Use /i to display identity information for a specified group in a deployment of Team Foundation Server.
Required Permissions
To use the /i command, you must have the View collection-level information or the View instance-level information permission set to Allow, depending on whether you are using the /collection or /server parameter, respectively. For more information, see Permission reference for Team Foundation Server.
TFSSecurity /i Identity [/collection:CollectionURL] [/server:ServerURL]
Parameters
Argument |
Description |
|---|---|
Identity |
The identity of the user or the application group. For more information about identity specifiers, see TFSSecurity Identity and Output Specifiers. |
/collection:CollectionURL |
Required if /server is not used. Specifies the URL of a team project collection in the following format: http://ServerName:Port/VirtualDirectoryName/CollectionName |
/server:ServerURL |
Required if /collection is not used. Specifies the URL of an application-tier server in the following format: http://ServerName:Port/VirtualDirectoryName |
Remarks
Run this command on an application-tier server for Team Foundation.
The /i command of the TFSSecurity command-line utility displays information about each group within the team project collection (/server) or the application-tier server (/instance). It does not display any membership information.
Examples
The following example displays identity information for the "Team Foundation Administrators" group.
Note
The examples are for illustration only and are fictitious. No real association is intended or inferred.
>tfssecurity /i "Team Foundation Administrators" /server:ServerURL
Sample output:
Resolving identity "Team Foundation Administrators"...
SID: S-1-9-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-0-0-0-0-1
DN:
Identity type: Team Foundation Server application group
Group type: AdministrativeApplicationGroup
Project scope: Server scope
Display name: Team Foundation Administrators
Description: Members of this application group can perform all privileged operations on the server.
The following example displays identity information for the Project Collection Administrators group using the adm: identity specifier.
>tfssecurity /i adm: /collection:CollectionURL
Sample output:
Resolving identity "adm:"...
SID: S-1-9-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-0-0-0-0-1
DN:
Identity type: Team Foundation Server application group
Group type: AdministrativeApplicationGroup
Project scope: Server scope
Display name: [DatumOne]\Project Collection Administrators
Description: Members of this application group can perform all privileged operations on the team project collection.
The following example displays identity information for the Project Administrators group for the "Datum" project by using the adm: identity specifier.
>tfssecurity /i adm:vstfs:///Classification/TeamProject/ProjectGUID /collection:CollectionURL
Sample output:
Resolving identity "adm:vstfs:///Classification/TeamProject/ProjectGUID"...
SID: S-1-9-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-0-0-0-0-1
DN:
Identity type: Team Foundation Server application group
Group type: AdministrativeApplicationGroup
Project scope: Datum
Display name: [Datum]\Project Administrators
Description: Members of this application group can perform all operations in the team project.