Sun Java System Delegated Administrator 6.4 Administration Guide

commadmin group modify

The commadmin group modify command changes the attributes of a single group that already exists in the Access Manager. To change the attributes of multiple groups, use the -i option.

A mailing list is one type of group. When a message is sent to the group address, Access Manager sends the message to all members in the group.

Syntax

commadmin group modify -D login -G groupname -n domain -w password
   [-A [+|-]attributename:value] [-d domain] [-f [action]ldap-filter] [-h] [-?]
   [-i inputfile] [-m [+|-]internal-member] [-p AM port] [-s] [-v] [-V] [-X AM host]
   [-S mail [-o owner] [-E email] [-H mailhost] [-M external-member] [-r moderator]
   [-a true|false ] [-b true|false ] [-c group id]
   [-j DWPHost] [-q secondary owner] [-t time zone]

Options

The following are mandatory options:

Option  

Description  

-D login

The user ID of the user with permission to execute this command. 

-G groupname

The name of the group to be modified. For example, mktg-list.

-n domain

The domain of the user specified by the -D option.

-w password

The password of the user specified by the -D option.

The following are non-mandatory options:

Option  

Description  

-A [+ | -]attributename:value

An attribute to modify. The attributename is defined in the LDAP schema and value replaces any and all current values for this attribute in the directory. Repeat this option to modify multiple attributes at the same time, or to specify multiple values for the same attribute.

A “+” before the attributename indicates adding the value to the current list of attributes. A “-” indicates removing the value. If the “-” is used, it must be preceded by two backslashes or enclosed in quotes if the command is specified on the command line. If the option is provided within an input file, one backslash must precede the “-” sign.

-d domain

The domain of the group. If -d is not specified, the domain specified by the -n option is used.

- f [action] ldap-filter

Indicates whether a ldap filter is added to or removed from the group 

A “+” before the ldap-filter indicates that it is to be added to the existing filters. A “-” indicates removing the existing filter. Type -f-* to remove all the filters. If the “-” is used, it must be preceded by two backslashes or enclosed in quotes if the command is specified on the command line.

If action is not specified, by default the filter is added provided it is not already present. Otherwise an error message is displayed.

-h, -?

Prints command usage syntax. 

-i inputfile

Reads the command information from a file instead of the command line. 

-m [action] internal -member

Indicates whether to add or remove an internal member. 

The value of internal-member is either a mail address or user ID.

An action value of:

+ adds the member to an existing list of internal members. 

- removes the member from an existing list of internal members. If the “-” is used, it must be preceded by two backslashes or enclosed in quotes if the command is specified on the command line. 

-m-* removes all the internal members.

-p AM port

Specifies an alternate TCP port where the Access Manager is listening. If not specified, the default AM port is used, or Port 80 is used if no default was configured at install time.

-s

Use SSL (Secure Socket Layer) to connect to the Access Manager. 

-v

Enable debugging output. 

-V

Prints information about the utility and its version. 

-X AM host

Specifies the host on which the Access Manager is running. If not specified, the default AM host is used, or the local host if no default was configured at install time.

-S service

Specifies the services to be added to the group during modification. Before a service is added, Delegated Administrator validates whether the service already exists. If the service exists, an error message is displayed. 

service can have the value of a single service or multiple services. The valid service values are mail and cal. These values are case-insensitive.

The list of services is separated by the comma (,) delimiter. 

For Example: 

-S mail,cal

If the -S mail option is specified, the following options are allowed:

Option  

Description  

-o owner

The group owner’s email address. An owner is the individual responsible for the distribution list. 

An owner can add or delete distribution list members. 

(This option is also allowed, and is mandatory, when the -S cal option is specified.)

-E email

The email address of the group. (This option is also allowed when the -S cal option is specified.)

-H mailhost

The mail host to which this group responds (for example, mailhost.varrius.com). The default is the local mail host.

-M external-member

Adds an external member to this group. The value of external-member is the user email address. To add more than one member, use multiple -M options.

-r moderator

The moderator’s email address. 

If the -S cal option is specified, the following option is mandatory:

Option  

Description  

-o owner

The group owner’s email address. An owner is the individual responsible for the Calendar group's distribution list. An owner can add or delete distribution list members. 

The group owner must have Calendar service. 

(This option is also allowed when the -S mail option is specified.)

If the -S cal option is specified, the following non-mandatory options are allowed:

Option  

Description  

-a true|false

Allows or disallows calendar appointments to be accepted automatically. 

true enables automatic acceptance of appointments.

false disables automatic acceptance of appointments.

-b true|false

Allows or disallows calendar appointments to be double-booked, permitting more than one appointment at the same time. 

true enables double-booking of appointments.

false disables double-booking of appointments.

-c group id

Specifies a group ID for the Calendar group. If this option is not specified, Delegated Administrator automatically supplies a group ID. 

-E email

The email address of the group. This address is used to notify group members of Calendar events. 

(This option is also allowed when the -S cal option is specified.)

-j DWPHost

The DNS name of the back-end calendar server which hosts this Calendar group's calendar. This host is the Database Wire Protocol (DWP) server that stores the calendar and its data. 

If the DNS name of the back-end calendar server is not specified, the value stored in the ics.conffile of the server is used as the default value.

-q secondary owner

The secondary owner’s email address. A secondary owner can manage the Calendar group's distribution list.  

To add more than one secondary owner, use multiple -q secondary owner options.

All secondary owners must have Calendar service. 

-t time zone

The time zone used to display the Calendar group's calendar in the calendar’s user interface. 

See Calendar Time Zone Strings for a list of the valid time zone strings.

Examples

To remove an internal member (jsmith) from the group testgroup within the domain varrius.com:


commadmin group modify -D chris -d varrius.com -G testgroup -n sesta.com \
-w bolton -m \\-jsmith

To add Calendar service to the group testgroup within the domain varrius.com:


commadmin group modify -D chris -d varrius.com -G testgroup -n sesta.com \
-w bolton -S cal -o achiko@varrius.com -c calgroup1