acl group permissions

[camelia]

We have a file system that was built and populated before changing its acl.
On this file system we created a directory with default acl and 50 users that don't belong ( all of them) to the same group we have 4 groups.
One of those groups should be able to r/w/x files in each user's directory , so I believed that if I create an entry in acl for this group I'll solve the problem.
The file system is mounted 

/dev/ngs /ngs  type gpfs rw,mtime,atime,quota=userquota;groupquota,filesetquota,dev=ngs,autostart 0 0

I tried to use also mmeditacl - command for changing acl that comes with gpfs and the result is the  same.
The output for mount -l is :

[root at dapsas2 user_data]$ mount -l /dev/md2 on / type ext3 (rw) []
none on /proc type proc (rw)
none on /sys type sysfs (rw)
none on /dev/pts type devpts (rw,gid=5,mode=620)
usbfs on /proc/bus/usb type usbfs (rw)
/dev/md0 on /boot type ext3 (rw) []
none on /dev/shm type tmpfs (rw)
/dev/mapper/vg00-volusers on /users type ext3 (rw,usrquota,grpquota) []
/dev/mapper/vg00-volgcg on /gcg type ext3 (rw) []
/dev/mapper/vg00-voldb on /srv type ext3 (rw) []
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw)
sedna:/vol/main/biousers on /biousers type nfs (rw,soft,bg,addr=132.77.4.190)
sedna:/vol/main/biousers2 on /biousers2 type nfs (rw,soft,bg,addr=132.77.4.190)
sedna:/vol/main/genusers on /genusers type nfs (rw,soft,bg,addr=132.77.4.190)
sedna:/vol/main/mysusers on /mysusers type nfs (rw,soft,bg,addr=132.77.4.190)
//ga-ps1/data on /srv/projects/next-gen-seq/ga-ps1 type cifs (ro,mand)
nfsd on /proc/fs/nfsd type nfsd (rw)
/dev/ngs on /ngs type gpfs (rw,mtime,quota=userquota;groupquota;filesetquota,dev=ngs,autostart)
ngs001:/data/run_data on /ngs/run_data001 type nfs (rw,soft,bg,addr=132.77.4.47)
[root at dapsas2 user_data]$ mount -la [root at dapsas2 user_data]$ pwd /ngs/user_data
[root at dapsas2 user_data]$ ls -ld drwxrwxr-x+ 50 esterf nobody 8192 Jul 13 09:30 .

Ls -ld on /ngs returns
drwxrwxr-x+ 14 bsgilgi bioserv 8192 Jul 11 12:21 .

I created first the acl for /ngs and I checked if directories already created in this file system hav + at the end of permissions - don't have.
If I create in /ngs a new directory it inherit the acl from /ngs.
I created another acl for /ngs/user_data but as user belonging to bioserv group I cannot write in other users directories.
Something I'm not doing wright.


-----Original Message-----
From: Oleg Goldshmidt [mailto:pub at goldshmidt.org] 
Sent: Monday, July 12, 2010 9:03 PM
To: camelia
Subject: Re: acl group permissions

camelia <camelia.botez at weizmann.ac.il> writes:

> We tried to create acl for file system /ngs and we saw that we cannot "use" It in our purpose so we created an extra acl for sub dir /ngs/user_data.
> What we need still doesn't work.
> We consulted a lot of times the acl man pages and not only and we believe that we do what it should be  done.
> Why doesn't work ?

Hi,

It would help if you could tell us exactly what you did, including the
actual sequence of qcommands (mount - or the relevant part of
/etc/fstab if the mount is automatic, - setfacl, etc.) and the
outcome, as in what exactly does not work, including the output of
"mount -l" and of "ls -ld" on some of the problematic directories and
files, including /ngs itself.

It is very difficult to diagnose a generic "does not work" problem.

--
Oleg Goldshmidt | pub at goldshmidt.org