Shell Commands › Grid Control › modify_acl (Grid Control)--Replace Portion of Grid ACL

modify_acl (Grid Control)--Replace Portion of Grid ACL

Replace that portion of the grid ACL which relates to the owner or a principal.

Syntax

grid modify_acl [ <principal>=owner ] [ <principal1>=<val1> ... <principalN>=<valN> ] [ --test_only ]  

Parameters

<principal>=owner

Set the owner attribute of the grid ACL to the specified principal.

<principal>=<val>

Add or replace the specified principal in the grid ACL with access level <val>. <principal> is in the form <scope>:<type>:<name> where <scope> is local, <type> is user or group, and <name> is the user or group name. Valid access levels are: 'monitor', 'app_operator', 'app_developer', 'grid_operator', and 'grid_administrator'. If the access level is specified as 'none' the principal is removed from the grid ACL if it is present.

--test_only

Do not replace any portion of the grid ACL but rather test if the operation can succeed.

Examples

grid modify_acl local:user:admin=grid_administrator

Replace that portion of the grid ACL which relates to the local user 'admin', providing grid_administrator access level permissions to this user.

Notes

• Specified local user and group principals must exist.
• Specified global group principals must be associated to a global user who has logged in to the grid at some time in the past.
• Global scope is not yet supported for CA AppLogic for System z®.