Use /im to display direct membership identity information for a specified group.
To use the /im command, you must be a member of the Team Foundation Administrators security group. For more information, see Team Foundation Server Permissions.
TFSSecurity /im identity /server:servername
Specifies the identity of the user or the group. For more information about the identity specifiers, see TFSSecurity Identity and Output Specifiers.
Required. Specifies the name of the application tier server.
Run this command on the local application tier computer.
TfsSecurity /im displays the direct members of the specified group only. This includes other groups that are members of the specified group. However, the actual members of the member groups are not listed.
The following example displays direct membership identity information for the "Team Foundation Administrators" group.
>tfssecurity /im "Team Foundation Administrators" /server:MyServer
Resolving identity "Team Foundation Administrators"... SID: S-1-9-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-XXXXXXXXXX-0-0-0-0-1 DN: Identity type: Team Foundation Server application group Group type: AdministrativeApplicationGroup Project scope: Server scope Display name: Team Foundation Administrators Description: Members of this application group can perform all privileged operations on the server. 4 member(s): [G] MyLocation\Cwin (Coho Winery) [U] MyLocation\ajesper (Aaberg, Jesper) [G] BUILTIN\Administrators s [A] [SERVER]\Service Accounts Member of 1 group(s): e [A] [SERVER]\Team Foundation Valid Users