To delete a user-defined role, use the roleConfig
Assigning a user-defined role to a user
You can assign a user-defined role to a user using one of the following options of the userConfig
command:
•
•
•
•
The following example assigns the mysecurityrole role to the existing anewuser account and adds
the admin chassis role:
Local database user accounts
User add, change, and delete operations are subject to the subset rule: an admin with ADlist 0-10
or LFlist 1-10 cannot perform operations on an admin, user, or any role with an ADlist 11-25 or
LFlist 11-128. The user account being changed must have an ADlist or LFlist that is a subset of the
account that is making the change.
In addition to the default administrative and user accounts, Fabric OS supports up to 252
user-defined accounts in each switch (domain). These accounts expand your ability to track
account access and audit administrative activities.
Default accounts
Table 14
database. The password for all default accounts should be changed during the initial installation
and configuration for each switch.
Fabric OS Administrator's Guide
53-1002446-01
> classConfig --showroles security
Roles that have access to RBAC Class 'security' are:
Role Name
---------
User
Admin
Factory
Root
SwitchAdmin
FabricAdmin
BasicSwitchAdmin
SecurityAdmin
mysecurityrole
userConfig
add with the -r option to create a new user account and assign a role.
--
userConfig
change with the -r option to add or change a user-defined role for an existing
--
user account.
userConfig
add with the -c option to create a new user account and assign a chassis role.
--
userConfig
change with the -c options to add a chassis role to an account.
--
> userConfig --change anewuser -r mysecurityrole -c admin
lists the predefined accounts offered by Fabric OS available in the local switch user
Local database user accounts
Permissions
-----------
O
OM
OM
OM
O
OM
O
OM
O
delete command.
--
5
85