Notes/Domino’s security model uses groups to define user access in many places – e.g. the database ACLs. There maybe mailing lists defined by groups as well. If an administrator uses a lot of groups, it’s important to know to which group(s) a particular user belongs.
Is there a problem?
If no nested groups are used, the answer to this question is easy. Open the Domino Directory, switch to the ‚Groups‘ view and do a search on the users name. The result of that search shows all group documents containing the users name – not nessesary stored in the ‚Group Members‘ field, the name may also be contained in the fields ‚Owner(s)‘ or ‚Administrator(s)‘. But you sure will find the right groups.
There is a problem!
If groups are nested (one group is a member of another group which is a member of another group which…), a simple search will not not show all memberships for a user.
– John Doe is a member of ‚Group A‘
– ‚Group A‘ is a member of ‚Group All‘
A simple search will only find the ‚Group A‘ document.
And there is a solution
Starting from Notes R5, there is a build-in tool in the Administration Client available.
Start the Administration Client an select the ‚People & Groups‘ tab.
Select ‚Groups‘ in the left navigation pane.
Select ‚Tools‘ -> ‚Groups‘ -> ‚Manage‘ on the right side.
The following dialog is shown.
Select a particular user in the left listbox and set the option ‚Show me‘ to ‚Only member hierarchies‚. Now you see all the related groups on the right listbox – including the nested-group-memberships. Expand an entry to see the nested groups.
Notes/Domino Version: ab 5.x
- IBM’s Lotus Notes/Domino Admin Tools v1.0
- Known limitations of Notes and Domino 7.x
- Undocumented: HTTP GZip compression for all NSF files