14-14 Oracle Fusion Middleware Administrators Guide for Oracle Internet Directory Example: Creating a Static Group Entry by Using ldapadd The following example shows an LDIF file named myStaticGroup.ldif for the entry for a group named MyStaticGroup: dn: cn=myStaticGroup,c=us objectclass: top objectclass: groupOfNames member: cn=John Doe member: cn=Anne Smith The following command adds the group and members in this LDIF file to the directory: ldapadd -p 3060 -h myhost -D cn=orcladmin -q -f myStaticGroup.ldif Modifying a Static Group by Using ldapmodify To add a member to a group, the syntax of the LDIF file is: dn: DN_of_group_entry changetype: modify add: member member: DN of member entry To delete a member from a group, the syntax of the LDIF file is: dn: DN of group entry changetype: modify delete:member member:DN of member entry Issue this command to modify the file: ldapmodify -D cn=orcladmin -q -p 3060 -v -f file_name.ldif where -v specifies verbose mode. Example: Modifying a Static Group by Using ldapmodify The following example adds John Doe to a group named MyStaticGroup. As in the previous example, the data for this user entry is in the myStaticGroup.ldif file. This file contains the following: dn: cn=myStaticGroup,c=us changetype: modify add:member member: cn=John Doe Issue this command to modify the file: ldapmodify -D cn=orcladmin -q -p 3060 -v -f myStaticGroup.ldif where -v specifies verbose mode. Note: When you add or modify an entry, the Oracle directory server does not verify the existence of the entry. However, if the attribute value must contain a DN, then the directory server verifies that the DN is specified. Managing Dynamic and Static Groups 14-15 Creating a Dynamic Group Entry by Using ldapadd You can use ldapadd to create a dynamic group from the command line. Creating a Cached Dynamic Group Using labeledURI Attribute If you use the labeledURI attribute to create a cached dynamic group, then the syntax for the LDIF file is: dn: DN_of_group_entry objectclass: top objectclass: groupOfNames | groupOfUniqueNames objectclass: orcldynamicgroup labeledURI:ldap:ldap_URL member: DN of member 1 member: DN of member 2 . . . member: DN of member N Use the following command to add the group and members in this LDIF file to the directory: ldapadd -p port_number -h host -f file_name.ldif Creating an Uncached Dynamic List Using labeledURI Attribute If you use the labeledURI attribute to create an uncached dynamic list, then the syntax for the LDIF file is: dn: DN_of_group_entry objectclass: top objectclass: groupOfNames | groupOfUniqueNames objectclass: orcldynamiclist labeledURI:ldap:ldap_URL member: DN of member 1 member: DN of member 2 . . . member: DN of member N Use the same command as in the previous example to add the group and members in this LDIF file to the directory: ldapadd -p port_number -h host -f file_name.ldif Creating a Dynamic Group Using CONNECT BY String If you use the CONNECT BY string, then the syntax for the LDIF file is: dn: DN_of_group_entry objectclass: top objectclass: groupOfNames | groupOfUniqueNames objectclass: orclDynamicGroup orclConnectByAttribute:attribute_name orclConnectByStartingValue:DN_of_attribute member: DN of member 1 member: DN of member 2 .