How to Delete ACL Entries From a File (System Administration Guide: Security Services)

System Administration Guide: Security Services

How to Delete ACL Entries From a File

Delete ACL entries from a file by using the setfacl command.

% setfacl -d acl-entry-list filename ...

`-d`	Deletes the specified ACL entries.
`acl-entry-list`	Specifies the list of ACL entries (without specifying the permissions) to delete from the file or directory. You can only delete ACL entries and default ACL entries for specific users and groups. Table 4–8 and Table 4–9 show the valid ACL entries.
`filename ...`	Specifies one or more files or directories, separated by a space.

Alternately, you can use setfacl -s to delete all the ACL entries on a file and replace them with the new ACL entries that are specified.

To verify that the ACL entries were deleted from the file, by using the getfacl command.
% getfacl filename

In the following example, the user george is deleted from the ch4.doc file.

% setfacl -d user:george ch4.doc