NFS Services Administrator's Guide
Configuring and Administering NIS+
Administering NIS+
Chapter 5258
To Add or Remove Members of an NIS+ Group
• To add members to an NIS+ group, type the following command on
any NIS+ client host:
nisgrpadm -a groupname group_member [group_member...]
The following example adds the host principal thyme.Wiz.Com. and
the NIS+ group tempadmin.Wiz.Com. to the group admin.Wiz.Com.:
nisgrpadm -a admin.Wiz.Com. thyme.Wiz.Com.
@tempadmin.Wiz.Com.
• To remove members from an NIS+ group, type the following
command on any NIS+ client host:
nisgrpadm -r groupname group_member [group_member...]
The following example removes the user principal amy.Wiz.Com.
and all principals in the Eng.Wiz.Com. domain from the group
admin.Wiz.Com.:
nisgrpadm -r admin.Wiz.Com. amy.Wiz.Com. *.Eng.Wiz.Com.
• To list the current members of an NIS+ group, type the following
command on any NIS+ client host:
nisgrpadm -l groupname
An NIS+ group member may take any of the following forms:
principal Any host or user principal (for example, amy.Wiz.Com.)
@group Another NIS+ group (for example,
@tempadmin.Wiz.Com.)
*.domain All principals in an NIS+ domain (for example,
*.Eng.Wiz.Com.)
You can exclude any of these types of members from a group by putting a
minus sign (-) before the member (for example, -@tempadmin.Wiz.Com.).
A user must have a Local credential in the cred table of the group’s
domain before you can add the user to the group.
NIS+ groups are not the same as the HP-UX groups stored in the
group.org_dir table or the /etc/group file. NIS+ groups are used to
determine group ownership of NIS+ objects. NIS+ objects allow certain
access permissions to their group owners. NIS+ groups are stored in the
groups_dir subdirectory of the domain directory.