object create

Creates a protected object.

Authentication (administrator ID and password) required to use this command.

Syntax

object create object_name object_description type ispolicyattachable {yes|no}

Options

object_description
Specifies any text string that describes the object that is being created.

A valid description is an alphanumeric string that is not case-sensitive. String values are expected to be characters that are part of the local code set. If the description contains a space, ensure that you enclose the description in double quotation marks. You can specify an empty string ("") to clear an existing description.

An example of a description is "Travel Groups".

ispolicyattachable {yes|no}
Specifies whether an ACL, a protected object policy, or an authorization rule can be attached to this object. Valid values are yes or no.
object_name
Specifies the name for the protected object that is being created. This name is the fully qualified name of the object, including the object space within which it is located. This name must be unique.

A valid object name is an alphanumeric string that is not case-sensitive. String values are expected to be characters that are part of the local code set.

Examples of object names are:

  • /Management/Groups/Travel
  • /WebSEAL
  • /Management
type
Specifies the type of object to be created. Types range from 0 to 17. For example, types 10 or 16 are appropriate for container objects. Object types are described in the Administering topics in the IBM Knowledge Center.
You can assign any of the following types:
0
Unknown
1
Secure domain
2
File
3
Executable program
4
Directory
5
Junction
6
WebSEAL server
7
Unused
8
Unused
9
HTTP server
10
Nonexistent object
11
Container object
12
Leaf object
13
Port
14
Application container object
15
Application leaf object
16
Management object
17
Unused

Return codes

0
The command completed successfully.
1
The command failed. When a command fails, the pdadmin command provides a description of the error and an error status code in hexadecimal format (for example, 0x14c012f2). See "Error messages" in the IBM Knowledge Center. This reference provides a list of the Security Verify Access error messages by decimal or hexadecimal codes.

Examples

  • The following example creates the object named /Management/test-object that has a description of Test Object and is an application container object (14). An ACL or a protected object policy can be attached to this object: 
    pdadmin sec_master> object create /Management/test-object "Test Object" 14
ispolicyattachable yes
  • The following example creates the object named /Management/Groups/Travel that has a description of Travel Container Object and is an application container object (14). An ACL or a protected object policy cannot be attached to this object: 
    pdadmin sec_master> object create /Management/Groups/Travel "Travel
Container Object" 14 ispolicyattachable no

See also

object exists
object delete