mc admin policy
Description
The mc admin policy commands manage policies for use with MinIO Policy-Based Access Control (PBAC).
MinIO PBAC uses IAM-compatible policy JSON documents to define rules for accessing resources on a AIStor server.
For complete documentation on MinIO PBAC, including policy document JSON structure and syntax, see Access Management. To manage policies for deployments that use LDAP authentication, see mc idp ldap policy.
Subcommands
mc admin policy includes the following subcommands:
| Subcommand | Description |
|---|---|
attach |
The mc admin policy attach command attaches one or more IAM policies to either an AIStor-managed user or a group. |
create |
The mc admin policy create command creates a new policy on the target AIStor deployment. |
detach |
The mc admin policy detach command removes one or more IAM policies from either an AIStor-managed user or a group. |
entities |
The mc admin policy entities command lists the entities associated with a policy, user, or group on a target AIStor deployment. |
info |
The mc admin policy info command returns the specified policy in JSON format if it exists on the target AIStor deployment. |
ls |
The mc admin policy ls command lists all policies on the target AIStor deployment. |
rm |
The mc admin policy rm command removes an IAM policy from the target AIStor deployment. |