Changes the administrators or members of a group.
chgrpmem [ { { -a | -m } { + | - | = } User ... } ] Group
The chgrpmem command changes the administrators or members of the group specified by the Group parameter. Use this command to add, delete, or set a group's members or administrators list. You cannot remove users from their primary group. A user's primary group is maintained in the /etc/passwd file. If you specify only a group with the chgrpmem command, the command lists the group's members and administrators.
To add, delete, or set a user as a group administrator, specify the -a flag. Otherwise, to add, delete, or set a user as a group member, specify the -m flag. You must specify one of these flags and an operator to change a user's group membership. The operators do the following:
+ | Adds the specified user. |
- | Deletes the specified user. |
= | Sets the list of administrators or members to the specified user. |
You can specify more than one User parameter at a time. To do this, specify a comma-separated list of user names.
See the chgroup command for a list of restrictions that apply to changing group information.
-a | Changes a group's administrators list. |
-m | Changes the group's members list. |
Access Control: All users should have execute (x) access to this command since the command itself enforces the access rights. This command should be installed as a program in the trusted computing base (TCB). The command should be owned by the security group with the setgid (SGID) bit set.
Files Accessed:
Mode | File |
x | /usr/bin/chgroup |
r | /etc/passwd |
r | /etc/group |
rw | /etc/security/group |
chgrpmem staff
/usr/bin/chgrpmem | Specifies the path to the chgrpmem command. |
/etc/passwd | Contains the basic attributes of users. |
/etc/group | Contains the basic attributes of groups. |
/etc/security/group | Contains the extended attributes of groups. |
The chfn command, chgroup command, chsh command, chuser command, lsgroup command, lsuser command, mkgroup command, mkuser command, passwd command, pwdadm command, rmgroup command, rmuser command, setgroups command, setsenv command.
For more information about the identification and authentication of users, discretionary access control, the trusted computing base, and auditing, refer to Security Administration in AIX 5L Version 5.2 System Management Concepts: Operating System and Devices.