Client is at CARS 2306.  Access via ACL is set up on 2 systems identically. It is working on 1 system but not another.

On the non working system, a getfacl of one of the files shows this:

#file:  ober21.20230715.805114.log.001
#owner: IZUSVR
#group: IZUADMIN
user::rw-
group::r--
other::---
user:SDFUSER:r--
group:IZULOGS:r--

The TGR rule:
$KEY(IZULOGS) TYPE(TGR)
 UID(0792TPM*****ACIC) ALLOW

On the working system:

#file:  ober21.20230715.331701.log.001
#owner: IZUSVR
#group: IZUADMIN
user::rw-
group::r--
other::---
group:IZULOGS:r--

The TGR rule:

$KEY(IZULOGS) TYPE(TGR)
 UID(0792TPM******CIC) ALLOW

NOTE: The TGR rule on the non working system has an extra "A" in the UID string, but the same user is allowed access.

Following is seen in output of SHOW UNIXOPTS from the TSO ACF prompt:

"HFS SECURITY ACTIVE: NO  "

"HFSACL ACTIVE: YES "

Release : 16.0

unknown

Root cause unknown. After reallocation of the zFS dataset and ACLs were setup again, GETFACL shows correct output on both systems.