acl show

Lists the complete set of entries for a specific access control list (ACL) policy. Alternatively, lists the values of a specific extended attribute that is associated with an ACL policy.

Requires authentication (administrator ID and password) to use this command.

Syntax

acl show acl_name [attribute attribute_name]

Options

acl_name
Specifies the name of the ACL policy for which the extended attribute values are displayed. The ACL policy must exist, or an error is displayed.

Examples of ACL names are default-root, test, default-management, and pubs_acl3.

attribute attribute_name
Specifies the name of the extended attribute whose values are displayed. (Optional) The system handles this command as follows:
  • If the ACL either has an attribute or had an attribute in the past, no error is displayed.
  • If the ACL never had an attribute, then an error is displayed.

Examples of extended attribute names are Dept_No and Employee_Name.

Return codes

0
The command completed successfully.
1
The command failed. When a command fails, the pdadmin command provides a description of the error and an error status code in hexadecimal format (for example, 0x14c012f2). See "Error messages" in the IBM Knowledge Center. This reference provides a list of the Security Access Manager error messages by decimal or hexadecimal codes.

Example

The following example shows details about ACL test-acl: 
pdadmin sec_master> acl show test-acl

ACL Name: test-acl
Description:
Entries:
User sec_master Tcmdbva
Group ivmgrd-servers Tl
Any-other r

See also

acl find
acl list