LDAP - (LDIF fields|LDAP Attribute)


Attributes of an entry


See Lightweight Directory Access Protocol (LDAP): Schema for User Applications

Name (Type)

The attribute type is identified by:

The name of the attribute is also called its type because it governs whether:

  • there can be more than one value of an attribute of that type in an entry,
  • the syntax to which the values must conform,
  • the kinds of matching which can be performed on values of that attribute,
  • and other functions.


The permitted value of an attributes are governed by its type (name) see above.


Common attribute

Some common attribute used in LDAP are:

Representation / Meaning

You can get more information from the LDAP directory as :

  • email,
  • title,
  • telephone,
  • address….
  • st = state
A country { relative name 'c=au' , description = 'Australia' }
    ---- A company { relative name = 'o=computer associates', web address = 'www.ca.com'  }
            ----- A person { relative name = 'cn=Chris', favorite drink = 'japanese slipper' }
            ----- A person { relative name = 'cn=Trudi', favorite drink = 'beer' }
            ----- A person { relative name = 'cn=Jay', favorite drink = 'mineral water' }

This shows a simple directory with five entries.

Documentation / Reference

Discover More
Csr Ldap Dn Properties
Cryptography - Certificate Signing Request

When requesting a signed certificate, an additional file must be created. This file is called Certificate Signing Request, generated from the Private Key. See the procedure at signed certificate procedure...
Certificate Validity Period Not Before Not After Portecle
Identification Material - Certificate (or Public Key Certificate)

A certificate is a document which permits to define with certainty the owner of the private key (ensures that the party you are communicating with is whom you think.) because it's digitally signed A certificate...
Spn Active Directory
Kerberos - Service principal name

A service principal name is a principal for a service where: The service-class is a string and identifies the general class of service. Computers or machine accounts automatically get an SPN with a...
Upn Active Directory
Kerberos - User Principal Name (UPN)

A principal representing a user. An example of UPN is : The UPN is derived from the combining of the two fields listed for “User logon name”. A User Principal Name must be unique across...
LDAP - C attribute (country)

c is an LDAP attribute that means country name
LDAP - Common name (CN) (eg your name)

The common name (CN) attribute refers to the name of an entry (ie the individual (entity|object) name) for whom/which you are querying. It contains the DisplayName field. The CN is also just known as...
LDAP - EmailAddress attribute

EmailAddress is a custom LDAP attribute. It's not defined by the specification but may be used in certificate to define the subject and/or issuer.
LDAP - Entry

Entry are the content of a LDAP directory and they represents entity or objects such as: people, organizational units, printers, documents, groups of people or anything else LDAP deployments...
LDAP - GUID Attribute by LDAP server

GUID in LDAP is an attribute. Provider Default GUID Attribute Name WebLogic Authentication provider orclguid Oracle Internet Directory Authentication provider orclguid Oracle Virtual Directory...
LDAP - L attribute (location, town)

L or l is an LDAP attribute that means location

Share this page:
Follow us:
Task Runner