Can't enable ACLs on a RAID volume

Similar Messages

• How can I set ACLs on MAC remote volumes.

  Hi,
  I am having Mac OS X 10.5 leopard as server and 10.4 as client. I have mounted 10.5 server from 10.4 remotely through Apple Filing Protocol(Basically an AFP mount). On the remote mounted volumes I am unable to enable/set the ACLs right now. But I have already enabled the ACLs on 10.5 local volumes before I mount them from different clients.
  "sudo fsaclctl -p </Volumes/MACVOL1> -e" is the command used to enable ACLs on the remote MAC Volumes. This one throwed ENOT SUPPORT error. It should not be due to any file system differences, as both are having same file system.
  *Basically I want to see an ACL(AFP's FPGetACL/FPSetACL) request going on wire from a MAC client to contact the MAC server.*
  I have tried the option of workgroup manager. There the sharing option was dimmed out after the authentication part. And I was unable to add the remote server in the server admin part. I have tried all the options that were suggested in various threads. But nothing worked out.
  I am looking out for some simpler solution to see the ACL request coming from a Mac client directing to a MAC server.
  Thanks,
  Yogesh.

  Any suggestions please...

• Strange thing I've never seen :can't view the file in raid volume in finder

  I have the three 500GB additional internal SATA drives and raid them together.
  It was working fine for a while. Now, I can not access to the files in the raid volume.
  Raid is not broken and the computer can access to the files. but when I double click the volume to see the files, the screen went blue for 0.1 second and the window closed. The same thing happen if I try to navigate to the volume from other volume's window. Please somebody help me!!

  Either the RAID is corrupt and the directory needs repair which sounds likely, and the file may be.
  If it is your boot system you'll need to boot from another volume for some repairs.

• How can I enable Spotlight on an AirDisk volume?

  Hi everyone,
  I've had a 2 TB external drive connected to my AEBT for a few months and I've been happy offloading stuff there. The problem is that now, I can't find anything... It's not that it's not neat: I've categorized stuff in folders but this can only get me so far and now I find myself NEEDING TO SPOTLIGHT THERE.
  Please, can you help me?
  Thanks in advance!

  Not possible. Used DEVON's EasyFind to make up for it. Not ideal, but it's better than nothing.

• UCSM 2.1 Local disk configuration policy and raid volumes

  Hi!
  If i use Any configuration as local disk configuration policy and do the raid settings directly to the RAID-cards, am i able to have two raid volumes on C-series under UCSM management?
  What i would like to do with C240M3 with 6 local disks: 2 disk raid1 and 4 disk raid0
  So i would use:
  "Any Configuration—For a server configuration that carries forward the local disk configuration without any changes."
  As UCS servers Raid guide indicates:
  "Maximum of One RAID Volume and One RAID Controller in Integrated Rack-Mount Servers
  A rack-mount server that has been integrated with Cisco UCS Manager can  have a maximum of one RAID volume irrespective of how many hard drives  are present on the server. "
  Is this paragraph limitation of GUI not able to set several volumes or hard fact without "Any configuration" workaround?

  I did some testing about this issue:
  Changed Local Disk Configuration to "Any Configuration"
  Two virtual disks can be created from Raid card's WebBIOS
  These disks are visible to RedHat Installation.
  UCSM shows Any configuration for the Storage Local Disk policy
  Actual Disk Configuration has faulty information - WebBios is the only place to check the RAID status?
  Next step: I'll do the same for the production

• Enable ACLs on existing volume- have you done this?

  I'm considering enabling ACLs on an existing (in use) SAN volume. I'm still running xsan 1.4.2. The MDCs are on 10.5.5 and soon the clients will be as well.
  Have any of you enabled ACLs 'after the fact', and if so, did you have any problems?
  I'm using local users right now, and I want to move to OD users and get away from the umask nonsense.

  Do you see a n "Old Firefox Data" folder on the desktop in case Firefox got reset?
  Do you have more than one profile folders present if you check that?
  You can use this button to go to the current Firefox profile folder:
  *Help > Troubleshooting Information > Profile Directory: Show Folder (Linux: Open Directory; Mac: Show in Finder)
  Go one level up to the Mozilla\Firefox\Profiles\ folder in case a new profile got created.
  *http://kb.mozillazine.org/Recovering_a_missing_profile

• I can't enable the ownership of my back-up volume via get info. Any other suggestions?

  Hi people, My external hard drive is not working well. When I try to make a time-machine back up a window pops up: ‘Mac-OSX can’t repair the disk. You can still open or copy files on the disk, but you can’t save changes to files on the disk. Back up the disk and reformat it as soon as you can’. So now I am trying to copy my back-up files to another disk so I can reformat it. But when I try to do that, the following text appears: The backup files can’t be copied because the backup volume doesn’t have ownership enabled. The problem is that I can’t enable the ownership of the back-up volume.

  ALF316 wrote:
  Yes its my Time Machine disk that’s damaged. What can I do now? Format the disk and loose all my back-ups?
  You may be able to restore individual items, or even an entire backup, as long as you don't happen to hit the damaged area(s).  But yes, your only real option is to erase the disk and start over.  When you do that, you might want to take the time to have Disk Utility write zeros to the entire disk (see section (b) in the blue box of #1 in Using Disk Utility if you're not sure how to do that) -- if that fails, you know the disk itself is failing and must be replaced.  If it succeeds, the drive may be ok.
  And how can I prevent this in the future. I know at least I had to have a second back up disk but I never did that.
  You probably don't know yet what caused it.  If it's the disk failing, obviously you need a new one.  Other things that can cause disk corruption are power blips, being disconnected improperly, or your Mac crashing or losing power while the disk is connected, especially during a backup.
  For power problems, the best solution is a U.P.S. (battery backup) system.  A good surge protector will protect against power spikes, but not dips or sudden loss of power.
  I allready tried several times to change ownership with Get Info but I can’t. I don’t see a checkmark and the
  section isn’t clickable either. Any other suggestions?
  The screenshot is of your TM drive.  The message is about the drive you're trying to copy to, such as:

• Ive damaged the aux in port and now the volume is locked. how can i enable my internal speakers?

  ive damaged the aux in port and now the volume is locked. how can i enable my internal speakers?

  rizmasterp,
  Thsi not a lot of nfo to go on, nor have you included the OSX, model of you MBP. PLease post that so that anyone reading this might be able to offer some help, as well as some more info on "I've damaged my aux port.
  That being said, all I can suggest is to go to system preferences>sound>output tab and see if you can select internal speakers.
  With the info available all I would otherwise suggest is a pram reset:
  Power off the MBP, Power back up holding option, command, P R (no commas) hold these immediatly afterpower up, contine to hold them till you hear the start chime 2 times then release. See if your speakers work.
  Post the afore mentioned info and someone here might be able to offer some more help. If in fact you have physically damaged the port that might require repair from Apple r an authorized Apple service provider. (AASP)
  Best

• Purchased a 5T external, formatted to Mac OS Extended (Journaled), trying to drag and drop Time Machine. Tells me "The backup can't be copied because the backup volume doesn't have ownership enabled." How do I enable ownership? What is ownership?

  Thanks!

  Although the documentation says you can copy Time Machine backups in the Finder, it's very slow and sometimes doesn't work at all.
  This technique will only work if the volume you're copying to is the same size, or larger than, the one you're copying from.
  First, open the Time Machine preference pane and click the Select Disk... button. You may have to unlock the settings first by clicking the padlock icon in the lower left corner of the window. Authenticate as an administrator.
  Delete the volume you're going to copy from the list of backup destinations. Then turn Time Machine OFF.
  Launch Disk Utility, open the built-in help, and search for the term "Duplicate." Follow the instructions. All existing data on the destination volume will be erased. That shouldn't be a problem, because you don't want to mix backup and non-backup data on the same drive anyway.
  If the volume you're copying was encrypted by Time Machine, you may have to unlock it first. Click the Unlock button in the toolbar of the Disk Utility window.
  Turn Time Machine back ON and select the new volume as a backup destination. You can also continue to use the old volume, if you wish. The two will be alternated when both are available.
  CAUTION: If the volume you're copying is corrupt, as shown by Repair Disk or Verify Disk in Disk Utility, then that corruption will be copied to the new drive. Don't copy data from a corrupt volume on a malfunctioning drive. Put the drive aside and don't use it until you're sure you'll no longer need the data. Then securely erase it and take it to a recycling center. Do the same if the Restore operation fails with "disk errors."

• How can I rename a shared RAID volume?

  I need to rename a shared RAID volume on OS X Server. What would be the best way to do this?
  If the volume is renamed, will all the share settings need to redone?
  It's currently "data RAID Set1" and I want it to be "data_RAID" or something with no spaces.

  When you're on the page that shows all of your Pages documents that are stored in iCloud, simply click on the name of the file. You will be able to rename it from there.

• Enabling ACLs on existing sharepoint

  Howdy - I've read through a lot of the other posts on ACLs but this particular topic didn't seem to be covered there.
  I have a handful of "Shares" on a volume that currently does not have ACLs enabled, and like most people, I've been constantly resetting the file permissions so that people in various groups (HS Faculty, Yearbook, etc) are able to read, write, etc.
  I'd like to try using ACLs on there in the hopes that these shares become a little easier to manage, BUT the volume (an XRAID) also has users home directories on it, and I am concerned that enabling ACLs on the volume could somehow screw things up there.
  If I enable ACLs, I can use them just on my "share points" and not on my home directories, right? ACLs are activated on a per-folder level, correct?
  System is an XServe G5 (2x 2Ghz) with 2GB RAM, running OS X Server 10.4.2 - connected to single channel of XRAID with 1.09TB (RAID 0+1).
  If anyone has suggestions for me (besides re-reading Gerrit's ACL Tips posts, which I will do anyway), I'd appreciate it.
  G5 iMac   Mac OS X (10.4.4)  

  ACLs are enabled at the volume level, but only applied to the folders you choose. For example, we use a volume (Data) that contains multiple folders (Homes, Shared, and Web). We use ACLs only in the Shared directory and continue to rely on POSIX for the others. It works fine.
  One caveat: we don't use XRAID.

• Raid Volumes Randomly Dismounting

  Okay first a warning .. this is going to be a long post!
  Overview: When my raid is connected through my Fibre Channel Switch it randomly dismounts.
  Specifics:
  Xserve G5 (10.4.7) with the LSI Dual-Channel 2GB Fibre Channel PCI-X HBA & Fibre Channel Utility 2.0
  Xserve RAID - Each side with its own Raid 5 , hot spare - no masking & latest firmware
  Exabyte Magnum 224 FC
  Qlogic Sanbox 5200 Series (12 port) - Latest Firmware (configured with two zones (port not WWN) ; Zone 1: Port 1 HBA, Both Xraid | Zone 2: Port 0 HBA, Exabyte
  Background : This used to ALL work! Recently we began to experience drastic slow downs when writing to the raid and common sense not working free space, which was the problem, was the last thing I checked. Before that though I tried swapping cables, replacing the raid controller, redoing zoning, straight connect - Obviously none of this was the issue. *note here: at this point I am using an identical Fibre Channel Card in my Xserve from my G4 - a careless maneuver broke the Apple installed card whilst it was laying on a table.*
  When I got things working (made room on the volume) I happened to be in a configuration the circumvented the switch.. raid directly into the host and things , as said, worked fine. The next night I took the systems down to put everything on the switch again to allow a back-up to be ran. Now is when the current behavior begins. Randomly and without recognizable patterns both raid volumes would dismount from the host. Checking Raid Admin shows the volumes as being in order and all lights are green.
  This time I fear my switch has gone and after time spent with Qlogic (and zilliions of different configurations) a new switch is sent out in the mean time back to a straight connection and things are working fine. New switch arrives, is configured, and immediately problem persists. Qlogic/Apple suggest the midplane on the raid is bad (even though it works straight through). I happen to have a brand new in box XRAID (with current firmware) so I set that up put in the drives from the old raid and the problem persists again when plugged into the switch. Direct to host things work fine.
  So I read some documentation on Apple and Fibre channel and made a few changes to HBA ports and Switch Port Settings and came to the following scenario... Volumes stayed mounted through an entire work day, but after a brief time into a backup the volumes unmounted.
  Here is some more specific info about my exact setup as it last failed...
  ZONE 1 (zoned by port not WWN)
  Switch Ports 0, 1, 2
  HBA Port 1 into Switch Port 0
  Raid into Switch Ports 1, 2
  All ports are identifying themselves to switch as switch topology
  HBA port configured as Topology: Point-to-Point, Speed: 2Gb/s
  SW Port 0 configed as State: Online, Speed: auto, Type: Detect, I/O Stream Guard: Enable, Device Scan: Disable
  SW Port 1, 2 configed as State: Online, Speed: auto, Type: Detect, I/O Stream Guard: Auto, Device Scan: Enable
  ZONE 2 (zoned by port not WWN)
  Switch Ports 8, 9
  HBA Port 0 into Switch Port 9
  Exabyte into Switch Port 8
  Port 8 identifying as Loop topology, 9 as switch
  HBA port configured as Topology: Auto, Speed: Auto
  SW Port 8 configed as State: Online, Speed: auto, Type: Detect, I/O Stream Guard: Auto, Device Scan: Enable
  SW Port 9 configed as State: Online, Speed: auto, Type: Detect, I/O Stream Guard: Enable, Device Scan: Disable
  I realize that some of these settings, particularly those on the HBA are different between ports, but we have tried virtually every combination (I think)
  Around the time of the backup job system.log on the host has these entries:
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 5 (External Bus Reset) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: External Bus Reset for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 7 (Link Status Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Link is down for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 8 (Loop State Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Loop Initialization Packet for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 9 (Logout) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 7 (Link Status Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Link is active for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 6 (Rescan) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 5 (External Bus Reset) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: External Bus Reset for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 7 (Link Status Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Link is down for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 8 (Loop State Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Loop Initialization Packet for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 9 (Logout) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 7 (Link Status Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Link is active for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 6 (Rescan) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 5 (External Bus Reset) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: External Bus Reset for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 7 (Link Status Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Link is down for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 8 (Loop State Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Loop Initialization Packet for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 9 (Logout) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 7 (Link Status Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Link is active for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 6 (Rescan) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 5 (External Bus Reset) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: External Bus Reset for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 7 (Link Status Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Link is down for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 8 (Loop State Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Loop Initialization Packet for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 9 (Logout) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 7 (Link Status Change) for SCSI Domain = 3
  Mar 7 17:55:41 files kernel[0]: FusionFC: Link is active for SCSI Domain = 3.
  Mar 7 17:55:41 files kernel[0]: FusionMPT: Notification = 6 (Rescan) for SCSI Domain = 3
  Mar 7 17:55:42 files kernel[0]: FusionMPT: Notification = 5 (External Bus Reset) for SCSI Domain = 3
  Mar 7 17:55:42 files kernel[0]: FusionMPT: External Bus Reset for SCSI Domain = 3
  Mar 7 17:55:42 files kernel[0]: FusionMPT: Notification = 7 (Link Status Change) for SCSI Domain = 3
  Mar 7 17:55:42 files kernel[0]: FusionFC: Link is down for SCSI Domain = 3.
  Mar 7 17:55:42 files kernel[0]: FusionMPT: Notification = 8 (Loop State Change) for SCSI Domain = 3
  Mar 7 17:55:42 files kernel[0]: FusionFC: Loop Initialization Packet for SCSI Domain = 3.
  Mar 7 17:55:42 files kernel[0]: FusionMPT: Notification = 9 (Logout) for SCSI Domain = 3
  Mar 7 17:55:42 files kernel[0]: FusionMPT: Notification = 7 (Link Status Change) for SCSI Domain = 3
  Mar 7 17:55:42 files kernel[0]: FusionFC: Link is active for SCSI Domain = 3.
  Mar 7 17:55:42 files kernel[0]: FusionMPT: Notification = 6 (Rescan) for SCSI Domain = 3
  Mar 7 17:55:42 files kernel[0]: disk4s3: I/O error.
  Mar 7 17:55:42 files kernel[0]: FusionMPT: Notification = 5 (External Bus Reset) for SCSI Domain = 3
  Mar 7 17:55:42 files kernel[0]: FusionMPT: External Bus Reset for SCSI Domain = 3
  Mar 7 17:55:42 files kernel[0]: FusionMPT: Notification = 7 (Link Status Change) for SCSI Domain = 3
  Mar 7 17:55:42 files kernel[0]: FusionFC: Link is down for SCSI Domain = 3.
  Mar 7 17:55:50 files kernel[0]: s3: I/O error.
  =======
  Then followed by a ton of various I/O errors
  =======
  Mar 7 17:56:42 files kernel[0]: disk4s3: I/O error.
  Mar 7 17:56:42 files kernel[0]: disk4s3: I/O error.
  Mar 7 17:56:42 files kernel[0]: disk4s3: I/O error.
  Mar 7 17:56:42 files kernel[0]: FusionMPT: Notification = 6 (Rescan) for SCSI Domain = 3
  Mar 7 17:56:42 files kernel[0]: disk4s3: I/O error.
  Mar 7 17:56:42 files kernel[0]: disk4s3: I/O error.
  =======
  Finally by media not present errors which end the log
  =======
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: disk5s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: jnl: dojnlio: strategy err 0x6
  Mar 7 17:56:42 files kernel[0]: jnl: end_transaction: only wrote 0 of 8192 bytes to the journal!
  Mar 7 17:56:42 files kernel[0]: jnl: close: journal 0x4c21bb4, is invalid. aborting outstanding transactions
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:42 files kernel[0]: disk4s3: media is not present.
  Mar 7 17:56:45 files kernel[0]: jnl: close: journal 0x4c21c98, is invalid. aborting outstanding transactions
  And that folks is it.. I'm up for any and all suggestions, questions, comments etc.. I'm absolutely desperate here!
  Please, please does anyone have any ideas what's going on here.
  Thanks,
  James Nierodzik

  Hi Roger, thanks for the reply.
  Throughout the battles I did try cables that were not in the scenario to no avail so I don't think it's a cablling issue though I suppose it still could be.
  Well into the backup was last night's failure point.. days previous, when through the switch, it had failed at periodic points throughout the day. I could not tie those periods to greater than normal I/O demand though.
  As for cooling the components are kept in a well circulated room that is kept 24x7 at 62 degrees with an alarm on the cooling unit so I am about as certain as can be that cooling is not a factor.

• Enable ACL on XSAN without using OD. Is it possible?

  I've tried using fsaclctl - but no results. How to enable ACL on XSAN?

  Are you using xSAN 2 or 1.4? With v2, you can stop the volume and open it's settings, checking ACL's. Oddly, I'm curious to why ACL's would make your permissions management easier. It generally in my experience has made it far more difficult to deal with permissions from different macs when enabled since there are additional "layers" of users above those assigned by XSAN directly.
  If you have any OSX Server product running on the XSAN, you can start up a Directory Service on it. Just make sure all your XSAN clients and controllers have that machine's IP or Servername (xserve1.local) designated in the the app found in Applications/Utilities/Directory Utility. While it isn't maybe best practice to have the Metadata controller doubling as an OD server, it isn't really a huge deal if your SAN is small. Any performance hits on the SAN would be minimal compared to the huge task of keeping up with all your mac's users and settings all the time.
  Making your own simple OD server would work as long as your XSAN isn't part of a larger network. My company has Active Directory for the main LAN and the addition of a simple but separate OD for xSAN users has caused many problems when those same macs write to the LAN volumes.

• Sun Filer - can you automate ACL permissions for all shares?

  Does the Sun Filer have an automation tool that will allow me to change all share permissions?
  As I'm a windows admin, does the filer have a powershell snapin?
  I havent been able to find much on the internets in regards to this topic.
  Thanks

  So... chmod -R on its own doesn't do anything, obviously. chmod +a returns "Failed to set ACL on file 'Tests': Operation not supported." Sure enough, the volume has "ignore ownership" enabled. I'm pretty sure I don't have ACLs running on that volume.
  1. Does "ignore ownership" mean ACLs get turned off?
  2. Other than that little switch in Finder, how do I control the ACLs volume-wide? I have neither fsaclctl nor fsctl on that server. Do I need to copy fsaclctl from a Leopard client?
  3. The deeper question is, do I want to enable ACLs? All the employees store all their files on that volume (it's a small company); will ACLs wreak havoc? Aside from official documentation, you sometimes get the feeling that ACLs are broken altogether.
  As for a 3rd party content management system, I need file-level access for users. A tool that manages the file storage, controls and audits access for end users, and avoids filename collisions and related issues sounds to my like AFP and Mac OSX Server.... Is there any 3rd party tool that can do that and supports things like resource forks?

• Can't disable ACLs

  Out XServe/OS-X 10.5.2 appears now to be having the same problem as this previous thread:
  http://discussions.apple.com/thread.jspa?messageID=6922635
  In order to avoid various SMB problems, using fsaclctl I disabled ACLs on several volumes that are on an attached XRAID. As judged by report from fsaclctl that sticks, but upon rebooting the system ACLs are back enabled.
  Does anyone know what the heck this is about? Maybe ther are some bootup settings somewhere that enables ACLs? If I want to try to defeat that by adding a script to force ACLs off at bootup time, where should I do that?
  Thanks, Graham

  Still don't know why fsaclctl disabling ACLs doesn't stick across reboots (OS-X server 10.5.2), however, in case anyone else is desperate, here's what I did to re-disable ACLs on each bootup.
  1. Create a startup launchd item:
  /Library/LaunchDaemons/xxx.yyy.disable_acls.plist:
  <?xml version="1.0" encoding="UTF-8"?>
  <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
  <plist version="1.0">
  <dict>
  <key>Label</key>
  <string>Disable ACLs</string>
  <key>ProgramArguments</key>
  <array>
  <string>/zzzStartupItemScripts/startup_disableacls.bash</string>
  </array>
  <key>KeepAlive</key>
  <false/>
  <key>RunAtLoad</key>
  <true/>
  </dict>
  </plist>
  2. Created script to invoke fsaclctl: startupdisableacls.bash
  #!/bin/bash
  # Delay to give chance for drives to mount
  sleep 60
  echo "Disable ACLs, round 1"
  fsaclctl -p /Volumes/RAID1 -d
  # sleep some more in case we were too fast
  sleep 180
  echo "Disable ACLs, round 2"
  fsaclctl -p /Volumes/RAID1 -d
  Notes:
  1. You may need to unwrap the DOCTYPE strings, depending on what this forum does to them.
  2. You can adjust where you place this script, and make the corresponding change to the plist file.
  3. Note the sleep delays in the script. Without these, launchd performs the script before the drives are mounted. According to docs, launchd does not stall while waiting (and if it did this probably wouldn't work).
  Hope that helps someone, or provokes someone else to tell me that there's a simpler way.
  Graham