freeipa-admintools-3.3.0-2.fc19.x86_64
freeipa-client-3.3.0-2.fc19.x86_64
freeipa-server-3.3.0-2.fc19.x86_64
freeipa-python-3.3.0-2.fc19.x86_64
389-ds-base-devel-1.3.1.7-1.fc19.x86_64
389-ds-base-1.3.1.7-1.fc19.x86_64
389-ds-base-libs-1.3.1.7-1.fc19.x86_64

1. Install FreeIPA server:
# ipa-server-install

2. Authenticate as admin:
# kinit admin

3. Add a hostgroup:
# ipa hostgroup-add --desc="Web Servers" webservers

4. Add a host:
# ipa host-add web1.example.com --force

5. Add an automember rule:
# ipa automember-add --type=hostgroup webservers
# ipa automember-add-condition --key=fqdn --type=hostgroup --inclusive-regex=^web[1-9]+\.example\.com webservers

6. Verify that automember rule works by adding a new host:
# ipa host-add web2.example.com --force
# ipa hostgroup-show webservers
  Host-group: webservers
  Description: Web Servers
  Member hosts: web2.example.com

7. Try to rebuild membership:
# cat rebuild.ldif 
dn: cn=rt,cn=automember rebuild membership,cn=tasks,cn=config
changetype: add
objectClass: top
objectClass: extensibleObject
cn: rt
basedn: dc=idm,dc=lab,dc=eng,dc=brq,dc=redhat,dc=com
filter: (fqdn=*)
scope: sub

# ldapmodify -x -D 'cn=directory manager' -w blablabla -f rebuild.ldif
adding new entry "cn=rt,cn=automember rebuild membership,cn=tasks,cn=config"

8. Host web1.example.com is still not a member of hostgroup webservers:
# ipa hostgroup-show webservers
  Host-group: webservers
  Description: Web Servers
  Member hosts: web2.example.com

8. After rebuilding memberships, host web1.example.com should become a member of hostgroup webservers.