Lab
A Cloud Guru

Working with Linux File Access Control Lists (FACLs)

In this lab, we'll review what file access lists (FACLs) are used for. We'll set up a FACL to restrict access to a single file. We'll implement one rule to permit access for a single user, and then we'll edit permissions to remove access for all other users.

Try for free Contact sales

Path Info

Level

Beginner

Duration

30m

Published

Apr 15, 2019

Challenge

Create user account `pjohnson` and the project directory and file.
1. Create the user account pjohnson with the following command:
```
sudo useradd pjohnson  
```
2. Create the project directory with the following command:
```
sudo mkdir /project51  
```
3. Create the TPSreport.txt file in the /project51 directory with the following command:
```
sudo touch /project51/TPSreport.txt 
```
Challenge

Create FACL to permit user `pjohnson` access to file `TPSreprot.txt`.
1. Create a FACL for /project51/TPSreport.txt permitting user pjohnson RWX access:
```
sudo setfacl -m u:pjohnson:rwx /project51/TPSreport.txt
```
Challenge

Remove access for other users from the file `/project51/TPSreport.txt`.
1. To remove other users' access, use the following command:
```
sudo chmod o-rwx /project51/TPSreport.txt
```

Author

A Cloud Guru

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.