VSC 、 VASA 、および SRA 7.0 ONTAP RBAC の設定
に適用されます
- Virtual Storage Console
- VMware
回答
この KB では、 VSC 、 VASA 、 SRA 7.0 を VMware 環境で適切に機能させるために必要な ONTAP コマンドとロールの作成について詳しく説明します。
VSC 、 VASA 、および SRA 7.0 ONTAP RBAC の設定
VSC 、 VASA 、 SRA 7.0 以降、これらのアプリケーションは、 NetApp ユニファイドアプライアンスと呼ばれる仮想アプライアンスを共有するようになりました。
サポートさ[1]れる構成の最新情報については、 Interoperability Matrix Tool ( IMT )を参照してください。
vCenter と ONTAP の両方でロールベースアクセスコントロール( RBAC )を使用すると、ユーザが持つアクセス権限を制御してアクセスを実行できます。
この KB では、 ONTAP に必要なコマンドと機能について説明します。
VMware vCenter Server RBAC :
適切な SRM RBAC を使用するための vCenter ユーザーの設定については、 VMware Site Recovery Manager 6.1 Documentation Center を参照してください。
VSC および VASA は、必要な vCenter RBAC 機能をインストールします。詳細については、『 Virtual Storage Console 、 VASA Provider 、 Storage Replication Adapter for VMware vSphere - Deployment and Setup Guide for 7.0 Release 』の「 vCenter Server Role-Based Access Control Features in VSC for VMware vSphere 」を参照してください。
ONTAP RBAC の注意
: VSC 7.0 は、クラスタレベルまたは SVM レベル(「 DRect connected SVM 」とも呼ばれる)で ONTAP にアクセスできます。
SRA 7.0 は、クラスタレベルまたは SVM レベルのいずれかで ONTAP にアクセスできます。
クラスタレベルでストレージを追加する場合、 admin アカウントは SRA が必要とするすべての機能を提供します。ただし、 SRA 4.0 を SVM に直接接続してストレージを追加する場合は、 vsadmin に必要なアクションを実行するために必要なロールと機能がすべて備わっているわけではないことに注意してください。
VASA 7.0 は、クラスタレベルでのみ ONTAP にアクセスできます。つまり、 VASA が特定のストレージコントローラに必要な場合は、 VSC や SRA を使用している場合でも、 SVM を直接追加するのではなく、 VSC にクラスタレベルで追加する必要があります。
このセクションでは、 ONTAP の必要な機能をすべて示し、ユーザ作成を容易にするためのコマンドについて説明します。
新しいユーザを作成し、 cluster/SVM を VSC 、 VASA 、 SRA に接続するためのワークフローを次に示します。
-
ONTAP で、必要なコマンドを使用して適切なロールを作成します
-
ONTAP で、ロールと適切なアプリケーションセットを割り当てたユーザを作成します
VSC 、 VASA 、 SRA に推奨される ONTAP RBAC の役割は次のとおりです。ONTAP では、ユーザごとに割り当てることができる ONTAP ロールは 1 つだけです。つまり、 VSC でこれらのロールを複数実行できる必要がある場合は、次に示すすべての機能を、 VSC のストレージコントローラまたは SVM クレデンシャルに使用されているユーザに割り当てる必要があります。
注[2]: RBAC User Creator for Data ONTAP ツールは、 NetApp サポートサイトの ToolChest で入手でき、 ONTAP RBAC の役割の設定に役立ちます。
VSC ロール(クラスタまたは SVM レベル)
-
検出:このロールでは、接続されているすべてのストレージコントローラを検出できます。
-
ストレージの作成:このロールでは、ボリュームと LUN (論理ユニット番号)を作成できます。
-
ストレージの変更:このロールでは、ストレージのサイズ変更と重複排除を実行できます。
-
ストレージの破棄:この役割では、ボリュームと LUN を破棄できます
VASA ロール(クラスタレベルのみ):
-
ポリシーベースの管理:このロールでは、ストレージ機能を使用してストレージをポリシーベースで管理できます。
SRA ロール(クラスタまたは SVM レベル):
-
SRA NAS/SAN ロール:このロールでは、 NAS または SAN で接続されているすべてのストレージコントローラを VMware SRM 環境でのみ検出できます。
クラスタレベルと SVM レベルの両方でロールを作成する必要はありません。役割は、アクセスが必要な場所(クラスタまたは SVM など)に作成する必要があります。
ONTAP コマンドアクセスが必要です
検出ロール( VSC )
クラスタレベル:
「 all 」レベルの ONTAP アクセス(クラスタ)を必要とするコマンド:
-
network interface migrate -
security login role show-user-capability -
set -
storage failover show -
system node run -
volume efficiency stat -
job
「 adonly 」レベルの ONTAP アクセス(クラスタ)を必要とするコマンド:
-
cluster identity show -
cluster peer show -
cluster show -
lun geometry -
lun igroup show -
lun show -
network fcp adapter show -
network interface show -
network port show -
security login role show-ontapi -
security login role show -
security login show -
snapmirror show -
storage aggregate show -
storage disk show -
system health alert show -
system health status show -
system license show -
system node run -
system node show -
version -
volume efficiency show -
volume qtree show -
volume quota report -
volume quota show -
volume show -
vserver export-policy rule show -
vserver export-policy show -
vserver fcp initiator show -
vserver fcp interface show -
vserver fcp show -
vserver iscsi show -
vserver nfs show -
vserver nfs status -
vserver show -
lun mapping show -
snapmirror list-destinations
SVM レベル:
「 all 」レベルの ONTAP アクセス( SVM )を必要とするコマンド:
-
security login role show-user-capability -
set -
event generate-autosupport-log -
volume efficiency stat -
snapmirror show -
job
「 adonly 」レベルの ONTAP アクセス( SVM )を必要とするコマンド:
-
lun geometry -
lun igroup show -
lun show -
network interface -
version -
volume efficiency show -
volume qtree show -
volume quota report -
volume quota show -
volume show -
vserver export-policy rule show -
vserver export-policy show -
vserver fcp initiator show -
vserver fcp interface show -
vserver fcp show -
vserver iscsi show -
vserver nfs show -
vserver nfs status -
vserver -
lun mapping show -
snapmirror list-destinations
ストレージロール( VSC )の作成
クラスタレベル
「 all 」レベルの ONTAP アクセスを必要とするコマンド(クラスタ):
-
lun comment -
lun create -
lun igroup add -
lun igroup create -
lun igroup set -
lun igroup show -
lun modify -
lun move -
lun online -
snapmirror update-ls-set -
system node autosupport invoke -
volume autosize -
volume clone create -
volume create -
volume efficiency on -
volume efficiency show -
volume efficiency start -
volume efficiency stop -
volume modify -
volume restrict -
volume snapshot create -
volume snapshot delete -
volume unmount -
vserver export-policy rule create -
vserver export-policy rule setindex -
vserver iscsi interface accesslist add -
vserver nfs status -
vserver services name-service unix-group -
vserver services name-service unix-user -
lun mapping create -
lun mapping delete -
qos policy-group create
「 adonly 」レベルの ONTAP アクセス(クラスタ)を必要とするコマンド:
-
job show-completed -
snapmirror show -
volume snapshot show -
vserver fcp initiator show -
vserver iscsi connection show -
vserver iscsi interface show -
vserver iscsi session show -
snapmirror list-destinations
SVM レベル
「 all 」レベルの ONTAP アクセス( SVM )を必要とするコマンド:
-
lun comment -
lun create -
lun igroup add -
lun igroup create -
lun igroup set -
lun igroup show -
lun modify -
lun move cancel -
lun move modify -
lun move pause -
lun move recover-source -
lun move resume -
lun move show -
lun move show-by-job-info -
lun move start -
lun online -
volume autosize -
volume clone create -
volume create -
volume efficiency on -
volume efficiency show -
volume efficiency start -
volume efficiency stop -
volume modify -
volume restrict -
volume snapshot create -
volume snapshot delete -
volume unmount -
vserver export-policy rule create -
vserver export-policy rule setindex -
vserver iscsi interface accesslist add -
vserver nfs status -
snapmirror abort -
snapmirror break -
snapmirror check -
snapmirror create -
snapmirror delete -
snapmirror get-volume-status -
snapmirror initialize -
snapmirror list-destinations -
snapmirror modify -
snapmirror quiesce -
snapmirror release -
snapmirror restore -
snapmirror resume -
snapmirror resync -
snapmirror show -
snapmirror update -
snapmirror policy add-rule -
snapmirror policy create -
snapmirror policy delete -
snapmirror policy modify -
snapmirror policy modify-rule -
snapmirror policy remove-rule -
snapmirror policy show -
snapmirror snapshot-owner create -
snapmirror snapshot-owner delete -
snapmirror snapshot-owner show -
snapmirror update-ls-set -
lun mapping create -
lun mapping delete -
vserver services name-service unix-group adduser -
vserver services name-service unix-group addusers -
vserver services name-service unix-group create -
vserver services name-service unix-group delete -
vserver services name-service unix-group deluser -
vserver services name-service unix-group load-from-uri -
vserver services name-service unix-group modify -
vserver services name-service unix-group show -
vserver services name-service unix-group file show -
vserver services name-service unix-group file status -
vserver services name-service unix-group file-only modify -
vserver services name-service unix-group file-only show -
vserver services name-service unix-user create -
vserver services name-service unix-user delete -
vserver services name-service unix-user load-from-uri -
vserver services name-service unix-user modify -
vserver services name-service unix-user show -
vserver services name-service unix-user file show -
vserver services name-service unix-user file status -
vserver services name-service unix-user file-only modify -
vserver services name-service unix-user file-only show
「 adonly 」レベルの ONTAP アクセス( SVM )を必要とするコマンド:
-
job show-completed -
volume snapshot show -
vserver fcp initiator show -
vserver iscsi connection show -
vserver iscsi interface show -
vserver iscsi session show -
lun mapping show
ストレージロールの変更( VSC )
クラスタレベル:
「 all 」レベルの ONTAP アクセス(クラスタ)を必要とするコマンド:
-
lun resize -
volume efficiency off -
volume file show-disk-usage -
volume size
SVM レベル:
「 all 」レベルの ONTAP アクセス( SVM )を必要とするコマンド:
-
lun resize -
volume efficiency off -
volume file show-disk-usage -
volume size
ストレージロールの破棄( VSC )
クラスタレベル:
「 all 」レベルの ONTAP アクセスを必要とするコマンド(クラスタ):
-
lun delete -
lun offline -
volume destroy -
volume offline
SVM レベル:
「 all 」レベルの ONTAP アクセス( SVM )を必要とするコマンド:
-
lun delete -
lun offline -
volume destroy -
volume offline
ポリシーベース管理ロール( VASA )
クラスタレベル:
「 all 」レベルの ONTAP アクセス(クラスタ)を必要とするコマンド:
-
event generate-autosupport-log -
lun -
qos policy-group create -
qos policy-group show -
security login role show-user-capability -
snapmirror -
storage failover show -
system node run -
system services ndmp -
system snmp traphost add -
system snmp traphost delete -
volume -
vserver export-policy create -
vserver export-policy delete -
vserver export-policy rule create -
vserver export-policy rule delete -
vserver export-policy rule setindex -
vserver export-policy rule show -
vserver export-policy show -
vserver fcp initiator show -
vserver fcp interface show -
vserver fcp show -
vserver iscsi create -
vserver iscsi show -
vserver iscsi start -
vserver nfs status -
vserver nfs show -
vserver peer show -
vserver show
「 adonly 」レベルの ONTAP アクセス(クラスタ)を必要とするコマンド:
-
cluster identity show -
cluster peer show -
cluster show -
job schedule cron show -
metrocluster show -
network fcp adapter show -
network interface show -
storage aggregate show -
storage disk show -
system license show -
system node show -
system snmp show -
version
SRA NAS/SAN の役割
クラスタレベル:
「 all 」レベルの ONTAP アクセス(クラスタ)を必要とするコマンド:
-
lun -
qos policy-group create -
qos policy-group show -
snapmirror -
storage failover show -
system node run -
system services ndmp -
system snmp traphost add -
system snmp traphost delete -
vserver nfs status -
vserver nfs show -
vserver nfs modify -
vserver nfs delete -
vserver nfs create -
vserver iscsi start -
vserver iscsi show -
vserver iscsi modify -
vserver iscsi delete -
vserver iscsi create -
vserver fcp show -
vserver fcp modify -
vserver fcp delete -
vserver fcp create -
vserver export-policy show -
vserver export-policy rule show -
vserver export-policy rule modify -
vserver export-policy rule delete -
vserver export-policy rule create -
vserver export-policy delete -
vserver export-policy create -
vserver peer show -
vserver -
volume -
volume snapshot show -
volume snapshot modify -
volume snapshot create -
volume show -
volume quota report -
volume qtree show -
volume qtree create -
volume mount -
volume unmount -
volume modify -
volume offline -
volume online -
volume file show-filehandle -
volume file show-disk-usage -
volume file reservation -
volume file clone show-autodelete-list -
volume file clone create -
volume file clone autodelete -
volume efficiency show -
volume efficiency modify -
volume destroy -
volume create -
volume clone show -
volume clone create -
snapmirror abort -
snapmirror break -
snapmirror show -
snapmirror delete -
snapmirror initialize -
snapmirror quiesce -
snapmirror release -
snapmirror resync -
snapmirror update -
snapmirror policy show -
snapmirror policy modify -
snapmirror policy delete -
snapmirror policy create -
snapmirror list-destinations -
snapmirror create -
network -
job -
event generate-autosupport-log
「 adonly 」レベルの ONTAP アクセス(クラスタ)を必要とするコマンド:
-
cluster identity show -
cluster peer show -
cluster show -
metrocluster show -
storage aggregate show -
storage disk show -
system license show -
system node show -
system snmp show -
vserver peer show -
vserver fcp interface show -
vserver fcp initiator show -
version -
security login role -
lun persistent-reservation show
SVM レベル:
「 all 」レベルの ONTAP アクセス( SVM )を必要とするコマンド:
-
vserver nfs status -
vserver nfs show -
vserver nfs modify -
vserver nfs delete -
vserver nfs create -
vserver iscsi start -
vserver iscsi show -
vserver iscsi modify -
vserver iscsi delete -
vserver iscsi create -
vserver fcp show -
vserver fcp modify -
vserver fcp delete -
vserver fcp create -
vserver export-policy show -
vserver export-policy rule show -
vserver export-policy rule modify -
vserver export-policy rule delete -
vserver export-policy rule create -
vserver export-policy delete -
vserver export-policy create -
vserver peer show -
vserver -
volume snapshot show -
volume snapshot modify -
volume snapshot create -
volume show -
volume quota report -
volume qtree show -
volume qtree create -
volume mount -
volume unmount -
volume modify -
volume offline -
volume online -
volume file show-filehandle -
volume file show-disk-usage -
volume file reservation -
volume file clone show-autodelete-list -
volume file clone create -
volume file clone autodelete -
volume efficiency show -
volume efficiency modify -
volume destroy -
volume create -
volume clone show -
volume clone create -
snapmirror abort -
snapmirror break -
snapmirror show -
snapmirror delete -
snapmirror initialize -
snapmirror quiesce -
snapmirror release -
snapmirror resync -
snapmirror update -
snapmirror policy show -
snapmirror policy modify -
snapmirror policy delete -
snapmirror policy create -
snapmirror list-destinations -
snapmirror create -
network -
lun show -
lun set space-alloc -
lun set reservation -
lun set dev_id -
lun portset show -
lun portset remove -
lun portset delete -
lun portset create -
lun portset add -
lun persistent-reservation clear -
lun modify -
lun online -
lun mapping show -
lun mapping delete -
lun mapping create -
lun igroup add -
lun igroup unbind -
lun igroup show -
lun igroup set -
lun igroup rename -
lun igroup remove -
lun igroup modify -
lun igroup disable-aix-support -
lun igroup delete -
lun igroup create -
lun create -
job -
event generate-autosupport-log
「 adonly 」レベルの ONTAP アクセス( SVM )を必要とするコマンド:
-
vserver peer show -
vserver fcp interface show -
vserver fcp initiator show -
version -
security login role -
lun persistent-reservation show
ロールを作成するためのコマンド
注: SVM (クラスタ管理 vserver )の名前を示します。<vserver_name>Data Vserver ( SVM )の名前を示します。
ロールとユーザの作成は、指定されたコマンドの数に応じて、 System Manager インターフェイスを使用して実行できます。 ONTAP のコマンドラインまたは API を使用して実行する方が効率的です。
これらのロールは、互いに完全には含まれていません。つまり、 VSC 導入で検出、ストレージの作成、ストレージの変更、ストレージの破棄、 VASA ポリシーベースの管理、 SRA NAS/SAN 検出機能が 1 つのクラスタで必要な場合は、これらのすべてのコマンドを追加して単一の役割を作成する必要があります。VSC ロール、 VASA ロール、 SRA ロールの間には、重複するコマンドがいくつかあることに注意してください。次に示す個別のロールの後には、すべてのクラスタレベルコマンドのロールアップと、すべての SVM レベルコマンドのロールアップがあります。複製は削除されているため、迅速な設定が可能です。
検出( VSC )
クラスタレベル:
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "network interface migrate"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "security login role show-user-capability"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "set"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "storage failover show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system node run"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency stat"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "job"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster identity show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster peer show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "lun geometry"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "lun igroup show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "lun show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "network fcp adapter show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "network interface show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "network port show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "security login role show-ontapi"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "security login role show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "security login show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "snapmirror show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "storage aggregate show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "storage disk show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system health alert show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system health status show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system license show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system node run"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system node show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "version"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume efficiency show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume qtree show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume quota report"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume quota show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver export-policy rule show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver export-policy show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver fcp initiator show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver fcp interface show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver fcp show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver iscsi show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver nfs show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver nfs status"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "lun mapping show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "snapmirror list-destinations"
SVM レベル
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "security login role show-user-capability"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "set"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "event generate-autosupport-log"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume efficiency stat"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "job"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "lun geometry"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "lun igroup show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "lun show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "network interface"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "version"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "volume efficiency show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "volume qtree show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "volume quota report"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "volume quota show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "volume show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver export-policy rule show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver export-policy show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver fcp initiator show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver fcp interface show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver fcp show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver iscsi show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver nfs show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver nfs status"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "lun mapping show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "snapmirror list-destinations"
ストレージの作成( VSC )
クラスタレベルsecurity login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun comment"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun igroup add"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun igroup create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun igroup set"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun igroup show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun move"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun online"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror update-ls-set"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system node autosupport invoke"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume autosize"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume clone create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency on"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency start"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency stop"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume restrict"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume snapshot create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume snapshot delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume unmount"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule setindex"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi interface accesslist add"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs status"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver services name-service unix-group"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver services name-service unix-user"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun mapping create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun mapping delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "qos policy-group create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "job show-completed"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "snapmirror show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume snapshot show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver fcp initiator show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver iscsi connection show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver iscsi interface show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver iscsi session show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "snapmirror list-destinations"
: SVM レベル:
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun comment"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup add"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup set"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun move cancel"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun move modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun move pause"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun move recover-source"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun move resume"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun move show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun move show-by-job-info"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun move start"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun online"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume autosize"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume clone create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume efficiency on"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume efficiency show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume efficiency start"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume efficiency stop"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume restrict"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume snapshot create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume snapshot delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume unmount"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver export-policy rule create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver export-policy rule setindex"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver iscsi interface accesslist add"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver nfs status"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror abort"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror break"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror check"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror get-volume-status"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror initialize"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror list-destinations"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror quiesce"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror release"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror restore"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror resume"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror resync"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror update"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror policy add-rule"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror policy create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror policy delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror policy modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror policy modify-rule"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror policy remove-rule"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror policy show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror snapshot-owner create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror snapshot-owner delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror snapshot-owner show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror update-ls-set"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun mapping create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun mapping delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group adduser"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group addusers"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group deluser"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group load-from-uri"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group file show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group file status"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group file-only modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-group file-only show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-user create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-user delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-user load-from-uri"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-user modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-user show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-user file show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-user file status"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-user file-only modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver services name-service unix-user file-only show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "job show-completed"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "volume snapshot show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver fcp initiator show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver iscsi connection show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver iscsi interface show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver iscsi session show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "lun mapping show"
ストレージの変更( VSC )
クラスタレベルsecurity login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun resize"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency off"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file show-disk-usage"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume size"
: SVM レベル:
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun resize"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume efficiency off"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume file show-disk-usage"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume size"
ストレージの破棄( VSC )
クラスタレベルsecurity login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun offline"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume destroy"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume offline"
: SVM レベル:
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun offline"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume destroy"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume offline"
ポリシーベース管理ロール( VASA )
クラスタレベル:
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "event generate-autosupport-log"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "qos policy-group create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "qos policy-group show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "security login role show-user-capability"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "storage failover show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system node run"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system services ndmp"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system snmp traphost add"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system snmp traphost delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule setindex"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp initiator show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp interface show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi start"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs status"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver peer show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster identity show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster peer show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "job schedule cron show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "metrocluster show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "network fcp adapter show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "network interface show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "storage aggregate show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "storage disk show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system license show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system node show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system snmp show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "version"
SRA NAS/SAN の役割
クラスタレベルsecurity login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "qos policy-group create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "qos policy-group show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "storage failover show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system node run"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system services ndmp"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system snmp traphost add"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system snmp traphost delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs status"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi start"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver peer show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume snapshot show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume snapshot modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume snapshot create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume quota report"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume qtree show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume qtree create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume mount"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume unmount"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume offline"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume online"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file show-filehandle"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file show-disk-usage"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file reservation"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file clone show-autodelete-list"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file clone create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file clone autodelete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume destroy"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume clone show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume clone create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror abort"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror break"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror initialize"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror quiesce"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror release"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror resync"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror update"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror policy show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror policy modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror policy delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror policy create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror list-destinations"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "network"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "job"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "event generate-autosupport-log"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster identity show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster peer show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "metrocluster show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "storage aggregate show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "storage disk show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system license show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system node show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system snmp show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver peer show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver fcp interface show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver fcp initiator show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "version"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "security login role"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "lun persistent-reservation show"
: SVM レベル:
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver nfs status"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver nfs show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver nfs modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver nfs delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver nfs create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver iscsi start"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver iscsi show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver iscsi modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver iscsi delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver iscsi create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver fcp show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver fcp modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver fcp delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver fcp create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver export-policy show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver export-policy rule show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver export-policy rule modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver export-policy rule delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver export-policy rule create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver export-policy delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver export-policy create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver peer show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "vserver"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume snapshot show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume snapshot modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume snapshot create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume quota report"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume qtree show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume qtree create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume mount"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume unmount"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume offline"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume online"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume file show-filehandle"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume file show-disk-usage"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume file reservation"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume file clone show-autodelete-list"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume file clone create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume file clone autodelete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume efficiency show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume efficiency modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume destroy"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume clone show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "volume clone create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror abort"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror break"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror initialize"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror quiesce"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror release"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror resync"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror update"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror policy show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror policy modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror policy delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror policy create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror list-destinations"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "snapmirror create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "network"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun set space-alloc"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun set reservation"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun set dev_id"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun portset show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun portset remove"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun portset delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun portset create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun portset add"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun persistent-reservation clear"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun online"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun mapping show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun mapping delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun mapping create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup add"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup unbind"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup show"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup set"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup rename"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup remove"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup modify"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup disable-aix-support"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup delete"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun igroup create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "lun create"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "job"
security login role create -role <new_role_name> -vserver <vserver_name> -access all -cmddirname "event generate-autosupport-log"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver peer show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver fcp interface show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "vserver fcp initiator show"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "version"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "security login role"
security login role create -role <new_role_name> -vserver <vserver_name> -access readonly -cmddirname "lun persistent-reservation show"
VSC 、 VASA 、 SRA のすべてのコマンドをクラスタレベルでロールアップします。
注:重複が削除されました
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "event generate-autosupport-log"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "job"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun comment"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun igroup add"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun igroup create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun igroup set"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun igroup show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun mapping create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun mapping delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun move"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun offline"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun online"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "lun"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "network interface migrate"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "network"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "qos policy-group create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "qos policy-group show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "security login role show-user-capability"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "set"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror abort"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror break"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror initialize"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror list-destinations"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror policy create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror policy delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror policy modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror policy show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror quiesce"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror release"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror resync"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror update-ls-set"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror update"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "snapmirror"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "storage failover show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system node autosupport invoke"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system node run"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system services ndmp"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system snmp traphost add"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "system snmp traphost delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume autosize"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume clone create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume clone show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume destroy"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency on"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency start"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency stat"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency stop"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file clone autodelete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file clone create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file clone show-autodelete-list"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file reservation"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file show-disk-usage"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume file show-filehandle"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume mount"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume offline"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume online"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume qtree create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume qtree show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume quota report"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume restrict"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume snapshot create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume snapshot delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume snapshot modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume snapshot show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume unmount"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "volume"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule setindex"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy rule show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver export-policy show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp initiator show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp interface show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver fcp show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi interface accesslist add"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver iscsi start"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs create"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs delete"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs modify"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver nfs show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver peer show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver services name-service unix-group"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver services name-service unix-user"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access all -cmddirname "vserver"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster identity show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster peer show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "cluster show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "job schedule cron show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "job show-completed"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "lun geometry"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "lun igroup show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "lun mapping show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "lun persistent-reservation show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "lun show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "metrocluster show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "metrocluster show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "network fcp adapter show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "network interface show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "network port show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "security login role show-ontapi"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "security login role show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "security login role"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "security login show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "snapmirror list-destinations"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "snapmirror show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "storage aggregate show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "storage disk show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system health alert show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system health status show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system license show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system node run"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system node show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "system snmp show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "version"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "version"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "version"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume efficiency show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume qtree show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume quota report"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume quota show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "volume snapshot show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver export-policy rule show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver export-policy show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver fcp initiator show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver fcp interface show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver fcp show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver iscsi connection show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver iscsi interface show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver iscsi session show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver iscsi show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver nfs show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver nfs status"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver peer show"
security login role create -role <new_role_name> -vserver <cluster_vserver_name> -access readonly -cmddirname "vserver show"
security login role create -role <new_role_name>-vserver <cluster_vserver_name> -access all -cmddirname "lun resize"
security login role create -role <new_role_name>-vserver <cluster_vserver_name> -access all -cmddirname "volume efficiency off"
security login role create -role <new_role_name>-vserver <cluster_vserver_name> -access all -cmddirname "volume file show-disk-usage"
security login role create -role <new_role_name>-vserver <cluster_vserver_name> -access all -cmddirname "volume size"
追加情報
AdditionalInformation_Text