Removing users and groups from default roles using the wsadmin tool

Users or groups that are in any of the default roles have the authorization permissions for that role for all the local service integration bus destinations that are allowed to inherit defaults. To remove a user or group's default authorization permissions, use these commands to remove them from the default role or roles to which they belong.

To run these commands, use the AdminTask object of the wsadmin scripting client. Each command acts on multiple objects in one operation. The commands are provided to allow you to make the most commonly-required types of update in a consistent manner, where modifying the underlying objects directly would be error-prone.

[iSeries] The wsadmin scripting client is run from Qshell. For more information, see the topic "Configure Qshell to run WebSphere® Application Server scripts".

[iSeries] These commands are only valid when used with WebSphere Application Server Version 6 and later application servers. Do not use them with earlier versions.

[iSeries] Command-line help is provided for service integration bus commands:

Commands

Removing a user
To remove a user from a default role, use the following command:
$AdminTask removeUserFromDefaultRole {-bus busName -role roleName -user userName}
Removing a group
To remove a group from a default role, use the following command in wsadmin :
$AdminTask removeGroupFromDefaultRole {-bus busName -role roleName -group groupName}
After using these commands, save your changes to the master configuration; for example, by using the following command:
 $AdminConfig save



Related tasks
Administering default roles through the command line
Reference topic Reference topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Aug 31, 2013 1:23:07 AM CDT
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=pix&product=was-nd-dist&topic=rjr_default_roles_delete
File name: rjr_default_roles_delete.html