Share via


/i Command

Use /i to display identity information for a specified group in a deployment of Team Foundation Server.

Required Permissions

To use the /i command, you must have the View collection-level information or the View instance-level information permission set to Allow, depending on whether you are using the /collection or /server parameter, respectively. For more information, see Team Foundation Server Permissions.

TFSSecurity /i Identity [/collection:CollectionURL] [/server:ServerURL]

Parameters

Argument

Description

Identity

The identity of the user or the application group. For more information about identity specifiers, see TFSSecurity Identity and Output Specifiers.

/collection:CollectionURL

Required if /server is not used. Specifies the URL of a team project collection in the following format: http://ServerName:Port/VirtualDirectoryName/CollectionName

/server:ServerURL

Required if /collection is not used. Specifies the URL of an application-tier server in the following format: http://ServerName:Port/VirtualDirectoryName

Remarks

Run this command on an application-tier server for Team Foundation.

The /i command of the TFSSecurity command-line utility displays information about each group within the team project collection (/server) or the application-tier server (/instance). It does not display any membership information.

Examples

The following example displays identity information for the "Team Foundation Administrators" group.

Note

The examples are for illustration only and are fictitious. No real association is intended or inferred.

>tfssecurity /i "Team Foundation Administrators" /server:ServerURL 

Sample output:

Resolving identity "Team Foundation Administrators"...

SID: S-1-9-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-0-0-0-0-1

DN:

Identity type: Team Foundation Server application group
   Group type: AdministrativeApplicationGroup
Project scope: Server scope
 Display name: Team Foundation Administrators
  Description: Members of this application group can perform all privileged operations on the server.

The following example displays identity information for the Project Collection Administrators group using the adm: identity specifier.

>tfssecurity /i adm: /collection:CollectionURL

Sample output:

Resolving identity "adm:"...

SID: S-1-9-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-0-0-0-0-1

DN:

Identity type: Team Foundation Server application group
   Group type: AdministrativeApplicationGroup
Project scope: Server scope
 Display name: [DatumOne]\Project Collection Administrators
  Description: Members of this application group can perform all privileged operations on the team project collection.

The following example displays identity information for the Project Administrators group for the "Datum" project by using the adm: identity specifier.

>tfssecurity /i adm:vstfs:///Classification/TeamProject/ProjectGUID /collection:CollectionURL

Sample output:

Resolving identity "adm:vstfs:///Classification/TeamProject/ProjectGUID"...

SID: S-1-9-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-0-0-0-0-1

DN:

Identity type: Team Foundation Server application group
   Group type: AdministrativeApplicationGroup
Project scope: Datum
 Display name: [Datum]\Project Administrators
  Description: Members of this application group can perform all operations in the team project.

See Also

Other Resources

Changing Groups and Permissions with TFSSecurity

Create a Collection-Level Group

Project-Level Groups