user

Command to initiate the User mode and to use its subcommands. The User subcommands manages user accounts and user roles.

Synopsis

add_local_user -u|--user username  -r|--role role[,role2,..,rolen]
configureds
delete_local_user -u|--user username
get_directory_servers [-d|--details]
get_ds_users -d|--directory directory_server  [-r|--roles role[,role2,..,rolen]]
grant_local_role -u|--user username  -r|--role role[,role2,..,rolen]
remove_directory_service -d|--directory directory_server
replicate_user_roles -u|--user username -r|--role username
revoke_local_role -u|--user username -r|--role role[,role2,..,rolen]
show_all_local_roles
show_local_users [-r|--roles role[,role2,..,rolen]]
show_local_user_roles -u|--user username
sync_all_ds_users -d|--directory directory_server
sync_ds_user -d|--directory directory_server -u|--user username

Description

The User mode is one of a set of modes provided by the Enterprise Manager Ops Center. Use User subcommands to create a local and remote user accounts, to add, change, or delete the roles for a user account, and to delete a user account. The local user accounts are managed by the Enterprise Controller; remote user accounts are managed by a directory server.

Type the user command at the command line prompt to enter User mode. Type the end command to stop the mode and to return to the command line prompt.

Subcommands

add_local_user -u|--user username -r|--role role[,role2,..,rolen]

Registers a user account that exists on the Enterprise Controller's host system as an Oracle Enterprise Manager Ops Center user account with the specified role.

configureds

Starts a submode that defines a new directory server or modifies an existing directory server. Use the commit subcommand to complete the definition of the directory server and return to User mode.

set name=directory_server.
set hostname=hostname.
set use_ssl=[false|true]. Default is false.
set port=portID.
set root_suffix=suffix.
set user=credential.
set password=credential.
set user_dn=user_dn.
set user_scope=scope to define the search path through the hierarchy. A scope can be base, one, sub.
set search_filter=filter to the criteria for the search.
unset [name|hostname|use_ssl|port|password|root_suffix|user_dn|user_scope|search_filter].
reset to restore the values of the properties without changes.
show to show the current values for each property.

delete_local_user -u|--user username

Removes the user account.

get_directory_servers [-d|--details]

Displays a list of directory servers and their identifiers.

get_ds_users -d|--directory directory_server [-r|--roles role[,role2,..,rolen]]

Displays a list of user accounts managed by the specified directory server. You can restrict the list to user accounts with the specified role. Use the get_directory_servers subcommand to see available directory servers.

grant_local_role -u|--user username -r|--role role[,role2,..,rolen]

Adds the specified roles to the specified user account.

remove_directory_service -d|--directory directory_server

Removes the specified directory server's access to the Enterprise Controller's cache. The user accounts in the directory server do not have access to Oracle Enterprise Manager Ops Center.

replicate_user_roles -u|--user username -r|--role username

Copies the roles of the specified user account to the target or recipient user account.

revoke_local_role -u|--user username -r|--role role[,role2,..,rolen]

Removes the specified roles from the user account.

show_all_local_roles

Displays a list of role types that are available in the Enterprise Controller.

show_local_users [-r|--roles role[,role2,..,rolen]]

Displays a list of user accounts that are registered in the Enterprise Controller. You can restrict the list to user accounts with the specified role.

show_local_user_roles -u|--user username

Displays the roles assigned to the specified user account.

sync_all_ds_users -d|--directory directory_server

Synchronizes the information about user accounts on the specified directory server with the cache in the Enterprise Controller.

sync_ds_user -d|--directory directory_server -u|--user username

Synchronizes the information the specified user account on the specified directory server with the cache in the Enterprise Controller.

Options

-d

With the get_ds_users, remove_directory_service, sync_all_ds_users, and sync_ds_user commands, this option specifies the name of a directory server. The option can also be invoked as --directory.
With the get_directory_servers command, this option includes detailed information. The option can also be invoked as --details.

-r

With the add_local_user, grant_local_role, revoke_local_role, get_ds_users, and show_local_users commands, this option specifies the level of access and control that the user account has, according to the following roles:

ASSET_ADMIN
CLOUD_ADMIN
CLOUD_USER
FAULT_ADMIN
NETWORK_ADMIN
OPS_CENTER_ADMIN
PROFILE_PLAN_ADMIN
READ
REPORT_ADMIN
ROLE_ADMIN
SECURITY_ADMIN
SERVER_DEPLOYMENT_ADMIN
STORAGE_ADMIN
SUPERCLUSTER_ADMIN
UPDATE_ADMIN
UPDATE_SIM_ADMIN
USER_ADMIN
VIRT_ADMIN

The option can also be invoked as --role with the add_local_user, grant_local_role, revoke_local_role commands, or as --roles with the get_ds_users, and show_local_users commands.
With the replicate_user_roles command, this option specifies a target or recipient user account. The option can also be invoked as --role.

-u|--user

Specifies the account name.

Operands

directory_server: Name of the directory server that provides remote user accounts to Oracle Enterprise Manager Ops Center.
role[,role2,...,rolen: Identifier for a type of access and control.
username: Name of the account.