Skip to Content

RBAC role selection

When a session is established, a user must be assigned to an RBAC role. If a user is authorized for only one role, he or she is assigned to that role after logging into an application. If a user is authorized for multiple roles, the user can interactively select a role while logging into a BMC Server Automation client application. When using Network Shell or BLCLI, the role might be specified through an environment variable. Network Shell also provides a command called chrole, which lets you change roles after a Network Shell session is established.

When a user is authorized for multiple roles, BMC Server Automation command line applications can specify a role using a command line option or an environment variable. The following table summarizes the options available to specifying a role.

 

 ~|

Application

 ~|

Mechanisms to specify a role

 ~|

Precedence

 

 BMC Server Automation Console 

 GUI dialog box, if multiple roles are defined 

 

 BLCLI 

 interactive prompts from command line dialog box 

 

 command line option: -r <roleName> 

 Takes precedence over environment variable 

 environment variable: BL_RBAC_ROLE 

 

 Network Shell (in proxy mode) 

 interactive prompts from command line dialog box 

 

 environment variable: BL_RBAC_ROLE 

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC Server Automation 8.2