正在尝试自动化用户,并且映射到应用程序的组在下面是尝试的脚本,我想验证这是否是如何做的/p>
导入系统
filename=""
fileread = open(filename, 'r')
filelines = fileread.readlines()
for row in filelines:
column=row.strip().split(';')
user_name=column[0]
print user_name
pass_word=column[1]
first=column[2]
last=column[3]
AdminTask.createUser(['-uid',user_name, '-password', pass_word, '-confirmPassword', pass_word, '-cn', first, '-sn', last ])
AdminTask.mapUsersToAdminRole(['-roleName','Administrator','-userids',user_name])
AdminConfig.save()
print 'Userid creation completed for', user_name
AdminApp.install('myapp.ear', '[-MapRolesToUsers [["All Role" No Yes "" ""]
["Every Role" Yes No "" ""] [DenyAllRole No No user1 group1]]]')
agmBean = AdminControl.queryNames('type=AuthorizationGroupManager,process=dmgr,*')
AdminControl.invoke(agmBean, 'refreshAll')
fileread.close()
根据您的上一个问题来判断,我假设您已经设置了LDAP服务器。如果将用户从LDAP服务器映射到管理员角色,则无需创建新用户。类似此命令将从LDAP映射到admin角色:
AdminTask.mapUsersToAdminRole('[-accessids [user:defaultWIMFileBasedRealm/cn=user1,ou=users,dc=yourco,dc=com ] -userids [user1 ] -roleName administrator]')
该领域名称可以在cell_dir/wim/config下的wimconfig.xml中找到;DefaultWimFileBasedRealm是默认值。我建议手动运行命令,当您使所有内容工作时,写脚本。