Neoview User Management and Security Administration Guide (R2.5)

ManualsBrandsHP ManualsSoftwareHP Neoview Release 2.5 Software

111

112

113

114

115

116

117

118

119

120

• The user executing the command is logged on in a role other than ROLE.MGR.

• The specified user does not exist on the Neoview plaform.

• The specified role does not exist on the Neoview platform.

• The user already has this role.

Example

GRANT ROLE ROLE.DBA, USER BettyBradford, PRIMARY N;

REVOKE ROLE Command (database users)

The REVOKE ROLE command revokes a role from an existing user. If you revoke the user's default

role and the user has no secondary roles, the user is deleted from the Neoview platform.

Whereas only a user who has the role ROLE.SECMGR can grant that role to another user, a user

who has the role ROLE.MGR can revoke the role ROLE.SECMGR from another user.

Syntax

[.SEC] REVOKE ROLE [rolename], USER [username]

Parameters

rolename

The role to be revoked from this user. A string consisting of the prefix “ROLE.” followed by

1 to 8 alphanumeric characters, the first of which may not be a number. Alphabetic characters

are case-insensitive.

username

The name of an existing database user. The name can consist of up to 128 characters.

Error Conditions

If the command is successful, a message is displayed indicating that the role was revoked. The

command returns an error in any of the following cases:

• The user executing the command is logged on in a role other than ROLE.MGR.

• The role parameter does not specify an existing role.

• The user does not have the specified role.

• You attempted to revoke the user's default role, and the user has secondary roles.

Example

REVOKE ROLE ROLE.DBA, USER BettyBradford

SETDEFAULT ROLE Command (database users)

The SETDEFAULT ROLE command designates a role as the user's default role. The specified role

must be one of the user's existing secondary roles. The user's current default role becomes a

secondary role.

A user can change his or her own default role, or an administrator with the role ROLE.MGR can

set the default role for any user.

Syntax

[.SEC] SETDEFAULT ROLE [rolename], USER [user]

User Management Commands 119