You can use the security login commands to add an ONTAP RBAC role when your storage systems are running clustered ONTAP.
Before you create an ONTAP RBAC role for storage systems running clustered ONTAP, you must identify the following:
Configuring an RBAC role requires that you perform the following actions:
There are two levels of access for each command/command directory: all-access and read-only.
You must always assign the all-access privileges first.
To simplify configuring these roles on storage systems, you can use the RBAC User Creator for Data ONTAP tool, which is posted on the NetApp Communities Forum.
This tool automatically handles setting up the ONTAP privileges correctly. For example, RBAC User Creator for Data ONTAP tool automatically adds the privileges in the correct order so that the all-access privileges appear first. If you add the read-only privileges first and then add the all-access privileges, ONTAP marks the all-access privileges as duplicates and ignores them.
More information about setting up ONTAP RBAC roles is in the ONTAP administration information.
ONTAP 9 SAN Administration Guide