RBACRole - addAuthorizationToRoleByName

RBACRole - addAuthorizationToRoleByName

Description :

This command adds an authorization directly to a role (without using an authorization profile). Authorizations define what operations the role is allowed to perform. For example, the authorization "DeployJob.Execute" allows a role to execute Deploy Jobs.

A related command is removeAuthorizationFromRoleByName .

For a complete list of authorizations, see the BMC BladeLogic Users Guide. This command returns the name of the role to which the authorization was added.

Return type : String

Command Input :

Variable Name

Variable Type

Description

roleName

String

Name of the role to which you want to add an authorization.

authName

String

Name of the authorization to add.

Examples :

Example

The following example allows the role BLAdmins to perform all server-related operations (create, read, modify).

Script

blcli RBACRole addAuthorizationToRoleByName "BLAdmins" "Server.*"

Example

The following example allows the role BLAdmins to create and modify Audit Jobs but not to delete them.

Script

blcli RBACRole addAuthorizationToRoleByName "BLAdmins" "AuditJob.Create"

blcli RBACRole addAuthorizationToRoleByName "BLAdmins" "AuditJob.Modify"

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*