View expected user permissions

You can view the expected permissions for user access to a file or directory.

About this task

This procedure must be performed through the command-line interface (CLI).

Procedure

  1. Establish an SSH connection to any node in the cluster.
  2. View expected user permissions by running the isi auth access command.
    The following command displays permissions in /ifs/ for the user that you specify in place of <username>:
    isi auth access <username> /ifs/
    The system displays output similar to the following example:
            User
               Name : <username>
                UID : 2018
                SID : SID:S-1-5-21-2141457107-1514332578-1691322784-1018
           File
              Owner : user:root
              Group : group:wheel
               Mode : drwxrwxrwx 
      Relevant Mode : d---rwx--- 
    Permissions
           Expected : user:<username> \
            allow dir_gen_read,dir_gen_write,dir_gen_execute,delete_child	
  3. View mode-bits permissions for a user by running the isi auth access command.
    The following command displays verbose-mode file permissions information in /ifs/ for the user that you specify in place of <username>:
    isi auth access <username> /ifs/ -v
    The system displays output similar to the following example:
    User Name : <username> UID \
    : 2018 SID : SID:S-1-5-21-2141457107-1514332578-1691322784-1018 
    File Owner : user:root Group : group:wheel Mode : drwxrwxrwx 
    Relevant Mode : d---rwx--- Permissions Expected : user:<username>
    allow dir_gen_read,dir_gen_write,dir_gen_execute,delete_child
  4. View expected ACL user permissions on a file for a user by running the isi auth access command.
    The following command displays verbose-mode ACL file permissions for the file file_with_acl.tx in /ifs/data/ for the user that you specify in place of <username>:
    isi auth access <username> /ifs/data/file_with_acl.tx -v
    The system displays output similar to the following example:
    User Name : <username> \
    UID : 2097 SID : SID:S-1-7-21-2141457107-1614332578-1691322789-1018 
    File Owner : user:<username> Group : group:wheel 
    Permissions Expected : user:<username> 
    allow file_gen_read,file_gen_write,std_write_dac 
    Relevant Acl: group:<group-name> Users allow file_gen_read 
    user:<username> allow std_write_dac,file_write,
    append,file_write_ext_attr,file_write_attr 
    group:wheel allow file_gen_read,file_gen_write