#!/bin/bash
# remove group for Kerberos/LDAP/NFS4
# paul@vandervlis.nl

# get variables
. /usr/local/sbin/variables

# ask group when not on commandline:
if test "$1" = ""; then
  read -p "Groupname: " group
else
  group=$1
fi
if test "$group" = ""; then
  echo no group.
  exit
fi

# remove from ldap:
ldapdelete -xvD "cn=admin,$ldaproot" -w "$ldappw" "cn=$group,ou=groups,$ldaproot"

# nscd restart   
service nscd restart > /dev/null

# log
echo "`date` removed group $group" >> /var/log/au.log