Scenario with custom actions

The following scenarios show how to add custom actions to an ACL policy attached to a protected object.

1. To show action groups:

   pdadmin sec_master> action group list
   
         primary
         test-group

2. To list permissions in the test-group action group:

   pdadmin sec_master> action list test-group
   
         P  Test-Action   Special
         S  Test-Action2  Special

3. To list ACL policies:

   pdadmin sec_master> acl list
   
         default-webseal
         default-root
         default-gso
         default-policy
         default-config
         test-acl
         default-replica
         default-management

4. To show details about the ACL name test-acl, enter the following command:

   pdadmin sec_master> acl show test-acl
   
         ACL Name: test-acl
         Description:
         Entries:
             User sec_master Tcmdbva
             Group ivmgrd-servers Tl
             Any-other r

5. To add an ACL entry for the user named Kathy that contains permissions from the action groups named primary and test-group, enter the following command:

   pdadmin sec_master> acl modify test-acl set user kathy brT[test-group]PS

6. To validate this addition:

   pdadmin sec_master> acl show test-acl
   
         ACL Name: test-acl
         Description:
         Entries:
         User  sec_master  Tcmdbva
         Group  ivmgrd-servers  Tl
         Any-other  r
         User  kathy  Tbr[test-group]PS

Parent topic: Custom permissions in custom action groups