LDAP - (LDIF fields|LDAP Attribute)

About

LDAP attributes are Attributes of a LDAP entry in the LDAP tree

This attributes are also used in a X509 certificate

Structure

See Lightweight Directory Access Protocol (LDAP): Schema for User Applications

Name (Type)

The attribute type is identified by:

The name of the attribute is also called its type because it governs whether:

  • there can be more than one value of an attribute of that type in an entry,
  • the syntax to which the values must conform,
  • the kinds of matching which can be performed on values of that attribute,
  • and other functions.

Value

The permitted value of an attributes are governed by its type (name) see above.

Example

Common attributes

Representation / Meaning

You can get more information from the LDAP directory as :

  • email,
  • title,
  • telephone,
  • address….
  • st = state
A country { relative name 'c=au' , description = 'Australia' }
    |
    |
    ---- A company { relative name = 'o=computer associates', web address = 'www.ca.com'  }
            |
            |
            ----- A person { relative name = 'cn=Chris', favorite drink = 'japanese slipper' }
            |
            ----- A person { relative name = 'cn=Trudi', favorite drink = 'beer' }
            |
            ----- A person { relative name = 'cn=Jay', favorite drink = 'mineral water' }

This shows a simple directory with five entries.

Documentation / Reference





Discover More
Certificate Validity Period Not Before Not After Portecle
Cryptography - X.509

x.509 is the specification / version of a certificate It's defined in the 5280rfc5280 - Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile When you see...
Certificate Validity Period Not Before Not After Portecle
Identification Material - X.509 Certificate (or Public Key Certificate) - Crt

A certificate is a document which permits to define with certainty the owner of the private key (ensures that the party you are communicating with is whom you think.) because it's digitally signed A certificate...
Spn Active Directory
Kerberos - Service principal name

A service principal name is a principal for a service where: The service-class is a string and identifies the general class of service. Computers or machine accounts automatically get an SPN with a...
Upn Active Directory
Kerberos - User Principal Name (UPN)

A principal representing a user. An example of UPN is : The UPN is derived from the combining of the two fields listed for “User logon name”. A User Principal Name must be unique across...
LDAP - C attribute (country)

c is an LDAP attribute that means country name
LDAP - Common name (CN) (eg your name)

The common name (CN) attribute refers to the name of an entry (ie the individual (entity|object) name) for whom/which you are querying. It contains the DisplayName field. The CN is also just known as...
LDAP - EmailAddress attribute

EmailAddress is a custom LDAP attribute. It's not defined by the specification but may be used in certificate to define the subject and/or issuer.
LDAP - Entry

Entry are the content of a LDAP directory and they represents entity or objects such as: people, organizational units, printers, documents, groups of people or anything else LDAP deployments...
LDAP - GUID Attribute by LDAP server

GUID in LDAP is an attribute. Provider Default GUID Attribute Name WebLogic Authentication provider orclguid Oracle Internet Directory Authentication provider orclguid Oracle Virtual Directory...
LDAP - L attribute (location, town)

L or l is an LDAP attribute that means location



Share this page:
Follow us:
Task Runner