Description
Use the
tacmd editUserGroup command
to edit a user group definition on the Tivoli Enterprise Portal Server.
To edit the properties of a group, the log in user must have the following
permissions on the Tivoli Enterprise Portal:
- User Administration -> Login
- User Administration -> View
- User Administration -> Modify
Note: If you want to use the current tacmd tepsLogin values
for username, password, and server hostname, do not enter any of these
options for the editUserGroup command. If you specify values
for some, but not all of these options, you are prompted to specify
the username and password if they are missing.
CLI syntax
tacmd editUserGroup
{-g|--gid} GROUPID
{-p|--property|--properties} NAME=VALUE ...
[{-u|--userid} TEPS_USERID ]
[{-w|--password} TEPS_PASSWORD]
[{-s|--server} TEPS_HOSTNAME]
[{-n|--name} NEWNAME
[{-d|--desc} NEWDESCRIPTION]
[{-f|--force}]
where:
- -g|--gid
- (required) Specifies the new Group ID to be created. The Group
ID must not contain any blank spaces characters in it. Its maximum
allowed length is 32 characters, and it must begin with "_" or "
* ".
- -p|--property
- Specifies one or more NAME=VALUE pairs that identify what information
to be changed for the user group. The valid options for NAME are:
- Permissions
- Applications
- NavigatorViews
- MemberOf
- Members
The values for the -p option must be provided within double
quotation marks. For example:
-p "Permissions=Action.View=T" "Applications=Windows OS"
Commas
can be used as a delimiter to specify more than one value for a property.
For example:
-p "Permissions=Action.View=T,Policy.View=T"
"Applications=Windows OS, Linux OS"
Use the
viewUserGroup command
to identify the possible input values for Permissions, Applications,
NavigatorViews, MemberOf, and Members. If you want to change a permission
under a different realm (namespace) from the default realm (KFW),
you must prefix the realm in the permission property, for example:
-p Permissions=KCF.Configure.View=f
If
no realm is specified, the default one is used (KFW). The viewuser command
helps to identify the possible realms for Permissions.
- -u|--userid
- Specifies an existing User ID to log in to the Tivoli Enterprise Portal
Server. The software prompts you for the User ID if you do not specify
one.
- -w|--password
- Specifies the password for user authentication. The software prompts
you for the password if you do not specify one.
- -s|--server
- Specifies the Tivoli Enterprise Portal Server
hostname from where the group details are to be edited. If not specified,
the group details are edited from the local Tivoli Enterprise Portal
Server.
- -n|--name
- Specifies the name of the group.
- -d|--desc
- Specifies the description of the group.
- -f|--force
- Edits the specified group without prompting for confirmation from
the user.
CLI example
This example edits permission,
name and description information for the group *TESTGRP.
tacmd editUserGroup –g *TESTGRP –u sysadmin –w “tivoli123”
–s HDCHASDSTC0219 –n testgrp –d testgrp
–p “Permissions=Action.view=T, Action.modify=F” –f
This
command explicitly assigns navigators, so you must ensure that you
have appended the new navigator to the list of navigators already
assigned, or the other assignments will be lost. The Tivoli® Enterprise Portal client does not receive
a refresh event notification when assignments are made through the
CLI, so a client restart is required to pick up the changes. The default
navigator appears to be the first navigator in the list assigned to
the "NavigatorViews" property. In the following example, "MyNavigator"
would be the default navigator view when the Tivoli Enterprise Portal client is restarted.
tacmd editusergroup -u sysadmin -w mypassword -i sysadmin -p
NavigatorViews=MyNavigator,Physical
Related commands
Return to Table 1.