/im Command

Use /im to display direct membership identity information for a specified group.

Required Permissions

To use the /im command, you must be a member of the Team Foundation Administrators security group. For more information, see Team Foundation Server Permissions.

TFSSecurity /im identity /server:servername


Argument Description


Specifies the identity of the user or the group. For more information about the identity specifiers, see TFSSecurity Identity and Output Specifiers.

/server :servername

Required. Specifies the name of the application tier server.


Run this command on the local application tier computer.

TfsSecurity /im displays the direct members of the specified group only. This includes other groups that are members of the specified group. However, the actual members of the member groups are not listed.


The following example displays direct membership identity information for the "Team Foundation Administrators" group.

>tfssecurity /im "Team Foundation Administrators" /server:MyServer

Sample output:

Resolving identity "Team Foundation Administrators"...



Identity type: Team Foundation Server application group
Group type: AdministrativeApplicationGroup
Project scope: Server scope
Display name: Team Foundation Administrators
Description: Members of this application group can perform all privileged operations on the server.

4 member(s):
  [G] MyLocation\Cwin (Coho Winery)
  [U] MyLocation\ajesper (Aaberg, Jesper)
  [G] BUILTIN\Administrators
s [A] [SERVER]\Service Accounts

Member of 1 group(s):
e [A] [SERVER]\Team Foundation Valid Users

See Also


How to: Create a Server-Level Group

Other Resources

TFSSecurity Command-Line Utility Commands
Team Project Groups