lsadmuser

Displays a list of administrative users and their attributes.

Read syntax diagramSkip visual syntax diagram
>>-lsadmuser--+--------+--+-----------------------------+------->
              +- -?----+  |        .-default----------. |
              +- -h----+  '- -fmt--+-delim--character-+-'
              '- -help-'           '-xml--------------'

>--+--------------+--+----------------+--+-------------+-------->
   |      .-off-. |  |        .-on--. |  '- -r--number-'
   '- -p--+-on--+-'  '- -hdr--+-off-+-'

>--+--------------+--+-----+--+----------------------+---------->
   |      .-off-. |  +- -l-+  '- -role--+-admin----+-'
   '- -v--+-on--+-'  '- -s-'            +-backup---+
                                        +-monitor--+
                                        '-operator-'

>--+---------------+-------------------------------------------><
   | .-----------. |
   | V           | |
   +---user_name-+-+
   '- - -----------'

Parameters

–? | –h | –help
Displays a detailed description of this command, including syntax, parameter descriptions, and examples. If you specify a help option, all other command options are ignored.
–fmt
Specifies the format of the output. You can specify one of the following values:
default
Specifies to display output in a tabular format using spaces as the delimiter between the columns. This is the default value. For example:
Name   User Role  Authorization    Authorization Timeout (secs)
===============================================================
maki   Admin      Current                                  300
delim character
Specifies to display output in a tabular format using the specified character to separate the columns. If you use a shell metacharacter (for example, * or \t) as the delimiting character, enclose the character in single quotation marks (') or double quotation marks ("). A blank space is not a valid character. For example:
maki,Admin,Current,300 secs
xml
Specifies to display output using XML format, for example:
<IRETURNVALUE>
<INSTANCE CLASSNAME="STC_AdminUser">
<PROPERTY NAME="Name" TYPE="string"><VALUE TYPE='string'>maki</VALUE>
</PROPERTY>
<PROPERTY NAME="EffectiveRole" TYPE="unit16"><VALUE="unit16">3</VALUE>
</PROPERTY>
<PROPERTY NAME="IsAuthorizationCurrent" TYPE="boolean"><VALUE 
TYPE="boolean">true</VALUE></PROPERTY>
<PROPERTY NAME="AuthCurrentRemainingTime" TYPE="uint32"><VALUE 
TYPE="uint32">300</VALUE></PROPERTY>
</INSTANCE>
</IRETURNVALUE>
–p
Specifies whether to display one page of text at a time or all text at once.
off
Displays all text at one time. This is the default value when the sfscli command is run in single-shot mode.
on
Displays one page of text at time. Pressing any key displays the next page. This is the default value when the sfscli command is run in interactive mode.
–hdr
Specifies whether to display the table header.
on
Displays the table header. This is the default value.
off
Does not display the table header.
–r number
Specifies the number of rows per page to display when the –p parameter is on. The default is 24 rows. You can specify a value from 1 to 100.
–v
Specifies whether to enable verbose mode.
off
Disables verbose mode. This is the default value.
on
Enables verbose mode.
–l
Displays additional information about the administrative users.
–s
Displays only the names of the administrative users.
–role
Displays information for only those users with the specified user role . Possible roles are:
admin
Shows only those users assigned to the Administrator role.
backup
Shows only those users assigned to the Backup role.
monitor
Shows only those users assigned to the Monitor role.
operator
Shows only those users assigned to the Operator role.
user_name
Specifies the names of one or more administrative users to list. If not specified, this command lists all of the administrative users assigned to all user roles.
Specifies that you want to read the names of the one or more administrative users to list from stdin (for example, – << /work/users_list.txt).

Description

Note: This command operates only against the local engine.

Administrative users are defined in the LDAP server as authorized to perform administrative actions on the SAN File System. A user's role is determined by its membership in an LDAP group that is associated with the various SAN File System roles.

If you do not specify a listing parameter, this command displays the following default information for each administrative user:
  • Name of the administrative user.
  • Role assigned to the administrative user.
  • Authorization (Current or Not Current).
If you specify the –l listing parameter, this command displays the following information in addition to the default information for each administrative user:
  • Authorization timeout, in seconds.

Example

Lists all administrative users The following example lists all SAN File System administrative users and additional information about their assigned roles:
sfscli> lsadmuser -l

Name   User Role  Authorization    Authorization Timeout (secs)
===============================================================
maki   Admin      Current                                  300
saki   Backup     Not Current                                0
mizi   Operator   Current                                  465
jeko   Monitor    Not Current                                0

Parent topic: Administrative commands

Related reference
resetadmuser

Terms of use | Feedback
(C) Copyright IBM Corporation 2003, 2004. All Rights Reserved.