i work medium size corporation uses tfs2013.2. have 130 people access tfs. product unusual run , maintained development staff, rather pros. result of there greater fear normal may not meeting our licencing obligations.
currently, everyone, except team administrators, have permissions allocated via windows groups , added 1 of these groups licence, cal or msdn, allocated you. therefore, confident meeting our obligation. proving beyond me.
is there single place can go see has access tfs? have found dbo.tbl_identities table in configuration database, seems contain people seemingly @ random 1 or more of our domains , anyway contains people have left.
how using tfssecurity.exe list valid tfs groups , group members. you'd have clean output bit domain users should easy spot:
tfssecurity.exe /imx "team foundation valid users" /collection:http://tfs2013:8080/tfs/defaultcollection alternatively use api
teamfoundationidentity identity = gss.readidentity(identitysearchfactor.accountname, "team foundation valid users", membershipquery.expanded,readidentityoptions.none); teamfoundationidentity[] identities = gss.readidentities(identity.members, membershipquery.expanded,readidentityoptions.none); iterate through list of returned users , clever results.
Comments
Post a Comment