delete_role

Use the delete_role command to delete the currently selected role from Active Directory and from memory. You cannot use other commands to manage the role after deletion because there will be no currently selected role in memory.

Zone Type

Classic and hierarchical

Syntax

delete_role

Abbreviation

dlr

Options

This command takes no options.

Arguments

This command takes no arguments.

Return Value

This command returns nothing if it runs successfully.

Examples

delete_role

This example deletes the currently selected role from Active Directory and from memory.

Before you use this command, you must have a currently selected role stored in memory. The following commands enable you to view and select the role to work with:

get_roles returns a Tcl list of roles in the current zone.
list_roles lists to stdout all roles in the currently selected zone.
new_role creates a new role and stores it in memory.
select_role retrieves a role from Active Directory and stores it in memory.

After you have a role stored in memory, you can use the following commands to work with that role:

add_command_to_role adds a UNIX command to the currently selected role.
add_pamapp_to_role adds a PAM application to the currently selected role.
get_role_apps returns a Tcl list of the PAM applications associated with the role.
get_role_commands returns a Tcl list of the UNIX commands associated with the role.
get_role_field reads a field value from the currently selected role.
list_role_rights lists to stdout all UNIX commands and PAM applications associated with the role.
remove_command_from_role removes a UNIX command from the currently selected role.
remove_pamapp_from_role removes a PAM application from the currently selected role.
save_role saves the selected role with its current settings to Active Directory.
set_role_field sets a field value in the currently selected role.