Attribute properties in LdapConfig

Several key configuration settings of any LDAP user service are “attribute” properties. Find them in the either the LdapConfig container or ActiveDirectoryConfig container (depending on type of user service). These properties correspond to names of specific attributes in the target LDAP directory.

Each entry in the LDAP directory (say for a person or user) has multiple attributes which may or may not be assigned values. For example, a company LDAP directory might have entries for all employees, each with various attributes like “Full name”, “Phone number”, “Title”, “Address”, and so on.

A sample LDAP user entry may include attribute names and values as shown below.

User: jdoe

uid: jdoe

fullName: John Doe

title: Software Engineer

employeeNumber: E666

mobile: 555-555-0103

mail: jdoe@example.net

preferredLanguage: en

member: Engineering

In the station’s LdapConfig or ActiveDirectoryConfig attribute (Attr) properties, values should correspond to the names of the attributes in the LDAP directory. The value of the LDAP attribute is then pulled from the LDAP directory to fill out information about the user.

Figure 10. Attr (attribute) properties in LdapConfig

For example, for the Niagara station user “jdoe” in the LDAP sample entry above to have a “Full Name” property value, you enter “displayName” in the “Attr Full Name” field. The attribute properties are:

User Login Attr

The specific attribute in the LDAP directory for the desired user login name.
Different LDAP servers use different attributes. With OpenLDAP, the attribute is: uid while in Active Directory it is sAMAccountName.
Attr Email

The specific attribute in the LDAP directory to store user’s email address, the value of which populates the Niagara user’s Email property.
Attr Full Name

The specific attribute in the LDAP directory to store user’s full name, the value of which populates the Niagara user’s Full Name property.
Attr Language

The specific attribute in the LDAP directory to store the user’s language, typically an ISO 639 two-letter language code, the value of which populates the Niagara user’s Language property.
Attr Cell Phone Number

The specific attribute in the LDAP directory to store user’s cell phone number, the value of which populates the Niagara user’s Cell Phone Number property.
Attr Prototype

The specific attribute in the LDAP directory to use for mapping a User Prototype (under the user service’s UserPrototypes container) to users.

This mechanism uses an “attribute value”-to-“component name” matching method of selection, where if no “name-matching” User Prototype is found, the frozen DefaultPrototype is used (when making the User component for the LDAP user, upon initial station login).

For related details, see Configure User Prototypes.