The University of Hawai'i Identity and Access Management system (IAM, previously known as UHIMS) collects, consolidates and makes available information concerning people associated with the University. LDAP is one of the most useful ways that IAM makes the information available. The UH Online Directory is an LDAP service that provides UH with a directory of names, phone numbers, and email addresses.
The UH Online Directory is based on the eduPerson Schema defined by the Internet2 Middleware initiative to create a recipe for building general purpose institutional directories. The UH directory is very similar in design to LDAP directories at other Universities.
UhEduPerson LDAP Recipe
Version: v1-14, March 02, 2009
Object Identifiers
Per RFC 2578 a unique object identifier (OID) is assigned to each LDAP attribute. The LDAP attribute OIDs are based on the UH Enterprise OID assigned by IANA.
OIDs |
|
|
|
---|---|---|---|
| UH Enterprise Number | 2160 | Assigned by IANA, http://www.iana.org/ |
| X.500 | 0.9.2342.19200300 | Directory Access Protocol |
| UH OID | 1.3.6.1.4.1.2160 | UH OID, based on the IANA assigned UH Enterprise Number |
| UH LDAP OID | 1.3.6.1.4.1.2160.1.1.1 | Lightweight Directory Access Protocol |
| Internet2 eduPerson | 1.3.6.1.4.1.5923 | http://www.educause.edu/netatedu/groups/pki/eduperson/spec.doc |
Sample DN for looking up person information
Distinguished Name | Example |
---|---|
dn | uhUuid=2314231232,ou=people,dc=hawaii,dc=edu |
Table of LDAP Attributes
| Attribute Name | OID | Format | Indexing | Required? | Syntax | MultiValued? | Example Raw Data | Privacy? | Usage |
---|---|---|---|---|---|---|---|---|---|---|
Identifiers |
|
|
|
|
|
|
|
| "public" only applies to fac/staff |
|
| uid | 0.9.2342.19200300.100.1.1 | string(8) | yes | no | {a..z}{0..9}{-_} | yes | jdoe | public | Unix account name, WebCT account name, ... |
| uhUuid | 1.3.6.1.4.1.2160.1.1.1.1 | string(10) | yes | no | {0..9} | no | 810321, 1014353266 | private | UH Number ( Employee ID, Banner ID) |
| uhRestrict | 1.3.6.1.4.1.2160.1.1.1.30 | string(32) | no | no | {a..z}{A..Z}{0..9}{-_} | yes | uhUnlisted | private | indicates that this info is to be 'unlisted'; used for filtering search results |
| userPassword | 2.5.4.35 | binary | no | no |
| no |
| private | ({crypt}xxxxxxxxx) |
Organizational Identification |
|
|
|
|
|
|
|
|
|
|
| eduPersonAffiliation | 1.3.6.1.4.1.5923.1.1.1.1 | string(32) | yes | yes | {a..z}{0..9}{-_} | yes | student, faculty, staff, ... | optional | white pages |
| eduPersonOrgDN | 1.3.6.1.4.1.5923.1.1.1.3 | string(32) | yes | yes | {a..z}{0..9}{-_} | yes | kcc, lcc, ... | optional | white pages |
| uhPrimaryOrgDN | 1.3.6.1.4.1.2160.1.1.1.21 | string(32) | no | no | {a..z}{0..9}{-_} | no | kcc, lcc, ... | optional | white pages |
| uhOrgAffiliation | 1.3.6.1.4.1.2160.1.1.1.28 | string(64) | no | yes | {a..z}{0..9}{-_} | yes | eduPersonOrgDn=kauaicc, eduPersonAffiliation=student | public | authorization, white pages |
| uhPrimaryCampus | 1.3.6.1.4.1.2160.1.1.1.41 | string(2) | yes | no | {a..z}{A..Z}{0..9}{-_} | no |
| public | white pages, distribution list generation |
| uhPrimaryEAC | 1.3.6.1.4.1.2160.1.1.1.42 | string(20) | yes | no | {a..z}{A..Z}{0..9}{-_} | no |
| public | white pages, distribution list generation |
Names |
|
|
|
|
|
|
|
|
|
|
| cn | 2.5.4.3 | string(50) | no | no | {a..z}{A..Z}{0..9}{-_.} | yes | jonathan m doe, jr | optional | white pages; Full name |
| sn | 2.5.4.4 | string(30) | no | no | {a..z}{A..Z}{0..9}{-_.} | yes | doe | optional | white pages; Last name |
| givenName | 2.5.4.42 | string(30) | no | no | {a..z}{A..Z}{0..9}{-_.} | yes | jonathan | optional | white pages; First name |
| initials | 2.5.4.43 | string(8) | no | no | {a..z} | yes | jmd | optional |
|
| displayName | 2.16.840.1.113730.3.1.241 | string(50) | no | no | {a..z}{0..9}{-_'.} | no | jonathan 'jon' morris doe | optional | white pages |
| eduPersonNickname | 1.3.6.1.4.1.5923.1.1.1.2 | string(16) | no | no | {a..z}{0..9}{-_.} | yes | jon | optional | white pages |
Current Legal Name |
|
|
|
|
|
|
|
|
|
|
| uhOfficialSurname | 1.3.6.1.4.1.2160.1.1.1.90 | string(30) | no | no | {a..z}{0..9}{-_.} | no | doe | optional | Official documents, ie: transcripts |
| uhOfficialGivenName | 1.3.6.1.4.1.2160.1.1.1.91 | string(30) | no | no | {a..z}{0..9}{-_.} | no | jonathan | optional | Official documents, ie: transcripts |
| uhOfficialMiddleName | 1.3.6.1.4.1.2160.1.1.1.92 | string(16) | no | no | {a..z}{0..9}{-_.} | no | morris | optional | Official documents, ie: transcripts |
| uhOfficialNamePrefix | 1.3.6.1.4.1.2160.1.1.1.93 | string(16) | no | no | {a..z}{0..9}{-_.} | no | dr | optional | Official documents, ie: transcripts |
| uhOfficialNameSuffix | 1.3.6.1.4.1.2160.1.1.1.94 | string(16) | no | no | {a..z}{0..9}{-_.} | no | jr | optional | Official documents, ie: transcripts |
| uhOfficialSalutation | 1.3.6.1.4.1.2160.1.1.1.95 | string(16) | no | no | {a..z}{0..9}{-_.} | no | dear | optional | Official documents, ie: transcripts |
Contact Info |
|
|
|
|
|
|
|
|
|
|
| 0.9.2342.19200300.100.1.3 | string(50) | no | no | {a..z}{0..9}{-_@.} | yes | jon@university.edu | optional | UHIMS assigned and White Pages assigned email addresses. There can be more than one. Their order of appearance has no significance. | |
| uhPreferredMail | 1.3.6.1.4.1.2160.1.1.1.62 | string(50) | no | no | {a..z}{0..9}{-_@.} | no | jon01001@mymail.com | public | Most recent email address received by UHIMS. |
| homePhone | 0.9.2342.19200300.100.1.20 | string(16) | no | no | +cc aaa nnn nnnn and derivatives | yes | +1 202 687 2202, 687 2201 | optional | not used
|
| homePostalAddress | 0.9.2342.19200300.100.1.39 | string(50) | no | no | {a..z}{0..9}{-_#.} | no |
| optional | not used |
| mobile | 0.9.2342.19200300.100.1.41 | string(16) | no | no | +cc aaa nnn nnnn and derivatives | yes | +1 202 687 2202, 687 2201 | optional | not used |
| pager | 0.9.2342.19200300.100.1.42 | string(16) | no | no | +cc aaa nnn nnnn and derivatives | yes | +1 202 687 2202, 687 2201 | optional | not used |
| st | 2.5.4.8 | string(30) | no | no | {a..z}{0..9}{-_.} | no |
| optional | not used |
| street | 2.5.4.9 | string(50) | no | no | {a..z}{0..9}{-_#.} | no |
| optional | not used |
| postalAddress | 2.5.4.16 | string(50) | no | no | {a..z}{0..9}{-_#.} | no |
| optional | not used |
| postalCode | 2.5.4.17 | string(15) | no | no | {a..z}{0..9}{-_#.} | no |
| optional | not used |
| postOfficeBox | 2.5.4.18 | string(15) | no | no | {a..z}{0..9}{-_#.} | no |
| optional | not used |
| title | 2.5.4.12 | string(64) | no | no | {a..z}{0..9}{-_#.} | yes | Assoc Clin Prof or Registered Architect, Facil Plan Ofc or Prof, Finance/Dir, Ctr for Japanese Global Investment & Finance | optional | White pages; Job Title |
| physicalDeliveryOfficeName | 2.5.4.19 | string(64) | no | no | {a..z}{0..9}{-_#.} | yes | Queen's POB I #614 or Manele 106, Kapiolani CC or Nat Energy Lab of Haw, 73-4460 Queen Kaahumanu Hwy, Kailua-Kona | required | White pages; Office Location or Number |
| ou | 2.5.4.11 | string(64) | no | no | {a..z}{0..9}{-_#.} | yes | Surgery, University of Hawaii at Manoa or School-to-Work/Computing, Electronics & Ntwrk Tech (CENT) | required | White pages; Department, Campus |
| telephoneNumber | 2.5.4.20 | string(16) | no | no | +cc aaa nnn nnnn and derivatives | yes | +1 202 687 2202, 687 2201 | required | White pages; Telephone number |
| facsimileTelephoneNumber | 2.5.4.23 | string(16) | no | no | +cc aaa nnn nnnn and derivatives | yes | +1 202 687 2202, 687 2201 | optional | White pages; FAX number |
LDAP Data Management Information |
|
|
|
|
|
|
|
|
|
|
| uhExpiration | 1.3.6.1.4.1.2160.1.1.1.60 | string(8) | yes | no | yyyymmdd | no | 20090302 | private | Visitor Internet Access: account expiration date |
| uhDataOrigin | 1.3.6.1.4.1.2160.1.1.1.61 | string(128) | no | no | {a..z}{0..9}{=-_,.?<>;[]{}()&$@} | yes | VIA example: "dataOriginType=application,dataOriginID=VIA,requesterID=mklinger" | private | Authoritative source indicator |