Adds an access control entry (ACE) to a group's access control set (ACS). SYNOPSIS ADD GROUP group-name ACCESS principal [AS GROUP] [FOR] access Arguments group-name The full name of the group. principal The principal for whom access is being added as a member of the group. You can specify a principal as a group name, a collection of principals denoted with wildcards (for example, .org.name*), or an individual name in the format, nodename.username. To specify a DNS Version 1-style principal, use the format nodename::username. The phrase as group indicates the specified principal is a group. You cannot use this phrase with wildcard principal names. access The access rights for the specified principal. Rights are read, write, delete, test, control, and none, and you can specify them as r, w, d, t, c, and non. Separate multiple rights with commas. Description This command adds an access control entry (ACE) to a group's access control set. Access rights are defined as follows: Read The principal can look up the group by name and read any attribute of the group. Write The principal can change any modifiable group attribute except the ACS. Delete The principal can remove the member from the set of group members Test The principal can check the value of any attribute of the group. Control The principal can alter the group's ACS. None The principal does not have access rights. ACCESS RIGHTS You must have control access to the group whose ACS is being modified.
1 – example
The following command grants user .sales.deneb.smith read access to the .DNS_admin group. dns> add group .DNS_admin access .sales.deneb.smith for r