Network Deployment (Distributed operating systems), v8.0 > Secure applications and their environment > Secure Service integration > Secure service integration > Administer authorization permissions > Administer topic space root roles
Remove users and groups from topic space root roles
Service integration bus security uses role-based authorization. When messaging security is enabled, users and groups require authority to send and receive messages from the topic space root in a publish/subscribe topic hierarchy. By removing users and groups from topic space root roles, you prevent them from accessing the root topic in a selected topic space. Topic space root (/) is the highest level topic in a publish/subscribe topic hierarchy. The hierarchy itself is called the topic space. Note that this task applies only to the topic space root; it does not apply to removing users and groups from topics or a topic space. For information about removing users and groups from topic access roles, see Remove users and groups from topic roles, and for removing users and groups from topic space roles, see Remove users and groups from destination roles.
In this task you use the admin console to remove selected users and groups from the sender and receiver roles for the selected root topic.
Procedure
- Log into the admin console.
- Click Service integration -> Buses -> security_value -> [Authorization Policy] Manage topic access roles . The Topic spaces panel lists the topic spaces defined on the bus.
- Select the topic space to work with. The selected topic space is displayed in the Topics panel. The root topic (/) is displayed by default.
- Select the topic space root. The Topic access roles panel lists the role type assignments for the topic space root.
- Select the names of the users, groups and group members that you want to remove from all role types for the selected root topic, and click Remove.
- Save your changes to the master configuration.
Results
The selected users and groups are removed from all roles for the selected root topic. The Topic access roles panel is updated to show the changes to the access roles assignments.
Messaging security
Topic security
Role-based authorization
Related
Access role assignments for bus security resources
removeGroupFromTopicSpaceRootRole command
removeUserFromTopicSpaceRootRole command