It seems the problem was with the space in the role name "T2 Role". I changed the name to T2 and everything seems to work fine. Completing final testing now.
If the role name has a space in it, when you push acls that should get replaced w/ a %20 or whatever the acsii code for space is.
We are running 8.5.01.231 and that does not seem to be the case. I just setup another test scenario to confirm. Below is an excerpt from the users file after creating a role called “Copy of BLAdmins”.
Copy of BLAdmins ACLs
Copy of BLAdmins:BLAdmin rw,map=adminuser,tcptunnel
ok, did the 'T2 Role' have any trailing spaces after 'Role' ? not sure what else would cause the problem.