Previous Topic: Role Definition Generator

Next Topic: Account Screen Creation Example

Role Definition Generator Command

Valid on Windows and UNIX

The Role Definition Generator command parses the endpoint type metadata generated from Connector Xpress and generates the following file:

(Windows) RoleDefGenerator.bat [-c jar_path] [d domain] -e fqn -h hostname -l -m filename -o directory -n -p port -u username -s -y password_file.txt ] [endpoint_type ...]

(UNIX) RoleDefGenerator.sh [-c jar_path] [d domain] -e fqn -h hostname -l -m filename -o directory -n -p port -u username -s -y password_file.txt ] [endpoint_type ...]

-c jar_path

Specifies that JAR is added to the classpath when using a JIAM extension JAR file.

Note: Optional, but if used, must be specified first.

-d domain

Specifies the CA Identity Manager domain. If not specified, the role definition generator defaults to the CA Identity Manager domain.

-e fqn

Defines the fully qualified name of the JIAM option descriptor class that matches the metadata being used. Must be used in conjunction with the -m option. The JIAM extension jar that contains this endpoint type must be available in the classpath.

-h hostname

Defines the host name of Provisioning Server.

-l

Specifies that the Role Definition Generator lists endpoint types, but does not generate role definitions.

-m filename

Specifies that the metadata specified in this file is used to generate role definitions.

-o directory

Defines the output directory.

Default: '.' that is, the current working directory.

-n

If specified, TLS is not used. TLS communication is enabled by default.

-p port

Specifies the Provisioning Server port number. If not specified, then 20390 is used, or 20389 is used if –n is specified.

-u username

Defines the Provisioning Server admin user name.

-s

Run in Standalone Java Connector Server mode.

-y password_file.txt

Specifies the file that contains the Provisioning Server admin user password. If not specified, the utility prompts you for the password. The password file is in UTF-8 format. The first line of the file is used as the password.

Endpoint_type

Defines the name of the endpoint type (long form).

Example: List all endpoint types on a Provisioning Server

This example lists all endpoint types on a Provisioning Server:

RoleDefGenerator.bat -d EXAMPLEDOMAIN -h im.example.com -u adminusername -l

Example: Generate role definitions for a dynamic endpoint type

This example generates role definitions for YourDynamicEndpointType.

RoleDefGenerator.bat -d EXAMPLEDOMAIN -h im.example.com -u adminusername YourDynamicEndpointType