How to Delete ACL Entries From a File (System Administration Guide, Volume 2)

System Administration Guide, Volume 2

How to Delete ACL Entries From a File

Delete ACL entries from a file by using the setfacl command.

$ setfacl -d acl_entry_list filename1 ...

`-d`	Deletes the specified ACL entries.
`acl_entry_list`	Specifies the list of ACL entries (without specifying the permissions) to delete from the file or directory. You can only delete ACL entries and default ACL entries for specific users and groups. Table 17-8 and Table 17-9 show the valid ACL entries.
`filename ...`	Specifies one or more files or directories.

Alternately, you can use the setfacl -s command to delete all the ACL entries on a file and replace them with the new ACL entries specified.

To verify that the ACL entries were deleted from the file, use the getfacl command.
$ getfacl filename

The following example deletes the user george from the ch4.doc file.

$ setfacl -d user:george ch4.doc