1. Maintenance Guide
  2. Using the ExaCLI Utility
  3. Creating Users for Use with ExaCLI

10.3 Creating Users for Use with ExaCLI

To use ExaCLI, users must be created on the remote node, and the users must be assigned roles that have privileges appropriate for the user.

  • Use DBMCLI or CellCLI on the remote node to create the users and roles, and grant privileges.

    Note:

    When creating a user on the cell or database node, the user password must be 8 to 40 alphanumeric characters or special characters (!@#$%^&*()-_) with at least one digit, one lowercase letter and one uppercase letter. The new password cannot be the same as the current password for the user.

Example 10-9 Create and Configure a User With All Privileges for Use with ExaCLI

Create the users and roles on the remote node using DBMCLI (for database nodes) or CellCLI (for cell nodes). These are the users that are allowed to connect to the remote node using ExaCLI. You use roles to assign privileges to users.

  • Database node example:

    The following example creates an administrator role and grants all privileges to that role. It then creates a user called dbadministratorand grants the administrator role to that user. 

    DBMCLI> CREATE ROLE administrator
DBMCLI> GRANT PRIVILEGE ALL ACTIONS ON ALL OBJECTS ALL ATTRIBUTES -
WITH ALL OPTIONS TO ROLE administrator
DBMCLI> CREATE USER dbnodeadministrator password=*
DBMCLI> GRANT ROLE administrator TO USER dbnodeadministrator

  • Cell node example:

    This following example creates an administrator role and grants all privileges to that role. It then creates a user called celladministrator and grants the administrator role to that user: 

    CellCLI> CREATE ROLE administrator
CellCLI> GRANT PRIVILEGE ALL ACTIONS ON ALL OBJECTS ALL ATTRIBUTES -
WITH ALL OPTIONS TO ROLE administrator
CellCLI> CREATE USER celladministrator password=*
CellCLI> GRANT ROLE administrator TO USER celladministrator

Example 10-10 Creating a Cell Node User for Cell Monitoring with ExaCLI

This example creates a user called cellmon who has privileges to only view object details. 

CellCLI> CREATE ROLE monitor
CellCLI> GRANT PRIVILEGE list ON ALL OBJECTS ALL ATTRIBUTES -
WITH ALL OPTIONS TO ROLE monitor
CellCLI> CREATE USER cellmon password=*
CellCLI> GRANT ROLE monitor TO USER cellmon

Example 10-11 Creating a Database Node User for Node Monitoring with ExaCLI

This example creates a user called dbnodemon that has privileges to view object details. 

DBMCLI> CREATE ROLE monitor
DBMCLI> GRANT PRIVILEGE list ON ALL OBJECTS ALL ATTRIBUTES -
WITH ALL OPTIONS TO ROLE monitor
DBMCLI> CREATE USER dbnodemon password=*
DBMCLI> GRANT ROLE monitor TO USER dbnodemon

Related Topics

Parent topic: Using the ExaCLI Utility