So per my previous post, I'm now trying to replace the file POSIX
permissions with ACLs. I'm apparently missing something though. I want to
replicate what I had before in the new supported method, i.e.:
owner => 'SYSTEM',
group => 'Administrators',
mode => '0775',
So I tried doing:
acl { 'chocolatey.config':
target => 'C:/ProgramData/chocolatey/config/chocolatey.config',
purge => false,
permissions => [
{
identity => 'SYSTEM',
rights => [
'full'],
perm_type => 'allow',
child_types => 'all',
affects => 'all'
}
,
{
identity => 'Administrators',
rights => [
'full'],
perm_type => 'allow',
child_types => 'all',
affects => 'all'
}
,
{
identity => 'Users',
rights => [
'read',
'execute'],
perm_type => 'allow',
child_types => 'all',
affects => 'all'
}
],
owner => 'SYSTEM', # Creator_Owner specific, doesn't manage
unless specified
group => 'Administrators', # Creator_Group specific, doesn't
manage unless specified
inherit_parent_permissions => true,
require => File['chocolatey.config'],
}
As I understand the documentation, this seems to map, mind you - being far
more verbose and complicated - to the original permissions. However, I get
errors:
Could not evaluate: The parameter is incorrect. - ReportEvent
This doesn't really help me figure out what I did wrong here...
--
You received this message because you are subscribed to the Google Groups
"Puppet Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/puppet-users/a49f14bc-6804-4ba8-a033-752a6da2a9cb%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
