Home > Storage > PowerScale (Isilon) > Product Documentation > Management and Migration > PowerScale OneFS Authentication, Identity Management, and Authorization > ACL file permissions management
ACL file permissions are managed through either an SMB share or the PowerScale CLI. As a user connects through an SMB share, the permissions can be updated through the file properties in the Security tab. However, from the PowerScale CLI, a chmod +a toggle is available, replicating the options from the file properties over an SMB share. The chmod +a option changes a file’s mode bits to add a new ACE, inserting the ACE into the ACL. A DACL is added to an existing ACL file, as shown in the following figure:
Figure 28. ACL file permissions management
Note: If a file state is unknown or an administrator does not understand how PowerScale implements multi-protocol, running chmod or chown, or updating file properties in Windows Explorer, could lead to unexpected results. These results might be limited through OneFS ACL policies, which are cluster-wide policies. For more information, see OneFS ACL policies. Ensure that you have a thorough understanding of changing file states before making changes on a production cluster. We recommend that you test file state changes on the simulator.