Use this command to view a list of the groups that a group
belongs to.
Purpose
Use the getMembershipOfGroup command
to view a list of the groups that a group belongs to.
If successful,
the getMembershipOfGroup command returns a list of the unique names
for the groups that the group is a member of.
Note: If the Use global security settings option
is selected for the user realm or the Global federated
repositories option is selected as the realm type for
the specified domain, this command is executed on the federated repository
of the admin domain. However, configuration changes that are performed
on the domain are applied to the security domain-specific configuration.
Syntax
getMembershipOfGroup { -uniqueName uniqueName [-clearCache clearCacheMode] [-securityDomainName domainName] }
Parameters
- -uniqueName uniqueName
- Specifies the unique name value for the group whose group memberships
you want to view. This parameter maps to the uniqueName property in
virtual member manager.
- -clearCache clearCacheMode
- Specifies whether the repository adapter cache should be cleared
before retrieving the specified group information.
- Valid values are:
- clearEntity: Clears the cache for the specified
group, if the group exists in the cache.
- clearAll: Clears the cached information
for all of the entities in the adapter of the repository where the
specified group exists.
The values are not case-sensitive. There is no default value
for this parameter. If you do not specify a value, or specify a value
other than clearEntity or clearAll,
an error message appears.
Avoid trouble: Frequent use of this
parameter to clear the cache may result in performance degradation.
When the cache is cleared, the subsequent operation has to get the
details from the repository and update the cache with this newly retrieved
data. The impact on performance is more pronounced if you use the clearAll mode,
as this invalidates the entire cache, and the subsequent operation
takes longer to complete.
- -securityDomainName domainName
- Specifies the name that uniquely identifies the security domain.
If you do not specify this parameter, the command uses the global
federated repository.
Sample
To view the groups that the group operators
is a member of, issue this command:
$AdminTask getMembershipOfGroup {-uniqueName cn=operators,cn=groups,dc=yourco,dc=com}