Use these commands in wsadmin to remove authorization data for
the default roles, or for a destination or a foreign bus.
Why and when to perform this task
- Removing all authorization data for the defaults
- To delete all authorization data for the defaults, use the following command
in wsadmin:
$AdminTask removeDefaultRoles
{-bus busname}
- Removing all authorization data for a destination
- To delete all authorization data for a destination, use the following
command in wsadmin:
$AdminTask removeDestinationRoles
{-type destinationType
-bus busname
-foreignBus foreignBusName
-destination destinationName}
Notes: - This command deletes all authorization data for the specified destination.
If the destination is a topic space, the command removes all authorization
data for the virtual root and for the topics within the topic space, as well
as for the topic space itself.
- You could use this command if you are deleting the destination and want
to remove all associated authorization permissions. You could also use this
command if you want to block all access to a destination by removing all authorization
permissions for it. In this second case a user might still be able to access
the destination if they have been granted default authorization permissions.
If you have specified default authorization permissions and you want to block
all access to the destination, you must stop the destination inheriting the
default permissions by using the command setInheritDefaultsForDestinations (see Defining destination defaults inheritance). You should use
the removeDestinationRoles command first, followed by the setInheritDefaultsForDestinations command.
- Removing all authorization data for a foreign bus
- To delete all authorization data for the specified foreign bus, use the
following command in wsadmin:
$AdminTask removeForeignBusRoles
{-bus busname
-foreignBus foreignBusName}
After using these commands, save your changes to the master
configuration; for example, by using the following command in wsadmin:
$AdminConfig save