You use the security login role commands to control the level of access users in a role have to the system. You use the security login role config commands to manage rule settings of user names and passwords for a role to enhance user account security.
|If you want to...||Use this command...|
|Create an access-control role and specify the command or command directory that the role can access||security login role create|
|Modify the command or command directory that an access-control role can access||security login role modify|
|Display information about access-control roles||security login role show|
|Display Data ONTAP APIs and their corresponding CLI commands||security login role show-ontapi|
|Delete an access-control role||security login role delete|
| Modify the following account restrictions and rule settings for an access-control role:
||security login role config modify|
|Display user account restrictions and rule settings||security login role config show|
|Reset the following settings to their default values:
Data ONTAP prompts you to run this command if you revert to Data ONTAP 8.1.2 or earlier.
|security login role config reset
(advanced privilege level)