I need to create a nested Group in eDirectory 8.8.2 FTF1 or later, using the plugins available with iManager 2.7 SP1 or later and associate a static group to it.

Note: The Nested Groups feature is available from eDirectory 8.8.2 onwards. The static group needs to be converted to a nested group, in order to associate a static group to nested group using the object class nestedGroupAux.


  1. Log in to iManager 2.7 SP1 or later with Administrator credentials.
  2. Select Groups from the leftmost panel and create a static Group SG1:

    Click to view.

    Figure 1: Creating a Static Group.

  3. Select Directory Administration ->Modify object -> Browse SG1.novell and go to “Other” tab-> Select Objectclass

    Click to view.

    Figure 2: Showing the object Class attribute to be selected.

  4. Edit Objectclass attribute -> Add nestedGroupAux.

    Click to view.

    Figure 3: Adding the nestedGroupAux value to the object class.

  5. Apply these changes and click OK.
  6. Select Groups from the leftmost panel and create a Nested Group NG1 by checking the option of Nested Group and click OK

    Click to view.

    Figure 4: Showing the NG option in iManager.

  7. Select Groups -> Modify group -> NG1.novell

    Click to view.

    Figure 5: Showing the selection Nested Group in order to associate static group to it.

  8. Select -> Nested tab -> Group Member tab -> Browse for static group SG1 and apply the changes and click on OK.

    Click to view.

    Figure 6: Showing the association of static group SG1 (converted to a nested group) to Nested group NG1.

    With this the static group (which is now converted to nested group) is made as the member of the static group using iManager.

  9. Verification:

  10. Select Groups -> Modify group -> SG1.novell

    Click to view.

    Figure 7: Showing the static group selection to verify its membership details.

  11. Select -> Nested tab -> Group Membership tab

    Click to view.

    Figure 8: Shows the membership information of SG1.

    In the above screen shot -> Static group’s membership information is shown as NG1.novell

    Note: Nested tab provides only the Group members information and the Members tab provides all the user members information.

    The below screen shot shows the usage of Members tab, to view the user members of the group.

    Click to view.

    Figure 9: Members tab showing the user members of the group.

0 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 5 (0 votes, average: 0.00 out of 5)
You need to be a registered member to rate this post.
Categories: Uncategorized

Disclaimer: As with everything else at NetIQ Cool Solutions, this content is definitely not supported by NetIQ, so Customer Support will not be able to help you if it has any adverse effect on your environment.  It just worked for at least one person, and perhaps it will be useful for you too.  Be sure to test in a non-production environment.

Leave a Reply

Leave a Comment

  • dgrunblatt says:


    Thanks for the article. Nested groups seems to work. However…

    1) Created SG1 and added myself as a user.
    2) Created NG1 and I added SG1 into it. (so far, so good)
    3) Assigned SG1 to \\server01\data01\folder with full access. Can’t get in

    Any ideas why? Thanks in advance!

By: smamatha
Mar 10, 2009
11:11 am
Active Directory Authentication Automation Cloud Computing Cloud Security Configuration Customizing Data Breach DirXML Drivers End User Management Identity Manager Importing-Exporting / ICE/ LDIF Intelligent Workload Management IT Security Knowledge Depot LDAP Monitoring Open Enterprise Server Passwords Reporting Secure Access Supported Troubleshooting Workflow