WAS v8.5 > Secure applications > Secure Service integration > Secure service integration > Administer authorization permissions > Administer destination roles
List users and groups in destination roles
Service integration bus security uses role-based authorization. By listing the users and groups in the destination roles for a selected secured bus, we can find out which users and groups are authorized to access the bus, and its resources.
In this task we use the dmgr console to list all the users and groups in destination roles for selected destinations. The list includes users and groups that have references in the service integration role-based
configuration; it does not include all the users and groups that exist in the user repository. The permitted destination roles are sender, receiver,
browser and creator, depending on the destination type. Icons are used in the dmgr console to represent the roles to which users and groups have been assigned. For example, if the role type set icon (
) is displayed in the sender role for a group called Group 1, it means that Group
1 has been assigned to the sender role for a selected destination. For a complete description of all the icons used to represent role assignments
in the dmgr console, see Access role assignments for bus security resources.
- Log into the dmgr console.
- Click Service integration -> Buses -> security_value -> [Authorization Policy] Manage destination access roles. The Destinations panel lists all the destinations defined for the selected bus.
- Select one or more destinations to work with:
- Click the name of a single destination.
- Select the check boxes next to multiple destinations, and click Manage Access Roles.
The Destination access roles panel is displayed. The information for each selected destination is displayed in a collapsed section.
- Expand a destination header.
Results
The Destination access roles panel lists the users and groups in access roles for the expanded destination.
We can now administer the users and groups in destination roles at this destination.
Related concepts:
Messaging security
Destination security
Role-based authorization
Bus destinations
Reference:
Access role assignments for bus security resources
listGroupsInDestinationRole command
listUsersInDestinationRole command
Related information:
Add users and groups to destination roles
Remove users and groups from destination roles
Restoring default inheritance for a destination
Disable inheritance from the default resource
Overriding inheritance from the default resource for a destination
Destinations access roles [Settings]