Adds an access control entry (ACE) to a group's access control set
 (ACS).

 SYNOPSIS

      ADD GROUP group-name ACCESS principal [AS GROUP]

      [FOR] access

 Arguments

 group-name

 The full name of the group.

 principal

 The principal for whom access is being added as a member of the
 group. You can specify a principal as a group name, a collection of
 principals denoted with wildcards (for example, .org.name*), or an
 individual name in the format, nodename.username. To specify a DNS
 Version 1-style principal, use the format nodename::username. The
 phrase as group indicates the specified principal is a group. You
 cannot use this phrase with wildcard principal names.

 access

 The access rights for the specified principal. Rights are read,
 write, delete, test, control, and none, and you can specify them as
 r, w, d, t, c, and non. Separate multiple rights with commas.

 Description

 This command adds an access control entry (ACE) to a group's access
 control set. Access rights are defined as follows:

 Read       The principal can look up the group by name and read any
            attribute of the group.
 Write      The principal can change any modifiable group attribute
            except the ACS.
 Delete     The principal can remove the member from the set of group
            members
 Test       The principal can check the value of any attribute of the
            group.
 Control    The principal can alter the group's ACS.
 None       The principal does not have access rights.

 ACCESS RIGHTS
 You must have control access to the group whose ACS is being
 modified.

1  –  example

 The following command grants user .sales.deneb.smith read access to
 the .DNS_admin group.

 dns> add group .DNS_admin access .sales.deneb.smith for r