Skip to main content
NetApp Knowledge Base

Restricted RBAC account still able to delete snapshots in OCSMv4

Views:
132
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core
Last Updated:

Applies to

  • ONTAP
  • OCSMv4

Issue

Users with the Command "volume snapshot delete" access level "none" are able to delete snapshots in OnCommand System Manager v4

Netapp::*> security login role show -role snapshot
           Role          Command/                                      Access
Vserver    Name          Directory                               Query Level
---------- ------------- --------- ----------------------------------- --------
Netapp     snapshot      DEFAULT                                       all
                         volume snapshot create                        all
                         volume snapshot delete                        none
                         volume snapshot modify                        all
                         volume snapshot show                          all

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.