Skip to main content

security login delete

Contributors
Suggest changes

Delete a login method

Availability: This command is available to cluster administrators at the admin privilege level.

Description

The security login delete command deletes a login method.

Parameters

-vserver <vserver name> - Vserver

This optionally specifies the Vserver name of the login method.

-user-or-group-name <text> - User Name or Group Name

This specifies the user name or Active Directory, LDAP, or NIS group name of the login method that is to be deleted. A user name can be associated with multiple applications.

-application <text> - Application

This specifies the application of the login method. Possible values include amqp, console, http, ontapi, rsh, snmp, service-processor, ssh, and telnet.

-authentication-method <text> - Authentication Method

This specifies the authentication method of the login method. Possible values include the following:

  • cert - SSL certificate authentication

  • community - SNMP community strings

  • domain - Active Directory authentication

  • nsswitch - LDAP or NIS authentication

  • password - Password

  • publickey - Public-key authentication

  • usm - SNMP user security model

  • saml - SAML authentication

[-remote-switch-ipaddress <IP Address>] - Remote Switch IP Address

This specifies the IP address of the remote switch. The remote switch could be a cluster switch monitored by cluster switch health monitor (CSHM) or a Fibre Channel (FC) switch monitored by MetroCluster health monitor (MCC-HM). This parameter is applicable only when the application is snmp and authentication method is usm (SNMP user security model).

Examples

The following example illustrates how to delete a login that has the username guest , the application ssh , and the authentication method password for Vserver vs1.netapp.com :

cluster1::> security login delete -user-or-group-name guest
  -application ssh -authentication-method password -vserver vs1.netapp.com

The following example illustrates how to delete a login that has the username guest , the application ontapi , and the authentication method cert for Vserver vs1.netapp.com :

cluster1::> security login delete -user-or-group-name guest
  -application ontapi -authentication-method cert -vserver vs1.netapp.com

The following example illustrates how to delete a login that has the Active Directory group name adgroup in DOMAIN1 , the application ssh , and the authentication method domain for Vserver vs1.netapp.com :

cluster1::> security login delete -user-or-group-name DOMAIN1\adgroup
  -application ssh -authentication-method domain -vserver vs1.netapp.com

The following example illustrates how to delete a login that has a group name nssgroup in the LDAP or NIS server, the application ontapi , and the authentication method nsswitch for Vserver vs1.netapp.com :

cluster1::> security login delete -user-or-group-name nssgroup
  -application ontapi -authentication-method nsswitch -vserver vs1.netapp.com