In the list of group members displayed by the Web Interface, you can distinguish between regular and temporal group members. It is also possible to hide or display so-called pending members, the temporal members that are scheduled to be added to the group in the future but are not actual members of the group so far.
To view temporal members of a group
The list of group memberships for a particular object makes it possible to distinguish between the groups in which the object is a regular member and the groups in which the object is a temporal member. It is also possible to hide or display so-called pending group memberships, the groups to which the object is scheduled to be added in the future.
To view groups in which an object is a temporal member
The end time setting specifies when the object is to be removed from the group. This can be specific date and time or an indication that the object should not be removed from the group.
To view or modify the start or end time setting for a member of a group
The Temporal Membership Settings dialog box provides the following options:
Regular members have the Add to group and Remove from group options set to Already added and Never, respectively. You can set a particular date for any of these options in order to convert a regular member to a temporal member.
You can remove temporal group members in the same way as regular group members. Removing a temporal member of a group deletes the temporal membership settings for that object with respect to that group. As a result, the object will not be added to the group. If the object already belongs to the group at the time of removal, then it is removed from the group.
To remove a temporal member of a group
|NOTE: You can remove an object that is a temporal member of a group by managing the object rather than the group. Select the object, and then choose the Member Of command. On the Member Of page, select the group from the list and click Remove.|
You can use the Web Interface to manage directory data in Microsoft Active Directory Lightweight Directory Services (AD LDS). Similarly to Active Directory domains, directory data can be managed in only the AD LDS instances that are registered with Active Roles (managed AD LDS instances).
The application directory partitions found on the managed AD LDS instances are grouped together in the AD LDS (ADAM) container, thus making it easy to locate the AD LDS data. Each directory partition is represented by a separate container (node) so you can browse the partition tree the same way you do for an Active Directory domain.
The Web Interface supports a wide range of administrative operations on AD LDS users, groups and other objects, so you can create, view, modify, and delete directory objects, such as users, groups, containers and organizational units, in AD LDS the same way you do when managing data in Active Directory.
To browse the directory tree in AD LDS directory partitions
To manage directory data in AD LDS
On the Tree tab in the Browse pane, under AD LDS (ADAM), click the container that holds the data you want to manage.
|NOTE: In the list of objects, clicking the name of a leaf object, such as a user or group, displays a page intended to view or modify object properties; clicking a container object, such as a partition or an organizational unit, displays a list of objects held in that container.|