How to configure MetaGroups in Rational Directory Server 5.1 to list users from different organizational units

Answer

The following procedure is used to have only a set selected users/groups in Rational Directory Server 5.1 (Corporate mode) from Corporate LDAP.

1. In Corporate LDAP, have the desired list of Users/ Groups as members of a new Group or an Existing Group.
   
   Note: You can also have two Groups, one with the desired set of Users as members and the other with the desired set of Groups.
   
   
2. Login to Rational Directory Administration tool as 'tdsadmin' user.
   
   
3. In the left pane, Expand 'Configuration' and click on 'Corporate Partition'.
   
   
4. Follow one of the below steps depending on your configuration to complete the process:

If you have an existing partition then follow the instructions given below, else go to the next section.

1. In the right pane, Right click on the listed partition and Click on 'Edit Partition'. This brings up the Partition Properties.
   
   
2. Now click on the 'Search Base Configuration' tab and Select 'Multiple Search Bases'
   
   
3. In the 'User Search Base' field and in the 'Group Search base' field, type in the Distinguished Name (DN) of the domain's Root folder of the Corporate LDAP under which all the Organization Units exist.
   
   For example, if the domain is rds.com then the distinguished name of the Root folder should be DC=rds,DC=com
   
   
4. Place a Check mark on 'Configure MetaGroup Information'
   
   
5. In the Corporate LDAP, If the Group containing the desired set of Users & Groups is same, then in the 'Users MetaGroup DN' field and 'Groups MetaGroup DN' field, type in the Distinguished Name (DN) of that Group.
   
   
6. If the Group containing the desired set of Users & Groups is different from each other, then in the 'User Search Base' field, type in the Distinguished Name (DN) of the Group containing the desired set of Users and in the 'Group Search base' field, type in the Distinguished Name (DN) of the Group containing the desired set of Groups.
   
   
7. Click on 'OK' on the Partition Properties window
   
   
8. Refresh the Rational Directory Administration window.

If you do not have an existing partition then follow the instructions below:

1. Right click on 'Corporate Partition' and click on 'Create New' -> 'Partition'. This brings up the Partition Creation Wizard.
   
   
2. Type in the Partition Name, Host Name and Port Number accordingly and click 'Next' (please refer to 'Creating Partitions' on page 26 of the RDS Product Manual for help)
   
   
3. Type in the Admin User's distinguished name (DN), Password and select the desired 'User Logon Attribute' and click 'Next'.
   
   
4. Select 'Multiple Search Bases' option.
   
   
5. In the 'User Search Base' field and in the 'Group Search base' field, type in the Distinguished Name (DN) of the domain's Root folder of the Corporate LDAP under which all the Organization Units exist.
   
   For example, if the domain is rds.com then the distinguished name of the Root folder should be DC=rds,DC=com
   
   
6. Place a Check mark on 'Configure MetaGroup Information' and Click 'Next'
   
   
7. In the Corporate LDAP, If the Group containing the desired set of Users & Groups is same, then in the 'Users MetaGroup DN' field and 'Groups MetaGroup DN' field, type in the Distinguished Name (DN) of that Group.
   
   If the Group containing the desired set of Users & Groups is different from each other, then in the 'User Search Base' field, type in the Distinguished Name (DN) of the Group containing the desired set of Users and in the 'Group Search base' field, type in the Distinguished Name (DN) of the Group containing the desired set of Groups.
   
   
8. Click on 'Next' and Click on 'Finish'.
   
   
9. Refresh the Rational Directory Administration window.