LDAP Specifications for VIA Accounts
- mhodges
- Julio Polo
VIA Accounts
The ITS application for establishing VIA accounts (Visitor Internet Access service) has broader utility than simply supporting RADIUS authentication to UH Wireless networks. VIA accounts are subject to the UH Web Login Service (CAS authentication). VIA accounts in conjunction with CAS can be used to provide guest access to applications.
VIA may be found at http://www.hawaii.edu/via
UH Web Login Service information may be found at http://www.hawaii.edu/askus/758
The Complete LDAP specification for VIA accounts
LDAP Attribute | Assigned Value | Format | Example Assigned Value |
|---|---|---|---|
<visitor_email_address> |
| bobwhite001@gmail.com | |
uid | <visitor_email_address> (often trimmed due to length issues in some apps) |
| bobwhite001@gmail.co |
cn | <visitor_name> | first last | Bob White |
sn | <visitor_last_name> |
| White |
givenName | <visitor_first_name> |
| Bob |
telephoneNumber | <visitor_phone_number> |
| 808-999-1234 |
uhExpiration | <required_expiration_date> | yyyymmdd | 20091231T235959 |
userPassword | <visitor_password> |
|
|
uhrestrict | uhUnlisted |
|
|
uhOrgAffiliation | eduPersonOrgDN=uh,eduPersonAffiliation=affiliate |
|
|
eduPersonOrgDN | uh |
|
|
eduPersonAffiliation | affiliate |
|
|
uhDataOrigin* | dataOriginType=application,dataOriginID=VIA,requesterID=<sponsorUsername> |
| dataOriginType=application,dataOriginID=VIA,requesterID=janedoe |
uhMetaData* | dataOrigin=via,requesterID=<sponsorUsername> |
| dataOrigin=via,requesterID=janedoe |
uhAllowedService** | via |
|
|
*uhDataOrigin is deprecated in favor of uhMetaData in the Next Generation LDAP
**uhAllowedService is not in use in the Next Generation LDAP