acl attach

Attaches an ACL policy to a protected object. If the protected object already has an ACL attached, the ACL is replaced with a new one.

Requires authentication (administrator ID and password) to use this command.

Syntax

acl attach object_name acl_name

Description

At most, one ACL can be attached to a given protected object. The same ACL can be attached to multiple protected objects. Ensure that you are familiar with ACL management before you use this function.

Options

acl_name
Specifies the ACL policy that is applied to the named object. The ACL policy must exist, or an error is displayed.

Examples of the ACL names are default-root, test, default-management, and pubs_acl3.

object_name
Specifies the object to which to apply the named ACL policy. The object name must exist, or an error is displayed.

Examples of object names are:

  • /Management/Groups/Travel
  • /WebSEAL
  • /Management

Return codes

0
The command completed successfully.
1
The command failed. When a command fails, the pdadmin command provides a description of the error and an error status code in hexadecimal format (for example, 0x14c012f2). See "Error messages" in the IBM Knowledge Center. This reference provides a list of the Security Access Manager error messages by decimal or hexadecimal codes.

Example

The following example attaches the ACL policy, pubs_acl3, to the protected object, /Management: 
pdadmin sec_master> acl attach /Management pubs_acl3

See also

acl create
acl detach