3.7. Using an IPA command to add a user account to IdM

Procedure

1. Open a terminal and connect to the IdM server.

2. Enter the command for adding a new user:

   $ ipa user-add

   The command runs a script that prompts you to provide basic data necessary for creating a user account.

3. In the First name: field, enter the first name of the new user and press the Enter key.
4. In the Last name: field, enter the last name of the new user and press the Enter key.

5. In the User login [suggested user name]: enter the user name, or just press the Enter key to accept the suggested user name.

   The user name must be unique for the whole IdM database. If an error occurs because that user name already exists, repeat the process with the ipa user-add command and use a different, unique user name.

   After you add the user name, the user account is added to the IdM database and the IPA command-line interface (CLI) prints the following output:

   ----------------------
   Added user "euser"
   ----------------------
   User login: euser
   First name: Example
   Last name: User
   Full name: Example User
   Display name: Example User
   Initials: EU
   Home directory: /home/euser
   GECOS: Example User
   Login shell: /bin/sh
   Principal name: euser@IDM.EXAMPLE.COM
   Principal alias: euser@IDM.EXAMPLE.COM
   Email address: euser@idm.example.com
   UID: 427200006
   GID: 427200006
   Password: False
   Member of groups: ipausers
   Kerberos keys available: False

   注意

   By default, a user password is not set for the user account. To add a password while creating a user account, use the ipa user-add command with the following syntax:

   $ ipa user-add --first=Example --last=User --password

   The IPA CLI then prompts you to add or confirm a user name and password.

   If the user has been created already, you can add the password with the ipa user-mod command.