Previous topic |
Next topic |
Contents |
Contact z/OS |
Library |
PDF
DELGROUP (Delete group profile) z/OS Security Server RACF Command Language Reference SA23-2292-00 |
|||||||||||||||||||||||||||||||
PurposeUse the DELGROUP command to delete a group and its relationship to its superior group from RACF®. There are, however, other places in the RACF database where the group name might appear, and DELGROUP processing does not delete these other occurrences of the group name. For example, the group name could be in the access list for any resource. You can use the RACF Remove ID utility (IRRRID00) to remove all occurrences of a group name. The DELGROUP command does not work for a UNIVERSAL group, in most cases. To delete a UNIVERSAL group, the RACF Remove ID Utility (IRRRID00) should be used. For information on using the RACF remove ID utility, see z/OS Security Server RACF Security Administrator's Guidez/OS Security Server RACF Security Administrator's Guide. Issuing optionsThe following table identifies the eligible options for issuing the DELGROUP command:
For information on issuing this command as a RACF TSO command, refer to RACF TSO commands. For information on issuing this command as a RACF operator command, refer to RACF operator commands. You must be logged on to the console to issue this command as a RACF operator command. Related commands
Authorization requiredWhen issuing this command as a RACF operator command, you might require sufficient authority to the proper resource in the OPERCMDS class. For details about OPERCMDS resources, see "Controlling the use of operator commands" in z/OS Security Server RACF Security Administrator's Guide. To use the
DELGROUP command, at least one of the following must be true:
To specify the AT keyword, you must have READ authority to the DIRECT.node resource in the RRSFDATA class and a user ID association must be established between the specified node.userid pair(s). To specify the ONLYAT keyword you must have the SPECIAL attribute, the userid specified on the ONLYAT keyword must have the SPECIAL attribute, and a user ID association must be established between the specified node.userid pair(s) if the user IDs are not identical. SyntaxFor the key to the symbols used in the command syntax diagrams, see Syntax of RACF commands and operands. The complete syntax of the DELGROUP command is:
For information on issuing this command as a RACF TSO command, refer to RACF TSO commands. For information on issuing this command as a RACF operator command, refer to RACF operator commands. Parameters
Examples
|
Copyright IBM Corporation 1990, 2014
|