Sun Java System Communications Services 6 2005Q4 Delegated Administrator Guide

commadmin group create

The commadmin group create command adds a single group to the Access Manager. To create multiple groups, use the -i option.

If a group is created without any members, by default, it is a static group.

Note –

Groups cannot contain both static and dynamic members.

An email distribution list is one type of group. When a message is sent to the group address, Access Manager sends the message to all members in the group.


commadmin group create -D login -G groupname -n domain -w password
   [-A [+]attributename:value] [-d domain] [-f ldap-filter] [-h] [-?]
   [-i inputfile] [-m internal-member] [-p AM port] [-s] [-v] [-V] [-X AM host]
   [-S service [-H mailhost] [-E email] [-M external-member] [-o owner] [-rs moderator]]


The following options are mandatory:



-D login

The user ID of the user who has permission to execute this command. 

-n domain

The domain of the user specified by the -D option.

-G groupname

The name of the group (for example, mktg-list).

-w password

The password of the user specified by the -D option.

The following options are non-mandatory:



-A [+ ]attributename:value

An attribute to modify. The attributename is defined in the LDAP schema and value replaces any and all current values for this attribute in the directory. Repeat this option to modify multiple attributes at the same time, or to specify multiple values for the same attribute.

A “+” before the attributename indicates adding the value to the current list of attributes.

-d domain

The fully qualified domain name of the group (for example, The default is the local domain. If -d is not specified, the domain specified by -n is used.

-f ldap-filter

Creates dynamic groups. 

Setup the LDAP filter by specifying an attribute or a combination of attributes. 

Multiple -f commands can be specified to define many LDAP filters for members of a group.

-h, -?

Prints command usage syntax. 

-i inputfile

Reads the command information from a file instead of the command line. 

-m internal -member

User ID of the internal members added to this group. To add more than one member, use multiple -m options.

This options should be used to create static groups. 

-p AM port

Specifies an alternate TCP port where the Access Manager is listening. If not specified, the default AM port is used, or Port 80 is used if no default was configured at install time.

-X AM host

Specifies the host on which the Access Manager is running. If not specified, the default AM host is used, or the localhost if no default was configured at install time.


Use SSL (Secure Socket Layer) to connect to the Access Manager. 


Enable debugging output. 


Prints information about the utility and its version. 

-S service

Specifies the services to be added to the Group. 

service can have the value of a single service or multiple services.The valid service values are mail and cal. These values are case-insensitive.

The list of services is separated by the comma (,) delimiter. 

For Example: 

-S mail,cal

The following options are only allowed if the -S mail option is specified:


-H mailhost

The mail host to which this group responds (for example, The default is the local mail host.

-E email

The email address of the group. 

-M external-member

User ID of the external members added to this group. To add more than one member, use multiple -M options.

-o owner

The group owner’s email address. An owner is the individual responsible for the distribution list. 

An owner can add or delete distribution list members. 

-r moderator

The moderator’s email address. 


To create a group testgroup in the domain

commadmin group create -D chris -n -w bolton -G testgroup \
-d -m -S mail -M