Previous Topic: Role Definition GeneratorNext Topic: Account Screen Creation Example

Connector GuidesConnector Xpress GuideCreating ConnectorsHow you Generate User Console Account ScreensRole Definition Generator Command

Role Definition Generator Command

Valid on Windows and UNIX

The Role Definition Generator command parses the endpoint type metadata generated from Connector Xpress and generates endpoint type.jar. This JAR file contains the JIAM mapping files, framework, managed object definition files, resource bundle file and task role and screen definition file.

This command has the following format on Windows:

RoleDefGenerator.bat [-c jar_path] [d domain] -e fqn  -h hostname -l -m filename -o directory -n -p port -u username -s -y password_file.txt ] [endpoint_type ...]

This command has the following format on UNIX:

RoleDefGenerator.sh  [-c jar_path] [d domain] -e fqn  -h hostname -l -m filename -o directory -n -p port -u username -s -y password_file.txt ] [endpoint_type ...]
-c jar_path

Specifies that JAR is added to the classpath when using a JIAM extension JAR file.

Note: Optional, but if used, must be specified first.

-d domain

Specifies the CA IdentityMinder domain. If not specified, the role definition generator defaults to the CA IdentityMinder domain.

-e fqn

Defines the fully qualified name of the JIAM option descriptor class that matches the metadata being used. Must be used in conjunction with the -m option. The JIAM extension jar that contains this endpoint type must be available in the classpath.

-h hostname

Defines the host name of Provisioning Server.

-l

Specifies that the Role Definition Generator lists endpoint types, but does not generate role definitions.

-m filename

Specifies that the metadata specified in this file is used to generate role definitions.

-o directory

Defines the output directory.

Default: '.' that is, the current working directory.

-n

If specified, TLS is not used. TLS communication is enabled by default.

-p port

Specifies the Provisioning Server port number. If not specified, then 20390 is used, or 20389 is used if –n is specified.

-u username

Defines the Provisioning Server admin user name.

-s

Run in Standalone CA IAM CS mode.

-y password_file.txt

Specifies the file that contains the Provisioning Server admin user password. If not specified, the utility prompts you for the password. The password file is in UTF-8 format. The first line of the file is used as the password.

endpoint_type

Defines the name of the endpoint type (long form).

Example: List all endpoint types on a Provisioning Server

This example lists all endpoint types on a Provisioning Server:

RoleDefGenerator.bat -d EXAMPLEDOMAIN -h im.example.com -u adminusername -l

Example: Generate role definitions for a dynamic endpoint type

This example generates role definitions for YourDynamicEndpointType.

RoleDefGenerator.bat -d EXAMPLEDOMAIN -h im.example.com -u adminusername YourDynamicEndpointType