chtwopersonintegrityrequest
Use the chtwopersonintegrityrequest command to approve or cancel an existing role elevation request. You must have the Restricted Security Administrator role or the Security Administrator role to use this command.
Syntax
Parameters
- -cancel
- (Required) Specifies to cancel and remove the role elevation request.
- -approve
- (Required) Specifies to approve the role elevation request.
- -minutesapproved <minutes>
- (Optional) Specifies the duration (in minutes) for an approved role elevation request.
- -requestid <request_id>
- (Required) Specifies the ID of the role elevation request.
- -username <user_name>
- (Required) Specifies the username that is associated with the role elevation request.
Description
You must have the Restricted Security Administrator or the Security Administrator role to cancel or approve a role elevation request. The request can be approved or canceled by either specifying the ID or the user name that is associated with the request. The minimum duration for an elevation request is 10 minutes and the maximum duration is 24 hours. If -minutesapproved is not provided when doing an approve (-approve) operation, the duration that was originally specified when the request was created is used.
- The -cancel and -approve parameters are mutually exclusive, but one of them is required.
- The -requestid and -username parameters are mutually exclusive, but one of them is required.
- The -cancel and -minutesapproved parameters are mutually exclusive.
- When the -approve parameter is specified, you can also specify the -minutesapproved parameter.
An invocation example
The following example shows the approval of a role elevation request by username with a duration of 30 minutes, regardless of how many minutes were originally requested:
chtwopersonintegrityrequest -approve -minutesapproved 30 -username secadmin11
The resulting output:
No feedback.
