag” field
failed to generate ACL entry
failed to get entry from text: Invalid argument
Failed while inserting ACE(s) (at index 0).
nfs4xdr_setfacl -e to open the acl editor in vim works, but it’s not pretty. Must be a way to just use the command?
Edit: The tags must be set in another format. A few examples are mentioned in the manual. For example: nfs4xdr setfacl -a u:myuser:rxwp:allow /mnt/pool/share/dir, or nfs4xdr_setfacl -R -a u:mysuser:rwxpDdaARWcCos:fd----I:allow /mnt/pool/share/dir
