[Samba] Samba and NFSv4 ACLs

[miguel medalha]

Hello

In the Samba Wiki page "https://wiki.samba.org/index.php/NFS4_ACL_overview"
we can read the following:

"If you use the Samba vfs module acl_xattr, you can use the full Windows ACL
features but you will not be able to manage the ACLs on the OS of the Samba
host directly and you will not have the permissions enforced by the
filesystem. Samba is doing permission management in userspace if you use
acl_xattr. As a result of that you will not be able to share the files
differently than via Samba because you have no (or partly) permissions on
the files in the filesystem itself. (...) With the introduction of NFS4 (and
later on NFSv4.1) a new ACL system was introduced and standardized, which is
essentially a clone of the Windows ACL system."

Samba provides the "nfs4acl_xattr" vfs module precisely for that.

I am now in the process of completely upgrading the file and AD servers on
my network, hardware and OS included. I thought that it would be a good
opportunity to switch from "acl_xattr" to "nfs4acl_xattr" in order to "
manage the ACLs on the OS of the Samba host directly", as described above.
This would greatly improve server management, mainly because it would be
much easier to create or modify ACLs through Bash scripting.

- Does anyone here have experience in such a scenario?
- What would the drawbacks, if any, be?
- Since on DCs "acl_xattr" is enabled by default, would "nfs4acl_xattr"
provide all the needed functionality instead?
- Does anyone here have some experience with the use of NFSv4 on ZFS
filesystems?

Thank you.