aci_find#
Search for ACIs.
Returns a list of ACIs
EXAMPLES:
To find all ACIs that apply directly to members of the group ipausers: ipa aci-find –memberof=ipausers
To find all ACIs that grant add access: ipa aci-find –permissions=add
Note that the find command only looks for the given text in the set of ACIs, it does not evaluate the ACIs to see if something would apply. For example, searching on memberof=ipausers will find all ACIs that have ipausers as a memberof. There may be other ACIs that apply to members of that group indirectly.
Arguments#
Name |
Type |
Required |
|---|---|---|
criteria |
False |
Options#
all : Flag (Required)
Default: False
raw : Flag (Required)
Default: False
aciname : Str
permission : Str
group : Str
permissions : Str
attrs : Str
type : StrEnum
Values: (‘user’, ‘group’, ‘host’, ‘service’, ‘hostgroup’, ‘netgroup’, ‘dnsrecord’)
memberof : Str
filter : Str
subtree : Str
targetgroup : Str
selfaci : Bool
Default: False
aciprefix : StrEnum
Values: (‘permission’, ‘delegation’, ‘selfservice’, ‘none’)
pkey_only : Flag
Default: False
version : Str
Output#
Name |
Type |
|---|---|
count |
Output |
result |
ListOfEntries |
summary |
Output |
truncated |
Output |