WAS v8.5 > Secure applications > Secure Service integration > Secure service integration > Administer authorization permissions > Administer default rolesRemove users and groups from default roles
Service integration bus security uses role-based authorization. By removing selected users and groups from the default roles for a selected secured bus, you prevent those users and group members from accessing the bus using the default roles.
When you remove users and groups from the default roles for a bus, they can no longer access local bus destinations that inherit default access permissions. Note that removing a user from the default roles does not prevent that user from accessing the bus if they are also a member of a group that has been assigned to the default roles for that bus.
- Log into the dmgr console.
- Click Service integration -> Buses -> security_value -> [Authorization Policy] Manage default access roles. The Default access roles panel is displayed.
- Expand the Default access header to list the users and groups that have been assigned to default access roles for the selected bus.
- Select the users and groups to remove from the default access roles for this bus, and click Remove.
- Save your changes to the master configuration.
Results
The selected users and groups are removed from the default roles for the selected bus. The Default access roles panel displays the changes to the default access role assignments.
We can complete other security administration tasks using the dmgr console.
Related concepts:
Role-based authorization
Destination security
Bus destinations
Reference:
Access role assignments for bus security resources
removeGroupfromDefaultRole command
removeUserfromDefaultRole command
Related information:
List users and groups in default roles
Add users and groups to default roles