Remove users and groups from default roles
Service integration bus security uses role-based authorization. By removing selected users and groups from the default roles for a selected secured bus, you prevent those users and group members from accessing the bus using the default roles.
When you remove users and groups from the default roles for a bus, they can no longer access local bus destinations that inherit default access permissions. Note that removing a user from the default roles does not prevent that user from accessing the bus if they are also a member of a group that has been assigned to the default roles for that bus.
- Log into the console.
- Click Service integration -> Buses -> security_value -> [Authorization Policy] Manage default access roles. The Default access roles panel is displayed.
- Expand the Default access header to list the users and groups that have been assigned to default access roles for the selected bus.
- Select the users and groups to remove from the default access roles for this bus, and click Remove.
- Save the changes to the master configuration.
Results
The selected users and groups are removed from the default roles for the selected bus. The Default access roles panel displays the changes to the default access role assignments.
What to do next
We can complete other security administration tasks using the console.
Related concepts
Role-based authorization Destination security Bus destinations
Access role assignments for bus security resources removeGroupfromDefaultRole command removeUserfromDefaultRole command
Related information:
Listing users and groups in default roles Add users and groups to default roles