13.2. Adding and Removing User or Host Groups

To add a group, you can use:

The web UI (see the section called “Web UI: Adding a User or Host Group”)
The command line (see the section called “Command Line: Adding a User or Host Group”)

IdM enables specifying a custom GID when creating a user group. If you do this, be careful to avoid ID conflicts. See Section 14.6, “Ensuring That ID Values Are Unique”. If you do not specify a custom GID, IdM automatically assigns a GID from the available ID range.

To remove a group, you can use:

The web UI (see the section called “Web UI: Removing a User or Host Group”)
The command line (see the section called “Command Line: Removing a User or Host Group”)

Note that removing a group does not delete the group members from IdM.

Web UI: Adding a User or Host Group

Click Identity → Groups, and select User Groups or Host Groups in the left sidebar.
Click Add to start adding the group.
Fill out the information about the group.
For details on user group types, see Section 13.1.4, “User Group Types in IdM”.
Click Add to confirm.

Command Line: Adding a User or Host Group

Log in as the administrator:
```
$ kinit admin
```
To add a user group, use the ipa group-add command. To add a host group, use the ipa hostgroup-add command.
```
$ ipa group-add group_name
-----------------------
Added group "group_name"
------------------------
```

By default, ipa group-add adds a POSIX user group. To specify a different group type, add options to ipa group-add:

--nonposix to create a non-POSIX group
--external to create an external group

For details on group types, see Section 13.1.4, “User Group Types in IdM”.

Web UI: Removing a User or Host Group

Click Identity → Groups and select User Groups or Host Groups in the left sidebar.
Select the group to remove, and click Delete.

Command Line: Removing a User or Host Group

Log in as the administrator:
```
$ kinit admin
```
To delete a user group, use the ipa group-del group_name command. To delete a host group, use the ipa hostgroup-del group_name command.
```
$ ipa group-del group_name
--------------------------
Deleted group "group_name"
--------------------------
```

Where did the comment section go?

Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories