Looks like you are running into bug: 6261858 ls(1) -l, getfacl(1), and setfacl(1) can return "Permission denied" due to "nobody" and ACLs
See the June 4/5 discussion on this alias for info on this bug. Thanks, Lisa On Jun 16, 2009, at 12:14 PM, John Keiffer wrote: > I have a Solaris client that is not yet part of a domain (working on > it). I have the Leopard system joined to the Matrix domain and has > LDAP enabled. When I add an LDAP user to a folder, the client can no > longer list the ACLs. Its doesn?t matter if the user is put at the > top of the ACL list (default), or the bottom (done manually)? > > Why doesn?t this work? > > System permissions: > > nmc at Leopard-1:/pool1/acl-test-1$ ls -dV > drwxrwxrwx+ 7 root root 15 Jun 15 15:03 . > user:qacifs7077:rwxp---A-W-Co-:-------:allow ? LDAP > user added via NMV > owner@:--------------:-------:deny > owner@:rwxp---A-W-Co-:-------:allow > everyone@:rwxp--a---c---:-------:allow > group@:-w-p----------:-------:deny > group@:r-x-----------:-------:allow > > Client response: > > dumpin at c16r75:/mnt/leo1/acl-test-1# ls -dV > ls: can't read ACL on .: Permission denied > drwxrwxrwx 7 nobody nobody 15 Jun 15 15:03 . > -- > This message posted from opensolaris.org > _______________________________________________ > nfs-discuss mailing list > nfs-discuss at opensolaris.org
