Searching the directory service from the Security Manager

If you have configured User Service to communicate with an LDAP-based directory service, you can use a search function to find the directory clients you want to identify for policy or exception assignment.

To search a directory service to retrieve user, group, and OU information:

Steps

  1. Click Search.
  2. Enter all or part of the user, group, or OU Name.
  3. Use the Type list to indicate the type of directory entry (user, group, OU, or all) that you want to find.

    In a large directory service, selecting All may cause the search to take a very long time.

  4. Use the Search for list to specify how to perform the search:
    • Select Entries containing search string to find all directory entries that contain the search term you entered.
    • Select Exact search string only to find only the directory entry that precisely matches the search term.
  5. Browse the Search Context tree to specify which portion of the directory to search. A more precise context helps to speed the search.
  6. Click Go.

    A list of search results is displayed.

    Note: If directories contain common root context names, a search will not return all expected results.
  7. Select one or more entries in search results, and then click the right arrow (>) to add each selection as a client or administrator.
    • Click New Search to enter another set of search criteria.
    • Click Browse to stop using search and instead navigate through the directory tree to identify users.
  8. When you are finished making changes, click OK to cache your changes. Changes are not implemented until you click Save and Deploy.