WAS v8.5 > Secure applications > Secure Service integration > Secure service integration > Administer authorization permissions > Administer topic rolesRemove users and groups from topic roles
Service integration bus security uses role-based authorization. When messaging security is enabled, and the Topic access check required setting is enabled for the topic space, users and groups require authority to access a topic in the topic space. By removing users and groups from all topic roles for a selected topic, you prevent them from accessing the topic.
Topic roles are effective only when the Topic Access Check Required setting is enabled in the configuration for a topic space. For more information, see Configure bus destination properties.
This task uses the dmgr console to remove users and groups from both the sender and receiver roles for a selected topic in a selected topic space.
- Log into the dmgr console.
- Click Service integration -> Buses -> security_value -> [Authorization Policy] Manage topic access roles -> topic_space_name > topic_name. The Topic access roles panel is displayed. The information for the topic is displayed in a collapsed section.
- Expand the section header to display the users and groups assigned to role types for the selected topic.
- Select the users and groups to remove from the sender and receiver roles for the selected topic, and click Remove.
- Save your changes to the master configuration.
Results
The selected users and groups are removed from the sender and receiver roles for the selected topic. The Topic access roles panel is updated to show the selected users and groups have no topic role type assignments.
Related concepts:
Messaging security
Topic security
Role-based authorization
Reference:
Access role assignments for bus security resources
removeGroupFromTopicRole command
removeUserFromTopicRole command
Related information:
List users and groups in topic roles
Add users and groups to topic roles
Enable topic role inheritance
Disable topic role inheritance
Topic [Settings]