Manualshelf

Reference Guide (Supporting software release 5.5.0.0 and later) Owner manual

ManualsBrandsBrocade ManualsComputer AccessoriesMobility RFS Controller CLI
1101110211031104110511061107110811091110
1094 Brocade Mobility RFS Controller CLI Reference Guide
53-1003098-01
19
no default-role use [ip-access-list|mac-access-list]
no default-role use [ip-access-list|mac-access-list] [in|out]
<IP/MAC-ACCESS-LIST-NAME>
precedence <1-100>
no user-role <ROLE-NAME>
Parameters
no [ldap-deadperiod|ldap-query|ldap-server <1-2>|ldap-timeout]
no default-role use [ip-access-list|mac-access-list] [in|out]
<IP/MAC-ACCESS-LIST-NAME> precedence <1-100>
no user-role <ROLE-NAME>
Example
The following example shows the role policy ‘test’ setting before the ‘no’
commands are executed:
rfs7000-37FABE(config-role-policy-test)#show context
role-policy test
default-role use ip-access-list in test precedence 1
ldap-query self
ldap-timeout 1
ldap-deadperiod 100
ldap-server 1 host 192.168.13.7 bind-dn
CN=Adminstrator,CN=Users,DC=TechPub,DC=com base-dn
CN=Administrator,CN=Users,DC=com bind-password 0 superuser port 2
rfs7000-37FABE(config-role-policy-test)#
rfs7000-37FABE(config-role-policy-test)#no ldap-deadperiod
rfs7000-37FABE(config-role-policy-test)#no ldap-timeout
rfs7000-37FABE(config-role-policy-test)#no ldap-server 1
no ldap-deadperiod Resets the LDAP dead period interval to default (120 seconds)
no ldap-query Disables LDAP service on a role policy
no ldap-server <1-2> Removes the selected LDAP server settings. Specify the LDAP server ID.
no ldap-timeout Resets the LDAP timeout to default (2 seconds)
no default-role use Removes or resets default role configuration
Use – Disables the use of an IP or MAC access list
[ip-access-list|
mac-access-list]
[in|out]
Disables use of an IP access list or a MAC access list
in – Removes the rule applied to incoming packets
out – Removes the rule applied to outgoing packets
<IP/MAC-ACCESS-LIST-NAME> Specifies the IP or MAC access list to remove
<IP/MAC-ACCESS-LIST-NAME> – Specify the IP or MAC access list name.
precedence
<1-100>
The following keywords are common to the IP and MAC access list parameters:
precedence – Specifies the ACL’s precedence
<1-100> – Specify the precedence from 1 - 100.
The system removes the access list rule identified by the specified precedence.
no user-role
<ROLE-NAME>
Deletes a user-defined role
<ROLE-NAME> – Specify user-defined role name.