lsuser

The lsuser command returns a list of basic user account names and access authority levels.

Read syntax diagramSkip visual syntax diagramlsuser -s  -l  -pol  pol_name -scope  user_resource_scopeUser_Name [ ... ]   "-"

Parameters

-s
(Optional) Displays only the user names. You cannot use the -l and the -s parameters together.
-l
(Optional) Displays the default output. You cannot use the -l and the -s parameters together.
-pol pol_name
(Optional) The name of the basic authentication policy. This parameter is optional if you authenticated with a 'basic' authentication policy type, but it is required if you are authenticated with another type of authentication policy.
-scope user_resource_scope
(Optional) Displays only the user accounts that have the specified user resource scope. If you do not specify the scope, users with any user resource scope might be displayed.
User_Name ... | -
(Optional) Displays the user accounts with the specified user names. Separate multiple user names with a blank space between each name.

Example: Listing users associated with an authentication policy.

Note: For this command and all other DS CLI list commands, the results are shown in table format to provide clarity. The actual reports do not display as table.
dscli> lsuser -l –pol my_policy1 
Output:
Name Group State
admin admin active
engineering ibm_engineering active
inge ibm_engineering active
monitor monitor active
nick op_volume,op_copy_services active
noaccess no_access active
opvol op_volume active
physicalop op_storage active
robmel admin active
service ibm_service active

Output definitions

Name*
The user name that is assigned to the user account.
Group
The access authority group of the user. One or more of the following group designations is displayed:
  • admin (Administrator)
  • secadmin (Security Administrator)
  • ibm_engineering (Engineer)
  • op_storage (Physical Operator)
  • op_volume (Logical Operator)
  • op_copy_services (Copy Services Operator)
  • ibm_service (Service)
  • monitor (Monitor)
  • no_access (No Access)
State
The status of the user account for the designated user group, either active or locked.
Scope+
The user resource scope. A dash (-) is displayed if the storage unit does not support resource groups.
Key:
*
Displayed when the -s parameter is specified.
+
Displayed only when the -l parameter is specified.