Lantronix welcomes Uplogix! Learn more here.

config role

Updated February 14, 2022. Written for LMS Version 6.2.

Opens an editor to define a set of privileges to apply to users and groups. Roles specify permitted commands.

The industry standard admin, security, analyst, operator, and guest roles are predefined but can be customized with this command, or you can create new roles.

Command availability

CLI resource: system

Lantronix system: All

LMS offerings: All


config role [no] <"role name">

Include the no modifier to delete the role.


Use the no modifier to remove settings. For example, use no expire to define the role to be valid indefinitely, if it previously had an expire date.

[no] allow <command | ?> - Specify commands that accounts with this role may execute. You may use as a wildcard character. The command allow ? displays a list of allowed commands for this role.

[no] deny <command | ?> - Specify commands that accounts with this role may not execute. You may use as a wildcard character. The command deny ? displays a list of commands denied to this role. Specifically denied commands are filtered from those specifically allowed. The all keyword is overridden by any specific allow or deny statement. For example, if you issue the deny show command after allowing the show user command, the role allows show user but no other show commands.

[no] description <"text"> - Provide information about the role. This is a free text field of 255 characters.

[no] expire - month and day of the current year after which the role is no longer valid.

[no] start - month and day of the current year that the role becomes valid


Use the ? command after the allow and deny keywords to display a list of privileges.

A user or group may be given more than one role. The current privileges are evaluated for each execution, and may change authority during a user's session.

The example below shows a role that starts on January 01 and expires on December 31 of the current year.

[admin@uplogixLM]# config role EastNOC
[config role EastNOC] description East Coast NOC
[config role EastNOC] start 0101
[config role EastNOC] expire 1231
[config role EastNOC] allow show*
[config role EastNOC] deny show user, session 
[config role EastNOC] allow config password, ppp-*
[config role EastNOC] allow export

In the Lantronix web interface

Administration > Roles - universally available

Inventory > group page > Security > Roles - specific to this inventory group

Inventory > Local Manager page > Security > Roles - specific to this system


1.1 - This command was introduced.

Related commands

  • show role

Not finding what you're looking for?

The LEVEL Technical Services team is standing by 24/7/365 to answer any questions you may have about the installation, configuration, and usage of our products.

© 2024 Lantronix, Inc. All Rights Reserved