Posted in Linux, Security

Access Control List (ACL) Permissions in RHEL 7/Centos 7

Today I am going to show you how to use access control list (ACL) permissions in rhel7. Traditionally we have assigned permission to one user/owner and one group for file or directory but in some cases we need other user or other group apart from owner need to have readonly access or write access on same directory. To achieve this we have access control list permission concept in Linux.

Other users and and groups can also access file or directory even when they are not owners and member of group who is having ownership on that file or directory.

we use only two commands getfacl to see ACL permissions on directory/file and setfacl to set ACL permissions. We can even set default ACL so that new files and sub-directories created in directory will inherit ACL permissions of parent directory.

The filesystem needs to be mounted with ACL support enabled. XFS filesystems have built-in ACL support and Ext4 filesystem in RHEL7 have ACL option enabled by default. In earlier versions of RHEL you may need the ACL option included with mount request.

First we see ACL permission on file named prod.conf.

1

Continue reading “Access Control List (ACL) Permissions in RHEL 7/Centos 7”

Advertisements