RBACRole - createRole
RBACRole - createRole
Description :
This commands creates a role. A handle to the newly created role is retrurned. roleName is the name of the role to be created. roleDesc is a short desciption of the role. flags sets the behavior of the role when acls are pushed to an agent. The Unix user map is the user account name to use as the Agent logon for Unix servers. The Windows user map is the user account name to use as the Agent logon for Windows servers.
flags is a bit mask. therefore the following values must be summed to get the desired behavior.
- 1 -- silenty ignore setuid and setgid bits
- 2 -- fail on mknod(2) system call
- 4 -- read only
- 8 -- read write
- 16 -- user must exist
- 32 -- reserved
- 64 -- map to user name
Return type : DBKey
Command Input :
Variable Name |
Variable Type |
Description |
---|---|---|
roleName |
String |
name of role to be created |
roleDesc |
String |
description of role to be created |
flags |
Integer |
agent acl flags |
unixUser |
String |
unix user map |
winUser |
String |
windows user map |
Example
In this example, a role is created that maps to the user name and is rw
Script
blcli RBACRole createRole Admins2 "2nd BLAdmins role" 8 unixuser winlocaluser
Comments
Log in or register to comment.