Configuring Rules or Policies for Default and User-Defined Roles

The default authenticated and unauthenticated roles contain no rules or policies. When you first create a user-define role, it also contains no rules or policies.

To add or delete a rule or policy from a role, use the following commands:

configure identity-management role role_name [add dynamic-rule rule_name { first | last | { [before | after] ref_rule_name}}]

configure identity-management role role_name add policy policy-name {first | last {[before | after] ref_policy_name}}

configure identity-management role role_name delete dynamic-rule [rule_name | all]

configure identity-management role role_name delete policy [policy-name | all]