Add/Remove members from groups

Similar Messages

• Can't add or remove members from an exchange 2010 distribution group

  Hello.
  i have exchange 2010 SP1. When i connect to the server with administrator login in the EMC, i can't add or remove members from distribution group. I don t understand why because i am admin. I have this error : "You
  do not have sufficient permissions. This operation can be performed by a group leader"
  how i can change this. I wan t only admin can edit members group
  hanks for help

  Hi,
  If you have checked the permission, I suggest you checking the Membership Approval configuration.
  1. Closed the option “owner approval is required to join the group”
  2. Open the option “anyone can leave this group without being approved by the group owners”
  To do this, follow the details at
  http://technet.microsoft.com/en-us/library/bb125178.aspx
  Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

• CSSImport Utility - Remove Users from Groups

  We have a security group that has a few hundred users assigned to the group. When there is a need to remove a user from the group it is difficult to find the user as I have comb through the list to find the user i am trying to remove. Two questions: is there a way to sort the users in the group in Share Services? The second question is can users be removed using the CSSImport utility by specifying the "delete" option in the importexport.properties? Does the "delete" option remove the user from the secuity group and or does it delete it completely from ShareServices? (we are using Hyperion v9.3.0.1.0 Build 5)

  Hi,
  I am not so sure about the sorting but removing users from groups can be done with the CSSImportExport utility, I see you are on 9.3.0, try and get hold of the 9.3.1 version as it is backward compatible to the 9.3.0 version and more stable.
  When removing users from groups, just set your import operation to update
  import.operation=update
  and in your import csv just put the group children elements and the users you want in the group.
  #group_children
  id,group_id,group_provider,user_id,user_provider
  TestGroup,,,UserToKeepInGroup,Native Directory
  This way it will keep the users in the import file and remove the users from the group that are not in the file, also it does not remove the user from shared services only from the group.
  Ok?
  Cheers
  John
  http://john-goodwin.blogspot.com/

• Babylon - uninstalled (add/remove), deleted from search engines, register cleaned, about:config resets, homepage/browser start page reset, etc., etc. etc

  I have followed all the various methods posted here to remove Babylon. Disabled/deleted extension, uninstalled (add/remove), deleted from search option, reset about:config. deleted any folder in program file associated with Babylon, uninstalled Firefox, reset Firefox, run cc cleaner and spyware S&D. All works fine, with one exception. Even after changing homepage, BABYLON search will still launch when I reopen. HELP!
  No one from Mozilla Support can help? What the....

  In the default php.ini is set open_basedir which limits work with php only to few directories (and directories bellow them). There is set /srv/http, /home,/tmp and /usr/share/pear by default.
  To allow your vhost you should add /data/www or set empty value.

• Removed user from group, user no longer has access to documents even though user is owner of documents

  I'm running a server 2012 std domain and I'm in the process of rebuilding our fileserver after we had some pretty serious permission issues. Bad permissions (Everyone had full access to user documents share) were migrated when we move to the new server and
  then by some strange Monday morning freak out all users lost access to their documents. I restored from backups, redirected everyone's folders back to local computer and started to reconfigure the share permissions. I moved our administration group back to
  the server after securing proper permissions for folder redirection (permissions copied from https://technet.microsoft.com/en-us/library/jj649078.aspx?f=255&MSPPError=-2147217396 table 1, only difference is instead of creating a new security group
  for redirection users, I used the everyone group) to test and everything went perfectly. The GPO created the users folders under the root and redirection was good to go. Along with that, other users cannot access other users documents anymore which was the
  intended outcome. 
  Last night I was looking at security groups and see that our administration group (back office group: accounting, HR, etc..) was a member of the domain admins. I removed them from the domain admins group and added them to the administrators group (they do
  need regular admin access) then went on like normal. This morning, all users in that group can no longer access their documents on the server. I immediately think that permissions were broken again and started to get angry, but then realize that all the files
  are still accessible on the server (no lost permissions like before) and the user is still shown as the owner with full permissions, but the files are inaccessible to those users. I re-added them to the domain admins group, logged out, logged back in and documents
  are back and accessible by the user. Remove them from the domain admins group, log out, log back in and the documents are inaccessible again. Re-add to the domain admins group and back to normal. 
  Which leads me to now. If the users are part of the domain admins group, they have access to their files. If they are removed from the domain admins group, they lose access. When they lose access, they are still the owners of the files/folders with full
  permissions, yet they can't access their documents. Also, just to add, the domain admins group has no specified permissions on the files or folders. See screenshots below..
  Here is the root share. 
  And the user's desktop folder. The folder is owned by the user with full permissions. This is the folder the redirection GPO created.
  Any ideas why removing the group from domain admins would drop access to their files? They are still the owners of the files and should have full access but they don't. Is there something I'm not seeing here?

  Effective Access shows the user has full control of the Desktop folder
  This is a problem with the Effective Access tab when using CREATOR OWNER.  As you have noticed, the user doesn't really have the access that the tab says it does.  This is because of how CREATOR OWNER works.
  CREATOR OWNER is only evaluated when a file/folder is created. 
  IF a user can create a file/folder, then the permissions assigned to CREATOR OWNER are copied to a new permissions entry for that user.
  To see this:
  Logon as an administrator and create a file in the Desktop folder in your screenshot.
  Examine the permissions of the new file.
  You'll see that there is a new entry for the account you logged on with.
  CREATOR OWNER is gone.  CREATOR OWNER would still be there if you created a folder (because of "subfolders and files").
  In the Desktop folder (in your screenshot), only SYSTEM and Administrator can create/access files.
  To fix this, you need to grant the users the ability to list the directory contents and create new files/folders.  This corresponds with the suggestion of Table 1 in the document you found.
  I see what you're saying about Administrators domain group. I'll just add them as local admins via GPO and that should solve that issue. 
  No, scary!  This will grant those users administrative permission on your server.  They will be able to see any file anywhere on that server.
  If your goal is to provide a place that is private for each user, then the simplest approach is to grant each user permission to their own folder.  Like this for Test User:
  Notes for above:
  I set the user's permission to Modify because there is no good reason why the user should change these permissions
  The owner of this folder is unimportant.  I leave it set to Administrators
  You can, and I do, remove CREATOR OWNER.  It adds no value in this situation and just causes confusion.
  As for the second screen shot, the *-Admins folder is the root to which Everyone has special permissions on and can create folders. The folder for M* was created by the GPO, which makes M* the owner to which they have Full control of subfolders and files.
  The GPO also created the Desktop folder, giving owner full permissions of subfolders and files. Inside the Desktop folder, permissions remain Full control for owner for subfolders and files. Even if it was the case that they only had permissions on subfolders
  and files, wouldn't each subfolder under that one be considered a subfolder and file of the top folder?
  If this works as you say, then Yes, it should work.  But, I don't see the entries for use M*.  Remember, there should be entries for the M* user that is a duplicate of CREATOR OWNER.
  I suspect that Group Policy is creating the directories (elevated) and then changing the owner to M* afterward.  This does not duplicate the CREATOR OWNER entries as needed.  If this is the case, I consider it a flaw because your permissions do
  not allow user M* to create files/folders, and group policy shouldn't bypass security.
  I'm not saying your wrong, I'm just curious why the technet article would advise Creator/Owner giving full control of subfolders and files only if that were not correct. I can add the permissions for the users easily, I just don't see why I need to give
  explicit permissions to access something when the GPO created those folders for me, which Microsoft recommends you allow. If the GPO can create folders and the folders are owned by the user, then the user can obviously add/create/modify/view those files and
  folders. 
  When I restored the data, no permission were reset. Permissions were restored to the wonky version where the Everyone group has full access to everything. Ownership of the files/folders remained the same.
  A couple things:
  The article instructed the use of Folder Redirection Users group that had permissions to create files.  Your examples didn't have that.  Because of this, your user could create new files.
  The article assumes that the directories you are creating will be empty.  Existing files will be unreadable to everyone except Admins.
  If you follow the directions in the article, then anyone in the Folder Redirection Users group can write files to anyone else's directory.
  One benefit of the document's approach is that all the users could be redirected to the same folder using the article, and it would work.  A benefit, I guess.
  But, I like my user's separate and unable to see each other's files -- at all.  This is why I recommend replacing CREATOR OWNER with the specific user.
  I believe this document is a "how to get it done" document, not necessarily a best practices document.  I see it as a starting point, and that's why I didn't follow it exactly.
  Lastly, CREATOR OWNER permissions are useful but confusing.  I avoid them unless I have the rare circumstance where they are perfect.
  When I restored the data, no permission were reset. Permissions were restored to the wonky version where the Everyone group has full access to everything. Ownership of the files/folders remained the same.
  To summarize:
  In the user's directory, you need to provide permission to list and create new files/folders, and you need grant the user permission to the existing files.
  -Tony

• Remove tasks from group to-do list

  Hi all,
  I have been testing my workflow and have terminated all of my test processes. Now some of the tasks are still present in the Group list I can not grab them and add them to my own to-do list anymore.
  How can I remove them from the Group to-do list?
  Sincerely
  Kim Christensen

  You can terminate them from the adminui under Services/Process Management/Process Management.
  Jasmin

• To remove user from Group

  I created a new user account from SSH connection to our cluster. The user belongs to two groups by default: nobody and wheel. I tried to delete him from the two group by using dscl command, I got the following error:
  /NetInfo/root/Groups > delete wheel GroupMembership ryan
  <main> attribute status: eDSAttributeNotFound
  /NetInfo/root/Groups > read wheel
  AppleMetaNodeLocation: /NetInfo/root
  GeneratedUID: ABCDEFAB-CDEF-......
  GroupMembership: root
  Password: *
  PrimaryGroupID: 0
  RealName: System Group
  RecordName: wheel
  RecordType: dsRecTypeStandard:Groups
  SMBSID: ......
  I would like to know how to remove him from the two groups. Thank you very much.
  Apple Cluster   Mac OS X (10.4.3)  

  I had to update the code to the following because Get-SPUser was not working properly:
  $url = "https://sharepointdev.spfarm.spcorp.com/sites/desitecoll"
  $userName = "spfarm\spprofileimport";
  $site = New-Object Microsoft.SharePoint.SPSite($url)
  $web = $site.OpenWeb()
  $siteGroups = $web.Groups;
  Clear-Host
  $mySiteGroups = @();
  foreach($group in $siteGroups)
  Write-Host $group
  $mySiteGroups += $group;
  }#foreach
  $members = $web.Groups[$mySiteGroups[0]];
  $owners = $web.Groups[$mySiteGroups[1]];
  $visitors = $web.Groups[$mySiteGroups[2]];
  #Convert the user name to an SPUser account
  $spUser = $web.Site.RootWeb.EnsureUser($userName);
  Write-Host $spUser.ID
  Remove-SPUser -Identity $spUser -Web $url -Group $owners
  $web.Update();
  $web.Dispose();
  Write-Host "User " $userName "removed from " $owners
  Was I not using Get-SPUser correctly?

• Add/remove applications from cisco secure desktop

  Is there anyway to add and remove applications on the actual desktop of the CSD? I have a client that would like to remove IE from the desktop and add a shortcut to RDP. Is this possible. I have a feeling it isn't, I figured I'd ask.
  TIA,
  Dan

  Whilst it may not be your fault I am afraid it appears that your post is on a forum which is not the best for your OS. It will save the time of the unpaid volunteers here, and may resolve your issue faster, if you could examine the list below and see if there is a more appropriate forum to which you could direct your question.
  OS X 10.9 Mavericks
  OS X 10.8 Mountain Lion
  OS X 10.7 Lion
  OS X 10.6 Snow Leopard
  OS X 10.5 Leopard
  OS X 10.4 Tiger
  OS X 10.3 and earlier
  OS 9, OS 8 & System 7
  OS X Technologies
  OS X Server
  iPad
  iPhone
  iPod
  Other

• Remove user from group with MaxL

  hello,is it possible to remove a user from all groups he belongs to without knowing these groups?I want to execute a command such as "alter user my_user remove from ALL_GROUPS;"thanks for your help/

  Not sure if it's feesible, but you could use the 'drop user' command to remove the user from the system, which would of course remove them from all groups, then use the 'create user' command to recreate the user and reassign them to the proper groups.Good luck

• Can you remove members from the outline using ESSCMD?

  The product line dimension in my cube looks something like this:Product Line Product 1 Product 2 Service Parts Part 1 Part 2 etc.I have an automated script which builds the product line dimension, loads a new data set, and does a CALC ALL to roll up Part 1, Part 2, etc., into Service Parts. Once that rollup has occurred, I want to remove Part 1, Part 2, etc., from the outline, but I have not found a way to do that from ESSCMD. Is there a way I can automate the removal of members from a dimension?Any hints or suggestions are greatly appreciated.-jimb

  You could create a new dimension build file for your products dimension but only down to the service parts level. then use a load rule with the remove unspecified box checked on the Dimension build setting tab. This shold cause a restructure of the database, hopefully your product dimension is sparse.Good LuckGlenn UrbanDirector of consultingVision BIA, LLC630.873.3165

• Cisco Prime 2.1, Removing Subgroup from Group in the Device Work Centre

  Hi All,
  I am having trouble removing a Device Group from within a Group in Cisco Prime.
  In short, there is a group called 'Cisco 3850 Series Ethernet Stackable Switch' which exists under both the 'Wireless Controller' group and the 'Switches and Hubs' group. I want to remove it from the 'Wireless Controllers' group as we are not using the controller functionality of the deivce.
  Can anyone help on this issue?
  Thanks,
  Cameron

  Hi TD,
  I would suggest you to take both the backup ::
  Application and appliance backups
  Prime Infrastructure creates two types of backups:
  Application backups: These contain all Prime Infrastructure application data, but do not include host-specific settings, such as the server hostname and IP address.
  Appliance backups: These contain all application data and host-specific settings, including the hostname, IP address, subnet mask, and default gateway.
  Note that:
  Application and appliance backups can be taken from both virtual and hardware appliances.
  Either type of backup can be restored to the same or a new host, as long as the new host has the same hardware and software configuration as the host from which the backup was taken.
  You can only restore an application or appliance backup to a host running the same version of the Prime Infrastructure server software as the server from which the backup was taken.
  You cannot restore an application backup using the appliance restore command, nor can you restore an appliance backup using the application backup command.
  refer the below links::
  http://www.cisco.com/c/en/us/td/docs/net_mgmt/prime/infrastructure/2-2/administrator/guide/PIAdminBook/backup_restore.html#10347
  http://www.cisco.com/c/en/us/td/docs/net_mgmt/prime/infrastructure/2-2/administrator/guide/PIAdminBook/backup_restore.html#72460
  Thanks-
  Afroz
  ***Ratings Encourages Contributors ****

• Remove buddy from group

  Hi,
  I've got iChat 3.1.9 and have an issue where my buddies are showing up in multiple groups. So they are showing up in my Family group as well as my Buddies group and I can't figure out how to remove them from one of the groups without removing them from iChat entirely. Is there an easy way to fix this? Maybe a setting in Address Book or something I'm missing? Thanks so much.
  -NifflerX

  Hi,
  Drag them from the group they appear in to the Group you want them to be in (even if already there)
  You probably used a Modifier key (Shift or the Apple Key) to Move + duplicate the Buddy in different groups before.
  7:49 PM Sunday; October 11, 2009
  Please, if posting Logs, do not post any Log info after the line "Binary Images for iChat"

• How do I add/remove programmes from computer.It is an OSX 10.7.5

  How do I add/remove programmes on my OSX 10.7.5 please

  Sorry its not an ipad it is a desktop computer

• Removing Members from Excel Add-in (or Smartview) Member Selection Options

  The users of my system have write access to some scenarios, read access to others, and no access to the rest. I would like the Scenarios for which the users have no access to not show up in the member selection options in Excel Add-in (similar to how they will not show up in Forms). Our security settings obviously prevent them from seeing the data itself, but we don't want them to see certain Scenarios at all (even the member names). We've dealt with this issue in Financial Reporting by manually specifying what the POV options are, but we can't do the same with Excel Add-in or Smartview.
  Is this possible, or are these Add-ins just not smart enough to interpret the security?

  I sugget you look at metaread filters. they would prevent users from seeing members they don't have access to (one exception is they might see parents they don't have access to if they are required to navigate to the hierarchy they do have access to

• Problem removing bundles from group with ZLMAN

  I am having trouble removing a bundle from a bundlegroup with the zlman utility. The syntax I am using seems correct and the groups and bundle name are also.
  Here is the command and it's output from the command with the debug option: (if I use a bogus name for the package the output will tell me that the bundle was removed successfully :-)
  This ZLM72IR2 with Hot-Patch 3
  Any ideas?
  Thanks
  command:
  zlman bgr -U administrator -P xxxxxx -V -d Patches/Servers/sles10-sp1/Pre-Prod-security patch-slesp1-yast2-core-4623_SLES10-SP1-Updates
  output:
  com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIFault={_Message=An error occurred while trying to remove the grouping data.,_Type=5}
  at sun.reflect.NativeConstructorAccessorImpl.newInsta nce0(Native Method)
  at sun.reflect.NativeConstructorAccessorImpl.newInsta nce(NativeConstructorAccessorImpl.java:39)
  at sun.reflect.DelegatingConstructorAccessorImpl.newI nstance(DelegatingConstructorAccessorImpl.java:27)
  at java.lang.reflect.Constructor.newInstance(Construc tor.java:274)
  at java.lang.Class.newInstance0(Class.java:308)
  at java.lang.Class.newInstance(Class.java:261)
  at com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIFaultMarshaler.deserialize(CoreAPIFaultMarsh aler.java:35)
  at com.sssw.jbroker.web.soap.LiteralEncodingStyle.rea dObject(LiteralEncodingStyle.java:433)
  at com.sssw.jbroker.web.soap.LiteralEncodingStyle.rea dObject(LiteralEncodingStyle.java:410)
  at com.sssw.jbroker.web.soap.LiteralEncodingStyle.rea dObject(LiteralEncodingStyle.java:372)
  at com.sssw.jbroker.web.core.InputStreamImpl.readObje ct(InputStreamImpl.java:278)
  at com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIBinding_Stub.removeMembers(CoreAPIBinding_St ub.java:2682)
  at com.novell.zenworks.zlman.commands.Commands.groupR emove(Commands.java:598)
  at com.novell.zenworks.zlman.commands.BundleCommands. execute(BundleCommands.java:1286)
  at com.novell.zenworks.zlman.ZLMan.main(ZLMan.java:28 0)
  Caused by: com.sssw.jbroker.web.portable.ApplicationException
  at com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIBinding_Stub.removeMembers(CoreAPIBinding_St ub.java:2689)
  ... 3 more
  [5] Fatal Error: An error occurred while trying to remove the grouping data.

  brunold,
  I created a bundlegroup called Testbundle directly under the /Bundles container and tried to remove a couple of different patches. The results were the same. My server is SLES10SP2 64-bit by the way.
  Thanks,
  Frank
  zlman bgr -U administrator -P dnctl2RA -V -d Testbundle patch-slesp1-915resolution-4728_SLES10-SP1-Updates
  com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIFault={_Message=An error occurred while trying to remove the grouping data.,_Type=5}
  at sun.reflect.NativeConstructorAccessorImpl.newInsta nce0(Native Method)
  at sun.reflect.NativeConstructorAccessorImpl.newInsta nce(NativeConstructorAccessorImpl.java:39)
  at sun.reflect.DelegatingConstructorAccessorImpl.newI nstance(DelegatingConstructorAccessorImpl.java:27)
  at java.lang.reflect.Constructor.newInstance(Construc tor.java:274)
  at java.lang.Class.newInstance0(Class.java:308)
  at java.lang.Class.newInstance(Class.java:261)
  at com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIFaultMarshaler.deserialize(CoreAPIFaultMarsh aler.java:35)
  at com.sssw.jbroker.web.soap.LiteralEncodingStyle.rea dObject(LiteralEncodingStyle.java:433)
  at com.sssw.jbroker.web.soap.LiteralEncodingStyle.rea dObject(LiteralEncodingStyle.java:410)
  at com.sssw.jbroker.web.soap.LiteralEncodingStyle.rea dObject(LiteralEncodingStyle.java:372)
  at com.sssw.jbroker.web.core.InputStreamImpl.readObje ct(InputStreamImpl.java:278)
  at com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIBinding_Stub.removeMembers(CoreAPIBinding_St ub.java:2682)
  at com.novell.zenworks.zlman.commands.Commands.groupR emove(Commands.java:598)
  at com.novell.zenworks.zlman.commands.BundleCommands. execute(BundleCommands.java:1286)
  at com.novell.zenworks.zlman.ZLMan.main(ZLMan.java:28 0)
  Caused by: com.sssw.jbroker.web.portable.ApplicationException
  at com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIBinding_Stub.removeMembers(CoreAPIBinding_St ub.java:2689)
  ... 3 more
  [5] Fatal Error: An error occurred while trying to remove the grouping data.
  zlmprd1:/var/opt/novell/zenworks/scripts/movepatches # zlman bgr -U administrator -P dnctl2RA -V -d Testbundle patch-slesp1-915resolution-4728_SLES10-SP1-Updates
  com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIFault={_Message=An error occurred while trying to remove the grouping data.,_Type=5}
  at sun.reflect.NativeConstructorAccessorImpl.newInsta nce0(Native Method)
  at sun.reflect.NativeConstructorAccessorImpl.newInsta nce(NativeConstructorAccessorImpl.java:39)
  at sun.reflect.DelegatingConstructorAccessorImpl.newI nstance(DelegatingConstructorAccessorImpl.java:27)
  at java.lang.reflect.Constructor.newInstance(Construc tor.java:274)
  at java.lang.Class.newInstance0(Class.java:308)
  at java.lang.Class.newInstance(Class.java:261)
  at com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIFaultMarshaler.deserialize(CoreAPIFaultMarsh aler.java:35)
  at com.sssw.jbroker.web.soap.LiteralEncodingStyle.rea dObject(LiteralEncodingStyle.java:433)
  at com.sssw.jbroker.web.soap.LiteralEncodingStyle.rea dObject(LiteralEncodingStyle.java:410)
  at com.sssw.jbroker.web.soap.LiteralEncodingStyle.rea dObject(LiteralEncodingStyle.java:372)
  at com.sssw.jbroker.web.core.InputStreamImpl.readObje ct(InputStreamImpl.java:278)
  at com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIBinding_Stub.removeMembers(CoreAPIBinding_St ub.java:2682)
  at com.novell.zenworks.zlman.commands.Commands.groupR emove(Commands.java:598)
  at com.novell.zenworks.zlman.commands.BundleCommands. execute(BundleCommands.java:1286)
  at com.novell.zenworks.zlman.ZLMan.main(ZLMan.java:28 0)
  Caused by: com.sssw.jbroker.web.portable.ApplicationException
  at com.novell.zenworks.zlman.services.coreapi.admin.C oreAPIBinding_Stub.removeMembers(CoreAPIBinding_St ub.java:2689)
  ... 3 more
  [5] Fatal Error: An error occurred while trying to remove the grouping data.