UserIdentity LDAP mapping
Mapping is performed in LdapUserIdentityDao.
| UserIdentity field | LDAP field | LDAP schema | AD field | |
|---|---|---|---|---|
| uid | [uid | http://www.zytrax.com/books/ldap/ape/core-schema.html#uid] | core.schema | [userPrincipalName |
| username | [initials | http://www.zytrax.com/books/ldap/ape/core-schema.html#initials], non-standard use | core.schema | [sAMAccountName |
| cn | [cn | http://www.zytrax.com/books/ldap/ape/core-schema.html#cn] | core.schema | [cn |
| sn | [sn | http://www.zytrax.com/books/ldap/ape/core-schema.html#sn] | core.schema | [sn |
| givenName | [givenName | http://www.zytrax.com/books/ldap/ape/core-schema.html#gn] | core.schema | [givenName |
| http://www.zytrax.com/books/ldap/ape/core-schema.html#mail] | core.schema | |||
| mobile | [mobile | http://www.zytrax.com/books/ldap/ape/cosine.html#mobile] | cosine.schema | [mobile |
| userpassword, case error, should be userPassword? | [userPassword | http://www.zytrax.com/books/ldap/ape/core-schema.html#userpassword] | core.schema | [userPassword |
| personRef | [employeeNumber | http://www.zytrax.com/books/ldap/ape/inetorgperson.html#employeenumber] | inetorgperson | [employeeNumber |
See Table 8.3: Commonly Used Syntaxes for readable syntax descriptions.
Windows Active Directory LDAP Schema
Default AD LDAP schema does not have an uid field. Extensions (Microsoft’s Services for UNIX?) are possible to add this. If no uid can be found, UIB use the userprincipalname field as uid. Example: userprincipalname=firstname.lastname@company.com.