Manualshelf

OSF DCE Administration Guide--Core Components

ManualsBrandsHP ManualsServerHP NonStop G-Series
391392393394395396397398399400
OSF DCE Administration Guide—Core Components
The next example shows the organization delete command being used to delete the
organization classic:
dcecp> organization delete classic
Note that you can delete multiple groups or organizations with a single group delete
or organization delete command by including the names to delete in braces and
separated by spaces just as you would to delete multiple principals.
30.8 Maintaining Membership Lists
Each group or organization has a membership list, which lists the principals that are
members of the group or organization. Use the dcecp group add command to add
members to the membership list and the dcecp group remove command to remove
members from the list.
If you delete a member from a group or organization, any accounts for the deleted
member that are associated with the group or organization are also deleted. For
example, if you delete the principal mahler from the group symphonists, the account
mahler symphonists classic is also deleted.
Note that the deleting of a principal from a group or organization can affect the
principal’s rights to objects. This change takes effect only when the principal’s
ticket-granting ticket is renewed. See Chapter 31 for more information on ticket
renewals.
30.8.1 Effects of Account Creation on Membership Lists
When you create accounts, the principal for whom the account is created must be a
member of the group or organization that is named in the account. For example, if you
create the account mahler symphonists classic, the principal mahler must be a
member of the symphonists group and the classic organization.
The dcecp command recognizes this requirement and, if you have the permissions to
add to the group or organization, tries to add the principal to the group and
organization. For example, assume that the principal mahler is not a member of either
the group symphonists or the organization classic. If you have the proper permissions
when you create the account mahler symphonists classic, the account create
command automatically adds mahler to the symphonists and classic membership lists
so that you can create the account in one step.
However, if you do not have the required permissions, the command fails and displays
a message like the following:
Not authorized to perform operation
30 18 Tandem Computers Incorporated 124243