Reference Guide
This command shows the permissions that apply to all commands in a specific category.
switch:admin> classconfig --showroles authentication
Roles that have access to the RBAC Class ‘authentication’ are:
Role name Permission
--------- ----------
Admin OM
Root OM
Security Admin OM
You can also use the classConfig --showcli command to show the permissions that apply to a specific command.
Management channel
The management channel is the communication established between the management workstation and the switch. The following table
shows the number of simultaneous login sessions allowed for each role when authenticated locally. The roles are displayed in alphabetic
order, which does not reflect their importance.
TABLE 22 Maximum number of simultaneous sessions
Role name Maximum sessions
Admin 4
BasicSwitchAdmin 4
FabricAdmin 4
Operator 4
SecurityAdmin 4
SwitchAdmin 4
User 4
ZoneAdmin 4
NOTE
The total number of sessions on a switch cannot exceed 32.
Managing user-defined roles
Fabric OS provides an extensive toolset for managing user-defined roles:
∙ The roleConfig command is available for defining new roles, deleting created roles, or viewing information about user-defined
roles.
∙ The classConfig command is available for displaying RBAC information about each category or class of commands, and
includes an option to show all roles associated with a given RBAC command category.
∙ The userConfig command can be used to assign a user-defined role to a user account.
CAUTION
Brocade recommends that you do not add more than 150 user defined roles as Fabric OS and other management applications
such as Brocade Network Advisor and Web Tools might encounter performance issues.
Creating a user-defined role
You can define a role as long as it has a unique name that is not the same as any of the Fabric OS default roles, any other user-defined
role, or any existing user account name.
The following conditions also apply:
Managing User Accounts
Brocade Fabric OS Administration Guide, 8.0.1
53-1004111-02 147