https://community.netapp.com/t5/ONTAP-Discussions/cannot-create-rest-role-access-system-manager/m-p/435168#M40617 <P>Try looking at the role first. Note this is the role and not the rest-role. They play together</P><P>&nbsp;</P><P>&nbsp;security login role show -vserver cmode9101 -role operation_team</P><P>&nbsp;</P><P>&nbsp;you may need to add a role</P><P>&nbsp;</P><P><SPAN>&nbsp;security login role add -vserver cmode9101 -role operation_team -cmddir “anti-ransomware volume” -access readonly</SPAN></P><P>&nbsp;</P><P><SPAN>&nbsp;of course set the access as needed. Then try adding your rest-role again</SPAN></P><P>&nbsp;</P> Fri, 20 May 2022 11:33:30 GMT TMACMD 2022-05-20T11:33:30Z https://community.netapp.com/t5/ONTAP-Discussions/cannot-create-rest-role-access-system-manager/m-p/435165#M40616 <P>Hi All,</P><P>&nbsp;</P><P>We try create 9.10.1 RBAC access OnTap System Manage for operation as below.</P><P>- domain user with operation_team role as below cannot login System manager</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="chinchillaking_0-1653038049857.png" style="width: 400px;"><img src="https://community.netapp.com/t5/image/serverpage/image-id/23561i004122A458B3CD00/image-size/medium?v=v2&amp;px=400" role="button" title="chinchillaking_0-1653038049857.png" alt="chinchillaking_0-1653038049857.png" /></span></P><P>&nbsp;</P><P>- when domain user change to default readonly role, login System Manage no problem</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="chinchillaking_1-1653038096689.png" style="width: 400px;"><img src="https://community.netapp.com/t5/image/serverpage/image-id/23562iEC8AEF92EAC7A461/image-size/medium?v=v2&amp;px=400" role="button" title="chinchillaking_1-1653038096689.png" alt="chinchillaking_1-1653038096689.png" /></span></P><P>&nbsp;</P><P>- the operation_team missing /api/security compare with default readonly role, we try add /api/security but failed and display "Error: command failed: failed to set field "cmddirname" to "anti-ransomware volume""</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="chinchillaking_2-1653038139032.png" style="width: 400px;"><img src="https://community.netapp.com/t5/image/serverpage/image-id/23563i0A75BD077B9D7DD0/image-size/medium?v=v2&amp;px=400" role="button" title="chinchillaking_2-1653038139032.png" alt="chinchillaking_2-1653038139032.png" /></span></P><P>&nbsp;</P><P>- volume did not setup anti-ransomware</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="chinchillaking_3-1653038180404.png" style="width: 400px;"><img src="https://community.netapp.com/t5/image/serverpage/image-id/23564i379DDD88824D3FE5/image-size/medium?v=v2&amp;px=400" role="button" title="chinchillaking_3-1653038180404.png" alt="chinchillaking_3-1653038180404.png" /></span></P><P>&nbsp;</P><P>I cannot found solution in google or mysupport.netapp.com</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Wed, 04 Jun 2025 10:00:59 GMT https://community.netapp.com/t5/ONTAP-Discussions/cannot-create-rest-role-access-system-manager/m-p/435165#M40616 chinchillaking 2025-06-04T10:00:59Z https://community.netapp.com/t5/ONTAP-Discussions/cannot-create-rest-role-access-system-manager/m-p/435168#M40617 <P>Try looking at the role first. Note this is the role and not the rest-role. They play together</P><P>&nbsp;</P><P>&nbsp;security login role show -vserver cmode9101 -role operation_team</P><P>&nbsp;</P><P>&nbsp;you may need to add a role</P><P>&nbsp;</P><P><SPAN>&nbsp;security login role add -vserver cmode9101 -role operation_team -cmddir “anti-ransomware volume” -access readonly</SPAN></P><P>&nbsp;</P><P><SPAN>&nbsp;of course set the access as needed. Then try adding your rest-role again</SPAN></P><P>&nbsp;</P> Fri, 20 May 2022 11:33:30 GMT https://community.netapp.com/t5/ONTAP-Discussions/cannot-create-rest-role-access-system-manager/m-p/435168#M40617 TMACMD 2022-05-20T11:33:30Z https://community.netapp.com/t5/ONTAP-Discussions/cannot-create-rest-role-access-system-manager/m-p/435184#M40620 <P>Hi TMACMD,</P><P>&nbsp;</P><P>Thanks for your reply. But the role cannot add</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="chinchillaking_0-1653101860704.png" style="width: 400px;"><img src="https://community.netapp.com/t5/image/serverpage/image-id/23566iEF496665977494FF/image-size/medium?v=v2&amp;px=400" role="button" title="chinchillaking_0-1653101860704.png" alt="chinchillaking_0-1653101860704.png" /></span></P><P>&nbsp;</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="chinchillaking_1-1653101891379.png" style="width: 400px;"><img src="https://community.netapp.com/t5/image/serverpage/image-id/23567i8D27BF77A71F3C96/image-size/medium?v=v2&amp;px=400" role="button" title="chinchillaking_1-1653101891379.png" alt="chinchillaking_1-1653101891379.png" /></span></P><P>&nbsp;</P><P>&nbsp;</P><P>But I found it was not&nbsp;<SPAN>/api/security compare with default readonly role issue, it was web services access issue, after add&nbsp;security and&nbsp;sysmgr in web access, login successful</SPAN></P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="chinchillaking_2-1653102082017.png" style="width: 400px;"><img src="https://community.netapp.com/t5/image/serverpage/image-id/23568iB71936EBF1D490B7/image-size/medium?v=v2&amp;px=400" role="button" title="chinchillaking_2-1653102082017.png" alt="chinchillaking_2-1653102082017.png" /></span></P><P>&nbsp;</P> Sat, 21 May 2022 03:02:36 GMT https://community.netapp.com/t5/ONTAP-Discussions/cannot-create-rest-role-access-system-manager/m-p/435184#M40620 chinchillaking 2022-05-21T03:02:36Z