tklmDeviceGroupAttributeDelete
Use the tklmDeviceGroupAttributeDelete command
to delete an attribute of a device group such as myLTO.
Note: The IBM® Security Guardium® Key Lifecycle Manager command-line
interface commands will be deprecated in the later versions of IBM Security Guardium Key Lifecycle Manager. Use
the REST interfaces instead.
Purpose
Use this command to delete an attribute of a device group such asmyLTO. Permissions
Your role must have permissions to the delete action and to the appropriate device group.
Syntax
tklmDeviceGroupAttributeDelete [-name {LTO | 3592 | DS5000 | DS8000® | BRCD_ENCRYPTOR | GPFS | PEER_TO_PEER | ONESECURE | GENERIC | userdevicegroup} -attribute {attributename}]
Parameters
- -attribute
- Required. Specify an attribute for a device group. To determine
the attributes of a device group, run the tklmDeviceGroupAttributeList command.
- device.enableMachineAffinity
- Specifies that device groups in the DS5000 device family are enabled to store the association of a device to an existing machine identifier in the
IBM Security Guardium Key Lifecycle Manager database. Values are:
true(enable) orfalse(disable). An instance of the property is stored for each device group. - drive.default.alias1
- Specifies the system default certificate that a 3592 device uses if the device is not associated with another certificate.
- drive.default.alias2
- Specifies the system partner certificate that a 3592 device uses if the device is not associated with another certificate.
- symmetricKeySet
- Specifies a key group to be used for a device group.
- shortName
- This property specifies a short label that is usually a drive type such as LTO. This is used for any additional attributes that are required by an original equipment manufacturer.
- longName
- This property specifies an extended descriptive name of a drive type,
such as
my division LTO. For example, this information might include business information.
- -name
- Required. Specify a unique device group, such as LTO.
- LTO
- Specifies the LTO device group.
- 3592
- Specifies the 3592 device group.
- DS5000
- Specifies the DS5000 device group.
- DS8000
- Specifies the DS8000 device group.
- GPFS
- Specifies the IBM Spectrum® Scale (previously known as GPFS) device group.
- PEER_TO_PEER
- Specifies the PEER_TO_PEER device group.
- BRCD_ENCRYPTOR
- Specifies the BRCD_ENCRYPTOR device group that is in the LTO device family.
- ONESECURE
- Specifies the ONESECURE device group that is in the DS5000 device family.
- GENERIC
- Specifies a device family that uses the Key Management Interoperability Protocol to interact with IBM Security Guardium Key Lifecycle Manager. The GENERIC device group enables management of KMIP objects.
Do not use the command-line interface to add a device to the GENERIC device group, or to change a GENERIC device group attribute.
- userdevicegroup
- Specifies a user-defined group that is based on a supported device family.
Example
This Jython-formatted command deletes an attribute from a device group.
print AdminTask.tklmDeviceGroupAttributeDelete
('[-name myLTO -attribute "{symmetricKeySet}"]')