Field
Permitted VPN instances
Rule
Perm
Type
Scope
Entity
Related commands
role
display role feature
Use display role feature to display features available in the system.
Syntax
display role feature [ name feature-name | verbose ]
Views
Any view
Predefined user roles
network-admin
network-operator
Description
•
deny—Denies access to any VPN except permitted VPNs.
•
permit (default)—Default VPN instance policy, which enables
the user role to access any VPN instance.
VPNs accessible to the user role.
User role rule number.
A user role rule specifies access permissions for items, including
commands, feature-specific commands, XML elements, and MIB
nodes.
Predefined user role rules are identified by sys-n, where n represents
an integer.
Access control type:
•
permit—User role has access to the specified items.
•
deny—User role does not have access to the specified items.
Controlled type:
•
R—Read-only.
•
W—Write.
•
X—Execute.
Rule control scope:
•
command—Controls access to the command or commands, as
specified in the Entity field.
•
feature—Controls access to the commands of the feature, as
specified in the Entity field.
•
feature-group—Controls access to the commands of the
features in the feature group, as specified in the Entity field.
•
xml-element—Controls access to XML elements.
•
oid—Controls access to MIB nodes.
Command string, feature name, feature group, XML element, or OID
specified in the user role rule:
•
An en dash (–) represents any feature.
•
An asterisk (*) represents zero or more characters.
49