...
UhEduPerson LDAP Recipe
Version: v1-1415, March 02April 10, 20092013
Object Identifiers
Per RFC 2578 a unique object identifier (OID) is assigned to each LDAP attribute. The LDAP attribute OIDs are based on the UH Enterprise OID assigned by IANA.
OIDs |
|
|
|
---|---|---|---|
| UH Enterprise Number | 2160 | Assigned by IANA, http://www.iana.org/ |
| X.500 | 0.9.2342.19200300 | Directory Access Protocol |
| UH OID | 1.3.6.1.4.1.2160 | UH OID, based on the IANA assigned UH Enterprise Number |
| UH LDAP OID | 1.3.6.1.4.1.2160.1.1.1 | Lightweight Directory Access Protocol |
| Internet2 eduPerson | 1.3.6.1.4.1.5923 | http://www.educauseinternet2.edu/netatedu/groups/pkiproducts-services/trust-identity-middleware/eduperson/spec.doc-eduorg/#service-features |
Sample DN for looking up person information
Distinguished Name | Example |
---|---|
dn | uhUuid=2314231232,ou=people,dc=hawaii,dc=edu |
Table of LDAP Attributes
| Attribute Name | OID | Format | Indexing | Required? | Syntax | MultiValued? | Example Raw Data | Required? | Usage | ||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Identifiers |
|
|
|
|
|
|
|
| ||||||||||||||||||||||||
| uid | 0.9.2342.19200300.100.1.1 | string(8) | yes | no | {a..z}{0..9}{-_} | yes | jdoe | required | Unix account name, WebCT account name, ... | ||||||||||||||||||||||
| uhUuid | 1.3.6.1.4.1.2160.1.1.1.1 | string(10) | yes | no | {0..9} | no | 810321, 1014353266 | required | UH Number ( Employee ID, Banner ID) | ||||||||||||||||||||||
| uhRestrict | 1.3.6.1.4.1.2160.1.1.1.30 | string(32) | no | no | {a..z}{A..Z}{0..9}{-_} | yes | uhUnlisted | required | indicates that this info is to be 'unlisted'; used for filtering search results | ||||||||||||||||||||||
| userPassword | 2.5.4.35 | binary | no | no |
| no |
| required | {encrypted} | ||||||||||||||||||||||
Organizational Identification |
|
|
|
|
|
|
|
|
|
| ||||||||||||||||||||||
| eduPersonAffiliation | 1.3.6.1.4.1.5923.1.1.1.1 | string(32) | yes | yes | {a..z}{0..9}{-_} | yes | student, faculty, staff, ... | optional | White Pages | ||||||||||||||||||||||
| eduPersonOrgDN | 1.3.6.1.4.1.5923.1.1.1.3 | string(32) | yes | yes | {a..z}{0..9}{-_} | yes | kcc, lcc, ... | optional | White Pages | ||||||||||||||||||||||
| uhPrimaryOrgDN | 1.3.6.1.4.1.2160.1.1.1.21 | string(32) | no | no | {a..z}{0..9}{-_} | no | kcc, lcc, ... | optional | White Pages | ||||||||||||||||||||||
| uhOrgAffiliation | 1.3.6.1.4.1.2160.1.1.1.28 | string(64) | no | yes | {a..z}{0..9}{-_} | yes | eduPersonOrgDn=kauaicc, eduPersonAffiliation=student | public | authorization, White Pages | ||||||||||||||||||||||
| uhPrimaryCampus | 1.3.6.1.4.1.2160.1.1.1.41 | string(2) | yes | no | {a..z}{A..Z}{0..9}{-_} | no |
| public | White Pages, distribution list generation | ||||||||||||||||||||||
| uhPrimaryEAC | 1.3.6.1.4.1.2160.1.1.1.42 | string(20) | yes | no | {a..z}{A..Z}{0..9}{-_} | no |
| public | White Pages, distribution list generation | ||||||||||||||||||||||
Names |
|
|
|
|
|
|
|
|
|
| ||||||||||||||||||||||
| cn | 2.5.4.3 | string(50) | no | no | {a..z}{A..Z}{0..9}{-_.} | yes | jonathan m doe, jr | optional | |||||||||||||||||||||||
| sn | 2.5.4.4 | string(30) | no | no | {a..z}{A..Z}{0..9}{-_.} | yes | doe | optional | |||||||||||||||||||||||
| givenName | 2.5.4.42 | string(30) | no | no | {a..z}{A..Z}{0..9}{-_.} | yes | jonathan | optional |
| ||||||||||||||||||||||
| initials | 2.5.4.43 | string(8) | no | no | {a..z} | yes | jmd | optional |
| ||||||||||||||||||||||
| displayName | 2.16.840.1.113730.3.1.241 | string(50) | no | no | {a..z}{0..9}{-_'.} | no | Doe, Jonathan (Jon) M Doe | required | White pages, usually entered as "Last Name, First (Nickname) Middle, Suffix" | ||||||||||||||||||||||
| eduPersonNickname | 1.3.6.1.4.1.5923.1.1.1.2 | string(16) | no | no | {a..z}{0..9}{-_.} | yes | jon | optional | white pages | ||||||||||||||||||||||
Current Legal Name |
|
|
|
|
|
|
|
|
|
| ||||||||||||||||||||||
| uhOfficialSurname | 1.3.6.1.4.1.2160.1.1.1.90 | string(30) | no | no | {a..z}{0..9}{-_.} | no | doe | optional | not used | ||||||||||||||||||||||
| uhOfficialGivenName | 1.3.6.1.4.1.2160.1.1.1.91 | string(30) | no | no | {a..z}{0..9}{-_.} | no | jonathan | optional | not used | ||||||||||||||||||||||
| uhOfficialMiddleName | 1.3.6.1.4.1.2160.1.1.1.92 | string(16) | no | no | {a..z}{0..9}{-_.} | no | morris | optional | not used | ||||||||||||||||||||||
| uhOfficialNamePrefix | 1.3.6.1.4.1.2160.1.1.1.93 | string(16) | no | no | {a..z}{0..9}{-_.} | no | dr | optional | not used | ||||||||||||||||||||||
| uhOfficialNameSuffix | 1.3.6.1.4.1.2160.1.1.1.94 | string(16) | no | no | {a..z}{0..9}{-_.} | no | jr | optional | not used | ||||||||||||||||||||||
| uhOfficialSalutation | 1.3.6.1.4.1.2160.1.1.1.95 | string(16) | no | no | {a..z}{0..9}{-_.} | no | dear | optional | not used | ||||||||||||||||||||||
Contact Info |
|
|
|
|
|
|
|
|
|
| ||||||||||||||||||||||
| 0.9.2342.19200300.100.1.3 | string(50) | no | no | {a..z}{0..9}{-_@.} | yes | jon@university.edu | optional | UHIMS assigned and White Pages assigned email addresses. There can be more than one. Their order of appearance has no significance. | |||||||||||||||||||||||
| uhPreferredMail | 1.3.6.1.4.1.2160.1.1.1.62 | string(50) | no | no | {a..z}{0..9}{-_@.} | no | jon01001@mymail.com | public | Most recent email address received by UHIMS. |
| homePhone | 0.9.2342.19200300.100.1.20 | string(16) | no | no | +cc aaa nnn nnnn and derivatives | yes | +1 202 687 2202, 687 2201 | optional | not used
|
| homePostalAddress | 0.9.2342.19200300.100.1.39 | string(50) | no | no | {a..z}{0..9}{-_#.} | no |
| optional | currently not used |
mobile | 0.9.2342.19200300.100.1.41 | string(16) | no | no | +cc aaa nnn nnnn and derivatives | yes | +1 202 687 2202, 687 2201 | optional | not used | |||||||||||||||||||||||
| pager | 0.9.2342.19200300.100.1.42 | string(16) | no | no | +cc aaa nnn nnnn and derivatives | yes | +1 202 687 2202, 687 2201 | optional | not used | ||||||||||||||||||||||
| st | 2.5.4.8 | string(30) | no | no | {a..z}{0..9}{-_.} | no |
| optional | not used | ||||||||||||||||||||||
| street | 2.5.4.9 | string(50) | no | no | {a..z}{0..9}{-_#.} | no |
| optional | not used | ||||||||||||||||||||||
| postalAddress | 2.5.4.16 | string(50) | no | no | {a..z}{0..9}{-_#.} | no |
| optional | not used | ||||||||||||||||||||||
| postalCode | 2.5.4.17 | string(15) | no | no | {a..z}{0..9}{-_#.} | no |
| optional | not used | ||||||||||||||||||||||
| postOfficeBox | 2.5.4.18 | string(15) | no | no | {a..z}{0..9}{-_#.} | no |
| optional | not used | ||||||||||||||||||||||
| title | 2.5.4.12 | string(64) | no | no | {a..z}{0..9}{-_#.} | yes | Assoc Clin Prof or Registered Architect, Facil Plan Ofc or Prof, Finance/Dir, Ctr for Japanese Global Investment & Finance | optional | White pages; Job Title | ||||||||||||||||||||||
| physicalDeliveryOfficeName | 2.5.4.19 | string(64) | no | no | {a..z}{0..9}{-_#.} | yes | Queen's POB I #614 or Manele 106, Kapiolani CC or Nat Energy Lab of Haw, 73-4460 Queen Kaahumanu Hwy, Kailua-Kona | required | White pages; Office Location or Number | ||||||||||||||||||||||
| ou | 2.5.4.11 | string(64) | no | no | {a..z}{0..9}{-_#.} | yes | Surgery, University of Hawaii at Manoa or School-to-Work/Computing, Electronics & Ntwrk Tech (CENT) | required | White pages; Department, Campus | ||||||||||||||||||||||
| telephoneNumber | 2.5.4.20 | string(16) | no | no | +cc aaa nnn nnnn and derivatives | yes | +1 202 687 2202, 687 2201 | required | White pages; Telephone number | ||||||||||||||||||||||
| facsimileTelephoneNumber | 2.5.4.23 | string(16) | no | no | +cc aaa nnn nnnn and derivatives | yes | +1 202 687 2202, 687 2201 | optional | White pages; FAX number | ||||||||||||||||||||||
LDAP Data Management Information |
|
|
|
|
|
|
|
|
|
| ||||||||||||||||||||||
| uhExpiration | 1.3.6.1.4.1.2160.1.1.1.60 | string(8) | yes | no | yyyymmdd | no | 20090302 | private | Visitor Internet Access: account expiration date | ||||||||||||||||||||||
| uhDataOriginuhMetaData | 1.3.6.1.4.1.2160.1.1.1.61 | string(128) | no | no | {a..z}{0..9}{=-_,.?<>;[]{}()&$@} | yes | VIA example: "dataOriginType=application,dataOriginID=VIAdataOrigin=via,requesterID=mklinger" | private | Authoritative source indicator |