tklmGroupEntryDelete

Use the tklmGroupEntryDelete command to delete objects from a group. For example, you might delete a key from membership in a key group. You can delete only one object at a time. This command does not delete the key metadata and key material.

Note: The IBM Security Key Lifecycle Manager command-line interface commands will be deprecated in the later versions of IBM Security Key Lifecycle Manager. Use the REST interfaces instead.

Purpose

Use this command to delete objects from a group. For example, you might delete a key from membership in a key group. You can delete only one object at a time. This command does not delete the key metadata and key material.

Permissions

Your role must have a permission to the delete action and a permission to the appropriate device group.

Syntax

tklmGroupEntryDelete -name groupname -type {keygroup} -entry {attributevaluepair }

Parameters

-entry

Required. Specify the entry to delete from an existing group: You can include the following attributes:

type

key: The entry object is a key.

uuid

Required. Specify the Unique Universal Identifier of an entry. For example, the value might be KEY-a3ce9230-bef9-42bd-86b7-6d208ec119cf.

-name

Required. Specify a unique name of an existing group.

-type

Required. Specify the type of the specified group.

keygroup: The group contains keys.

Example

This Jython-formatted command removes a specific key from membership in an existing group named GROUP-myKeyGroup.

print AdminTask.tklmGroupEntryDelete ('[-entry "{type key} 
 {uuid KEY-a3ce9230-bef9-42bd-86b7-6d208ec119cf}" 
   -name GROUP-myKeyGroup -type keygroup]')