Authorization rule commands

If an authorization rule is directly attached to the protected object in question, this authorization rule defines the rule policy for that object. If an authorization rule is not directly attached to the protected object in question, the controlling rule is the nearest one that is above it in the protected object hierarchy.

Listing rules

The following command lists all of the authorization rules defined for Verify Identity Access:

padmin> authzrule list 

Finding rules

The following command enables you to learn where a particular authorization rule is attached within the protected object space hierarchy:

pdadmin> authzrule find authznrule_name

Showing rules

Use the following command to examine the controlling authorization rule and to ensure that it is correct for the type of enforcement required:

pdadmin> authzrule show authznrule_name

Correct the rule definition if needed.