tklmGroupDelete

Use the tklmGroupDelete command to delete a key group. Deleting a populated key group also deletes all the keys in the key group.

Purpose

Use this command to delete a key group. Deleting a populated key group also deletes all the keys in the key group.

You cannot delete a key group that contains any keys that are assigned to a device. You must first remove the key assignments to those devices. You also cannot delete a key group that is scheduled for a future rollover. You must first delete the future rollover. You cannot delete a key group that is specified as the default symmetric key group by the value of the symmetricKeySet attribute for a device group. To delete this default group, you must first change the symmetricKeySet attribute value to a different group.

Permissions

Note: The IBM Security Key Lifecycle Manager command-line interface commands will be deprecated in the later versions of IBM Security Key Lifecycle Manager. Use the REST interfaces instead.

Your role must have a permission to the delete action and a permission to the appropriate device group.

Syntax

tklmGroupDelete -uuid uuid_value

Parameters

-uuid: Required. Specify a unique identifier for the group. For example, a key group uuid might be GROUP-7d588437-e725-48bf-a836-00a47df64e78.

Example

This Jython-formatted command deletes an existing key group and also the keys in the group.

print AdminTask.tklmGroupDelete 
	('[-uuid GROUP-7d588437-e725-48bf-a836-00a47df64e78]')