efa rbac role show

Displays the roles available in EFA.

Syntax

efa rbac role show [ --name role-name| --help ]

Parameters

--name role-name
Specifies name of the role.
--help
Provides help for the command.

Usage Guidelines

Output of the command is similar to the following.

Role Description
FabricAdmin
  • Registers devices to the Fabric
  • Configures Fabric parameters
  • Validates all devices in the Fabric
  • Configures switches for IP Fabric with overlay and without overlay
  • Creates tenants
  • Creates networks inside tenants, such as VRF, EPG, and PO
  • Performs Fabric debug activities
  • Has privileges for OpenStack, Hyper-V, and vCenter operations
SecurityAdmin Performs user management, PKI, and key management operations
NetworkOperator
  • Has view-only privileges for Fabric configurations, information for tenants and inventory, and all ecosystem information
  • Cannot make changes in the system
SystemDebugger
  • Has privileges to perform supportsave and system backup, and to view the running system configurations
  • Has privileges to perform Fabric debug operations
  • Sets debug levels for services
  • Has privileges to collect execution logs from services
SystemAdmin Has complete privileges to all operations in the system
<Tenant>Admin

* Created dynamically per tenant

Performs tenant administration within the assigned tenant, such as the following:
  • Adding networks to the tenant
  • Configuring network parameters
  • Configuring switches with tenant-specific information
Cannot perform actions for any other tenant