Hi Martin,
The correct format of the call would be
mgmt_cli -r true set administrator name "admin123" permissions-profile.remove "domain_name" -d "System Data" -f json
[Expert@mds10:0]# mgmt_cli -r true set administrator name "admin123" permissions-profile.remove "central-europe" -d "System Data" -f json
{
"uid" : "f0ef6720-56fd-4929-815f-56b054f9285c",
"name" : "admin123",
"type" : "administrator",
"domain" : {
"uid" : "a0eebc99-afed-4ef8-bb6d-fedfedfedfed",
"name" : "System Data",
"domain-type" : "mds"
},
"email" : "",
"phone-number" : "",
"authentication-method" : "check point password",
"must-change-password" : false,
"multi-domain-profile" : {
"uid" : "642ba6c9-e60c-4a2d-8e18-652e2690266a",
"name" : "Domain Manager",
"type" : "MDPermissionRole",
"domain" : {
"uid" : "a0bbbc99-adef-4ef8-bb6d-defdefdefdef",
"name" : "Check Point Data",
"domain-type" : "data domain"
}
},
"permissions-profile" : [ {
"domain" : {
"uid" : "ba118ab3-ac2f-4103-a095-a5c732f47479",
"name" : "nordics",
"type" : "FolderMirror",
"domain" : {
"uid" : "a0eebc99-afed-4ef8-bb6d-fedfedfedfed",
"name" : "System Data",
"domain-type" : "mds"
}
},
"profile" : {
"uid" : "f4a23218-5bb9-4880-94bb-9c06b951f195",
"name" : "Read Only All",
"type" : "PermissionRole",
"domain" : {
"uid" : "a0bbbc99-adef-4ef8-bb6d-defdefdefdef",
"name" : "Check Point Data",
"domain-type" : "data domain"
}
}
}, {
"domain" : {
"uid" : "68efd634-fd04-481b-b62d-99a2a2a6a7d4",
"name" : "All Global Domains",
"type" : "Folder",
"domain" : {
"uid" : "a0eebc99-afed-4ef8-bb6d-fedfedfedfed",
"name" : "System Data",
"domain-type" : "mds"
}
},
"profile" : {
"uid" : "f4a23218-5bb9-4880-94bb-9c06b951f195",
"name" : "Read Only All",
"type" : "PermissionRole",
"domain" : {
"uid" : "a0bbbc99-adef-4ef8-bb6d-defdefdefdef",
"name" : "Check Point Data",
"domain-type" : "data domain"
}
}
} ],
"sic-name" : "",
"comments" : "",
"color" : "black",
"icon" : "General/Administrator",
"tags" : [ ],
"meta-info" : {
"lock" : "unlocked",
"validation-state" : "ok",
"last-modify-time" : {
"posix" : 1560331260958,
"iso-8601" : "2019-06-12T11:21+0200"
},
"last-modifier" : "WEB_API",
"creation-time" : {
"posix" : 1560331254376,
"iso-8601" : "2019-06-12T11:20+0200"
},
"creator" : "WEB_API"
},
"read-only" : true
}
---------------------------------------------
Time: [11:21:02] 12/6/2019
---------------------------------------------
"Publish operation" succeeded (100%)
here is an example
mgmt_cli -r true add administrator name "admin123" password "vpn123" must-change-password false authentication-method "INTERNAL_PASSWORD" multi-domain-profile "domain manager" permissions-profile.1.domain "nordics" permissions-profile.1.profile "read only all" -d "System Data" -f json
mgmt_cli -r true set administrator name "admin123" permissions-profile.add.1.domain "central-europe" permissions-profile.add.1.profile "read write all" -d "System Data" -f json
mgmt_cli -r true set administrator name "admin123" permissions-profile.remove "central-europe" -d "System Data" -f json
Kind Regards
Jim