Table 1–1 lists the system default roles that are automatically provided by the N1 System Manager. These system default roles cannot be modified. However, you can create customized roles for your users to fit your organizational and business needs.
The following table provides a quick reference to all the tasks and associated commands used to manage roles.
Table 1–4 Managing Roles Quick Reference
Task |
Command Syntax |
---|---|
create role role privilege privilege |
|
delete role role |
|
add role role privilege privilege |
|
remove role role privilege privilege |
|
show role all |
|
show role role |
|
show user all |
|
show privilege all |
For more information about these commands, see the Sun N1 System Manager 1.1 Command Line Reference Manual.
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
Create a new role with one or more privileges.
N1-ok> create role role [description description] privilege privilege[,privilege...] |
Use the show privileges all command to list all of the valid privileges or see Table 1–2.
See create role in Sun N1 System Manager 1.1 Command Line Reference Manual for details. You can also use the add role command to later add privileges to the role.
A role cannot be deleted if it is currently added to one or more users. If you try to delete a role that is being used, an error occurs. To successfully delete a role, an authorized user must first remove the role from all users and then attempt the role deletion.
Use the show role all command to list all of the valid roles.
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
Delete a role.
N1-ok> delete role role |
See delete role in Sun N1 System Manager 1.1 Command Line Reference Manual for details.
Use the show privilege all command to list all of the valid privileges or see Table 1–2.
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
Add one or more privileges to a role.
N1-ok> add role role privilege privilege[,privilege...] |
See add role in Sun N1 System Manager 1.1 Command Line Reference Manual for details.
If you want to add most of the privileges to a role, you can use the all option to add all the privileges and then use the remove role command to remove the unneeded privileges.
Use the show role role command to list all of the privileges currently added to a role.
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
Remove one or more privileges from a role.
N1-ok> remove role role privilege privilege [,privilege...] |
See remove role in Sun N1 System Manager 1.1 Command Line Reference Manual for details.
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
List the available roles.
N1-ok> show role all |
Use the show role all command to list all of the valid roles.
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
List the privileges that are added to a role.
N1-ok> show role role |
See show role in Sun N1 System Manager 1.1 Command Line Reference Manual for details.
The following example shows that the SecurityAdmin role has five privileges added to it.
N1-ok> show role SecurityAdmin Name: SecurityAdmin Privileges: UserWrite, RoleWrite, RoleRead, PrivilegeRead, UserRead |
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
List the roles that are added to all users.
N1-ok> show user all |
Log in to the N1 System Manager.
See To Access the N1 System Manager Command Line for details.
List the available privileges.
N1-ok> show privilege all |