User flags are used to override permissions checks, as follows:
admin |
All permissions checks are overridden for the user (including read_global and write_global). The user has complete administrative control over the system. Only users with the admin flag can:
read, write, and delete any object on which they do not have explicit permission write, create, and delete object lists and user definitions (with the exception of a user changing their own password) read_global - User can do a show in the global context. |
write_global |
User can modify global parameters and execute global commands other than show in the global context. |
read_global |
User can read all global parameters. |