-
Notifications
You must be signed in to change notification settings - Fork 91
Home
Georg Henzler edited this page Oct 20, 2016
·
11 revisions
https://github.com/Netcentric/accesscontroltool/blob/develop/README.md
1. How to delete old groups and their ACEs not used any more.
- If there is a one-to-one mapping from old groups to new groups (e.g. if just location or naming scheme has changed), the property "migrateFrom" can be used: https://github.com/Netcentric/accesscontroltool/blob/develop/docs/Configuration.md#group-migration
- For deleting obsolete groups, https://github.com/Netcentric/accesscontroltool/blob/develop/docs/AdvancedFeatures.md#automatically-purge-obsolete-groups-and-users-since-191 can be used
In case if you changed your access concept and you need to delete a lot of old groups placed in different hierarchical folders as well as all old groups ACEs the next way will reduce your time by doing it automatically and quickly:
- leave the old groups inside of yaml config files;
- redefine the group property "path" to the "/home/groups/oldgroups" for example;
- delete the membership from properties "isMemberOf:" and "members:" or properties themselves from configuration of old groups in the yaml config files;
- delete ACE configuration of old groups under the "- ace_config:" section;
- install the new configurations to AEM;
- trigger the 'execute' method of the AC service (all ACEs of old groups will be deleted);
- after that you can delete the old groups definition inside of yaml config files and also in AEM under "/home/groups/oldgroups" over CRXDE.