Show Table of Contents
13.5. Setting Search Attributes for Users and User Groups
When searching entries for a specified keyword using the
ipa user-find keyword and ipa group-find keyword commands, IdM only searches certain attributes. Most notably:
- In user searches: first name, last name, user name (login ID), job title, organization unit, phone number, UID, email address.
- In group searches: group name, description.
The following procedure shows how to configure IdM to search other attributes as well. Note that IdM always searches the default attributes. For example, even if you remove the job title attribute from the list of user search attributes, IdM will still search user titles.
Prerequisites
Before adding a new attribute, make sure that a corresponding index exists within the LDAP directory for this attribute. Most standard LDAP attributes have indexes in LDAP, but if you want to add a custom attribute, you must create an index manually. See Creating Standard Indexes in the Directory Server Administration Guide.
Web UI: Setting Search Attributes
- Select → .
- In the User Options area, set the user search attributes in User search fields.
- In the Group Options area, set the group search attributes in Group search fields.
- Click at the top of the page.
Command Line: Setting Search Attributes
Use the
ipa config-mod command with these options:
--usersearchdefines a new list of search attributes for users--groupsearchdefines a new list of search attributes for groups
For example:
$ ipa config-mod --usersearch={uid,givenname,sn,telephonenumber,ou,title}
$ ipa config-mod --groupsearch={cn,description}
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.