Hi, I setup a supergroup and assigned some ACLs based on that group and it didn't provide me with the expected result. Here's an example of what I setup:
Groups: * group0 - The primary group for office location "group0". * group0:admins - Office administrations for "group0". Directory Structure: * /afs/domain/Offices/Group0/ with group permissions: * * group0 rlidwk * /afs/domain/Offices/Group0/Admins/ with group permissions: * * group0:admins rlidwk * * -neg group0 rlidwk (Also note that Offices/Group0/ is a volume, Admins is just a directory within the volume.) Setting it up like this, group0:admins are not able to access the Admins directory. I also tried just removing group0 (rather than adding the negative permissions) but that didn't work either--in fact, doing this allows group0 to gain access to that directory. I ended up removing both groups and just adding ACLs for each user individually to get it to work as I needed. I've looked for examples of how to setup supergroups as well as how to work with AFS's ACL inheritance and haven't found much. Can someone offer some pointers here? Am I missing something? References to documentation would be great too! :-) ~ Tom
