Skip to main content

security multi-admin-verify rule show

Contributors
Suggest changes

Display rules

Availability: This command is available to cluster and Vserver administrators at the admin privilege level.

Description

The security multi-admin-verify rule show command displays information about multi admin verification rules.

Parameters

{ [-fields <fieldname>,…​]

If you specify the -fields <fieldname>, …​ parameter, the command output also includes the specified field or fields. You can use '-fields ?' to display the fields to specify.

| [-instance ] }

If you specify the -instance parameter, the command displays detailed information about all fields.

[-vserver <vserver>] - Vserver

This specifies the Vserver information to which the rule is associated with. This is an optional parameter. This parameter defaults to a Cluster server and supports only Cluster servers.

[-operation <text>] - Operation

This specifies the ONTAP operation information for which the rule is created.

[-auto-request-create {true|false}] - Automatic Request Creation

This specifies the information of the auto request create state for the rule.

[-query <query>] - Query

This specifies the query information which is applied to the subset of objects of ONTAP operation of the rule.

[-required-approvers {<integer>|-}] - Required Number of Approvers

This specifies the number of approvers that are required to approve the ONTAP execution request.

[-approval-groups <text>,…​] - Approval Groups

This specifies the list of approval groups that lists the users who can approve the ONTAP execution request.

[-execution-expiry <[<integer>d][<integer>h][<integer>m][<integer>s]>] - Execution Expiry

This specifies the amount of time that the authorized users have after a request is approved to execute the requested operation before the request expires.

[-approval-expiry <[<integer>d][<integer>h][<integer>m][<integer>s]>] - Approval Expiry

This is the amount of time that the approvers have after a new execution request is submitted to approve or disapprove the request before the request expires.

[-time-created <MM/DD/YYYY HH:MM:SS>] - Time Created

This specifies the time at which the rule is created.

[-system-defined {true|false}] - Is System Defined

Displays the value true if rule is defined by the system. Displays the value false if rule is defined by the user.

Examples

The following example displays typical rule information:

cluster1::> security multi-admin-verify rule show
                                                           Required  Approval
    Vserver     Operation                                  Approvers Groups
    ----------- ------------------------------------------ --------- -------------
    cluster1
                security login password                    1         -
                  Query: -multi-admin-approver true -different-user true
                security multi-admin-verify approval-group create
                                                           1         -
                security multi-admin-verify approval-group delete
                                                           1         -
                security multi-admin-verify approval-group modify
                                                           1         -
                security multi-admin-verify approval-group replace
                                                           1         -
                security multi-admin-verify modify         1         -
                security multi-admin-verify rule create    1         -
                security multi-admin-verify rule delete    1         -
                security multi-admin-verify rule modify    1         -
                volume delete                              3         -
                  Query: -vserver vs0
    10 entries were displayed.