System Administration > Settings > User Management > Roles

Associated URIs:

API Description API Path

List feature permissions


List features
GET /api/v1/aaa/features-with-properties

Get all users and groups with their roles


GET /api/v1/aaa/role-bindings

Assign roles to User or Group


When assigning a user role, specify the user name with the same
case as it appears in vIDM to access the NSX-T user interface.
For example, if vIDM has the user name User1@example.com then
the name attribute in the API call must be be User1@example.com
and cannot be user1@example.com.
POST /api/v1/aaa/role-bindings

Delete all stale role assignments


POST /api/v1/aaa/role-bindings?action=delete_stale_bindings

Delete user/group's roles assignment


DELETE /api/v1/aaa/role-bindings/<binding-id>

Get user/group's role information


GET /api/v1/aaa/role-bindings/<binding-id>

Update User or Group's roles


PUT /api/v1/aaa/role-bindings/<binding-id>

Get information about all roles


GET /api/v1/aaa/roles

Validate a new feature permission set


Validate the permissions of an incoming role. Also, recommend the
permissions which need to be corrected.
POST /api/v1/aaa/roles?action=validate

Get information about all roles with features and their permissions


GET /api/v1/aaa/roles-with-feature-permissions

Delete custom role


If a role is assigned to a role binding then the deletion of
the role is not allowed. Precanned roles cannot be deleted.
DELETE /api/v1/aaa/roles/<role>

Get role information


GET /api/v1/aaa/roles/<role>

Clone an already present role


The role with id is cloned and the new id, name and description are
the ones provided in the request body.
POST /api/v1/aaa/roles/<role>?action=clone

Update custom role


Creates a new role with id as if there does not exist any
role with id , else updates the existing role.
PUT /api/v1/aaa/roles/<role>