Change groups and permissions with TFSSecurity

Visual Studio Team Foundation Server 2013

previous page next page
  Send Feedback

You can use the TFSSecurity command-line tool to create, modify, and delete groups and users in Visual Studio Team Foundation Server (TFS), in addition to modifying permissions for groups and users. For information about how to perform these tasks in the user interface, see Manage users or groups in TFS.

This server-level tool is located in Drive:\%programfiles%\Microsoft Team Foundation Server 12.0\Tools on the TFS application-tier server.

Even if you are logged on with administrative credentials, you must open an elevated Command Prompt to perform this function.

You can use the options in the following table for all commands in this utility.

Option

Description

/?

Displays the command syntax and options for TFSSecurity.

In This Section

Command set

Command

Add, remove, or view permissions assigned to a user or group

  • /a+: Add permissions for a user or a server, collection, or project-level group

  • /a-: Remove a user or group from membership in a server, collection, or project-level group

  • /acl: Display the access control list that applies to a specified object

Create, list, delete, rename, and add users to groups

  • /g: List the groups in a team project, project collection, or across TFS

  • /g+: Add a user or another group to an existing group

  • /g-: Remove a user or a group from an existing group

  • /gc: Create a project-level group

  • /gcg: Create a server or collection-level group

  • /gd: Delete a server or collection-level group

  • /gud: Change the description for a server or collection-level group

  • /gun: Rename a server or collection-level group

View information about identities and membership within groups

  • /i: Display identity information for a specified group

  • /im: Display information about the identities that compose the direct membership of a group that you specify

  • /imx: Display information about the identities that compose the expanded membership of a specified group

Check explicit and implicit group membership information

  • /m: Check explicit and implicit group membership information for a specified group or user

See Also

previous page start next page