docs: Update doc to use absolute path for 'dedicated keytab file'

[sfrench/samba-autobuild/.git] / docs-xml / manpages / vfs_acl_tdb.8.xml

diff --git a/docs-xml/manpages/vfs_acl_tdb.8.xml b/docs-xml/manpages/vfs_acl_tdb.8.xml
index 9ec1355b046d323596e2f3e88a3a3cf3e9012547..2510f0804a17d3ec79b3bb1d0e15075e4b9900b6 100644 (file)
--- a/docs-xml/manpages/vfs_acl_tdb.8.xml
+++ b/docs-xml/manpages/vfs_acl_tdb.8.xml
@@ -7,7 +7,7 @@
        <manvolnum>8</manvolnum>
        <refmiscinfo class="source">Samba</refmiscinfo>
        <refmiscinfo class="manual">System Administration tools</refmiscinfo>
-       <refmiscinfo class="version">4.1</refmiscinfo>
+       <refmiscinfo class="version">4.6</refmiscinfo>
 </refmeta>
 
 
@@ -40,6 +40,15 @@
        <filename>$LOCKDIR/file_ntacls.tdb</filename>.
        </para>
 
+       <para>
+       This module forces the following parameters:
+       <itemizedlist>
+       <listitem><para>inherit acls = true</para></listitem>
+       <listitem><para>dos filemode = true</para></listitem>
+       <listitem><para>force unknown acl user = true</para></listitem>
+       </itemizedlist>
+       </para>
+
        <para>This module is stackable.</para>
 </refsect1>
 
@@ -61,6 +70,46 @@
                access the data via Samba you might set this to yes to achieve
                better NT ACL compatibility.
                </para>
+
+               <para>
+               If <emphasis>acl_tdb:ignore system acls</emphasis>
+               is set to <emphasis>yes</emphasis>, the following
+               additional settings will be enforced:
+               <itemizedlist>
+               <listitem><para>create mask = 0666</para></listitem>
+               <listitem><para>directory mask = 0777</para></listitem>
+               <listitem><para>map archive = no</para></listitem>
+               <listitem><para>map hidden = no</para></listitem>
+               <listitem><para>map readonly = no</para></listitem>
+               <listitem><para>map system = no</para></listitem>
+               <listitem><para>store dos attributes = yes</para></listitem>
+               </itemizedlist>
+               </para>
+               </listitem>
+               </varlistentry>
+
+               <varlistentry>
+               <term>acl_tdb:default acl style = [posix|windows]</term>
+               <listitem>
+               <para>
+               This parameter determines the type of ACL that is synthesized in
+               case a file or directory lacks an
+               <emphasis>security.NTACL</emphasis> xattr.
+               </para>
+               <para>
+               When set to <emphasis>posix</emphasis>, an ACL will be
+               synthesized based on the POSIX mode permissions for user, group
+               and others, with an additional ACE for <emphasis>NT
+               Authority\SYSTEM</emphasis> will full rights.
+               </para>
+               <para>
+               When set to <emphasis>windows</emphasis>, an ACL is synthesized
+               the same way Windows does it, only including permissions for the
+               owner and <emphasis>NT Authority\SYSTEM</emphasis>.
+               </para>
+               <para>
+               The default for this option is <emphasis>posix</emphasis>.
+               </para>
                </listitem>
                </varlistentry>
        </variablelist>