application commands
security login role modify
Suggest changes
-
PDF of this doc site
Collection of separate PDF docs
Creating your file...
Modify an access control role
Availability: This command is available to cluster administrators at the admin privilege level.
Description
The security login role modify command modifies an access-control role.
Parameters
-vserver <vserver name>- Vserver-
This optionally specifies the Vserver name associated with the role.
-role <text>- Role Name-
This specifies the role that is to be modified.
-cmddirname <text>- Command / Directory-
This specifies the command or command directory to which the role has access. To specify the default setting for a role, use the special value
"DEFAULT". This value can be modified only for the roles created for the admin Vserver. [-access {none|readonly|read_create|read_modify|read_create_modify|all}]- Access Level-
This optionally specifies a new access level for the role. Possible access level settings are none, readonly, and all. The default setting is
all. [-query <query>]- Query-
This optionally specifies the object that the role is allowed to access. The query object must be applicable to the command or directory name specified by -cmddirname. The query object must be enclosed in double quotation marks (""), and it must be a valid field name.
Examples
The following command modifies an access-control role with the role name readonly and the command access "volume" to have the access level readonly for Vserver vs.example.com:
cluster1::> security login role modify -role readonly -cmddirname volume -access readonly -vserver vs.example.com