Contents 1 Case LDAP Structure 1.1 Entries for People 1.1.1 Object Classes 1.1.1.1 top 1.1.1.2 person 1.1.1.3 organizationalPerson 1.1.1.4 inetOrgPerson 1.1.1.5 eduPerson 1.1.1.6 cwruEduPerson 1.1.1.7 ipuser 1.1.1.8 inetuser 1.1.1.9 inetmailuser 1.1.1.10 inetlocalmailrecipient 1.1.1.11 userpresenceprofile 1.1.1.12 nsmanagedperson 1.1.1.13 posixAccount 1.1.1.14 ctCalUser 1.1.1.15 mirapointuser 1.1.1.16 mirapointmailuser 1.1.2 Attributes

[edit] Case LDAP Structure

[edit] Entries for People

[edit] Object Classes

[edit] top

[edit] person

[edit] organizationalPerson

[edit] inetOrgPerson

[edit] eduPerson

eduPerson is an LDAP object class defined by EDUCAUSE for use by institutions of higher education. It contains definitions of attributes that are commonly used by such institutions and promotes interoperability between the schools. The homepage for eduPerson and its specifications is http://www.educause.edu/eduperson.

eduPersonAffiliation 

Holds values indicating how a person is currently associated with the University. Under most situations, though, use eduPersonScopedAffiliation is better. {ALUM, AFFILIATE, FACULTY, EMPLOYEE, MEMBER, STAFF, STUDENT}

eduPersonPrimaryAffiliation 

Holds single value indicating person's primary association with the University. Value used here will be one of the values in eduPersonAffiliation for each person. In order of precendence:

1. FACULTY
2. STAFF
3. STUDENT
4. ALUM
5. AFFILIATE

eduPersonScopedAffiliation 

array of that person's affiliations with the university. Values take the form of foo@case.edu. Some possible scoped affiliations are student@case.edu, staff@case.edu, faculty@case.edu. See LDAP_schema_scoped_affiliations for more information on scoped affiliations.

eduPersonPrincipalName 

Holds a persistant unique identifier of an individual including domain. In our case, it looks like abc12@case.edu.

eduPersonEntitlement 

Currently not used; however, in the future, it will track what services (and what level of service) each person is entitled to.

eduPersonNickname 

not used

eduPersonOrgDN 

not used

eduPersonOrgUnitDN 

not used

eduPersonPrimaryOrgUnitDN 

not used

[edit] cwruEduPerson

cwruEduPerson is an object class defined by Case Western for use at our school. It contains attributes that are useful to our applications. It was designed and implemented by Middleware Engineering.

cwruEduAffilAlumni 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) whether the person has ever been an alumni. Values are {NEVER, FORMER, ACTIVE}

cwruEduAffilAlumniLastChange 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) a datestamp indicating when the value of cwruEduAffilAlumni most recently changed. Date in the form YYYYMMDDHHmmSS.

cwruEduAffilEmeriti 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) whether the person has ever been an emeritus faculty member. Values are {NEVER, FORMER, ACTIVE}

cwruEduAffilEmeritiLastChange 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) a datestamp indicating when the value of cwruEduAffilEmeriti most recently changed. Date in the form YYYYMMDDHHmmSS.

cwruEduAffilFaculty 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) whether the person has ever been a faculty member. Values are {NEVER, FORMER, ACTIVE}

cwruEduAffilFacultyLastChange 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) a datestamp indicating when the value of cwruEduAffilFaculty most recently changed. Date in the form YYYYMMDDHHmmSS.

cwruEduAffilPreadmit 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) whether the person has ever been a pre-admitted student of the University i.e. the person filed an application to be a student of the University and that application was accepted by the University (regardless of whether or not the person ended up coming to the University after having applied and accepted). Values are {NEVER, FORMER, ACTIVE}

cwruEduAffilPreadmitLastChange 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) a datestamp indicating when the value of cwruEduAffilPreadmit most recently changed. Date in the form YYYYMMDDHHmmSS.

cwruEduAffilStaff 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) whether the person has ever been a staff member. Values are {NEVER, FORMER, ACTIVE}

cwruEduAffilStaffLastChange 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) a datestamp indicating when the value of cwruEduAffilStaff most recently changed. Date in the form YYYYMMDDHHmmSS.

• cwruEduAffilStudent : (*DEPRECATED*: use eduPersonScopedAffiliation instead) whether the person has ever been a student. Values are {NEVER, FORMER, ACTIVE}

cwruEduAffilStudentLastChange 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) a datestamp indicating when the value of cwruEduAffilStudent most recently changed. Date in the form YYYYMMDDHHmmSS.

cwruEduAffilAFaculty 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) whether the person has ever been an "affiliated faculty member" i.e. a faculty member of one of our partner institutions such as CIM or CIA. Values are {NEVER, FORMER, ACTIVE}

cwruEduAffilAFacultyLastChange 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) a datestamp indicating when the value of cwruEduAffilAFaculty most recently changed. Date in the form YYYYMMDDHHmmSS.

cwruEduAffilAOther 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) whether the person has ever been some kind of affiliate with the University. Values are {NEVER, FORMER, ACTIVE}

cwruEduAffilAOtherLastChange 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) a datestamp indicating when the value of cwruEduAffilAOther most recently changed. Date in the form YYYYMMDDHHmmSS.

cwruEduAffilAStaff 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) whether the person has ever been an "affiliated staff member" i.e. a staff member of one of our partner institutions such as CIM or CIA. Values are {NEVER, FORMER, ACTIVE}

cwruEduAffilAStaffLastChange 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) a datestamp indicating when the value of cwruEduAffilAStaff most recently changed. Date in the form YYYYMMDDHHmmSS.

cwruEduAffilAStudent 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) whether the person has ever been an "affiliated student" i.e. a student of one of our partner institutions such as CIM or CIA. Values are {NEVER, FORMER, ACTIVE}

cwruEduAffilAStudentLastChange 

(*DEPRECATED*: use eduPersonScopedAffiliation instead) a datestamp indicating when the value of cwruEduAffilAStudent most recently changed. Date in the form YYYYMMDDHHmmSS.

cwruEduStudentLevel 

the grade level {UNDERGRADUATE, GRADUATE, and PROFESSIONAL}

cwruEduPersonStudentStatus 

the undergraduate grade level, {FRESHMAN, SOPHOMORE, JUNIOR, SENIOR}

cwruEduPersonScopedAffiliation 

array of that person's affiliations with the university. Values take the form of foo@case.edu. Some possible scoped affiliations are student@case.edu, staff@case.edu, faculty@case.edu. See LDAP/Schema/scopedAffiliations for more information on scoped affiliations.

cwruEduPersonPIDM 

A unique number generated by the Student System and assigned to each individual in the Student System. Takes the form of an 8-digit hex based number or a 9 digit base-10 number. Only persons in the Student System are assigned such a number, so it should not be considered a University-wide unique ID number (see cwruEduIDNumber for that).

cwruEduACLHasMIMbox 

(The use of this attribute will be deprecated -- eduPersonEntitlement will be used instead) Whether or not a person has the anti-spam service. {TRUE, FALSE}

cwruEduACLActiveDir 

(The use of this attribute will be deprecated -- eduPersonEntitlement will be used instead. Or, this may be handled in an entirely different manner.) Whether or not a person will be provisioned in the Active Directory deployment. {TRUE, FALSE}

cwruEduACLCalendar 

(The use of this attribute will be deprecated -- eduPersonEntitlement will be used instead) Whether or not a person has the anti-spam service. {TRUE, FALSE}

cwruEduACLCWRU 

ummmm.... {TRUE, FALSE}

cwruEduACLRemAcc 

(The use of this attribute will be deprecated -- eduPersonEntitlement will be used instead. As a matter of fact the PPP service has been shut down, so this attribute is meaningless nowadays.) Whether or not a person has has dialin access via the PPP service. {TRUE, FALSE}

cwruEduACLSpamFilter 

(The use of this attribute will be deprecated -- eduPersonEntitlement will be used instead) Whether or not a person has the anti-spam service. {TRUE, FALSE}

cwruEduACLVPN 

(The use of this attribute will be deprecated -- eduPersonEntitlement will be used instead) Whether or not a person can access the VPN Service. {TRUE, FALSE}

cwruEduIPDBMaxSystems 

The maximum number of systems a person is allowed to register an IP for.

cwruEduPWExpiryDays 

The number of days a user's password will persist without expiring and needing changing.

cwruedusuppressionphone 

filler

cwrueduentrylastmodifiedby 

filler

cwrueducollege 

filler

cwruedusuppressionaddress 

filler

cwrueduentrylastmodified 

filler

cwrueduidnumber 

filler

cwruedusupression 

filler

cwruedumajor 

filler

cwrueduaccountadded 

Date/time stamp of the date when the LDAP account (record) was created, of the form: yyyymmddHHMISS.

cwruedupersonscopedaffiliationexpiration 

A multi-valued attribute that holds the current expiration date for a particular scoped affiliation (role), Of the form <scoped affiliation>,yyyymmdd - for example: student@case.edu,20090521.

cwruedustudentpidm 

filler

cwruedumiddlename 

filler

cwrueduaffilinstitution 

filler

cwrueducareers 

A multi-valued attribute that holds the career/program information for students from the new Student Information System. Each value in the attribute is a CSV made up of the SIS Career Attributes.

[edit] ipuser

[edit] inetuser

[edit] inetmailuser

[edit] inetlocalmailrecipient

[edit] userpresenceprofile

[edit] nsmanagedperson

[edit] posixAccount

[edit] ctCalUser

• ctcalxitemid : filler
• ctcalpublishedtype : filler
• ctcalmstimerange : filler
• ctcallanguageid : filler
• ctcalpasswordrequired : filler
• ctcaldefaultnotereminder : filler
• ctcaldefaultreminder : filler
• ctcaldefaulttaskreminder : filler
• ctcaldisplayprefs : filler
• ctcalrefreshprefs : filler
• ctcalnotifmechanism : filler
• ctcaloperatingprefs : filler
• ctcalsysopcanwritepassword : filler

[edit] mirapointuser

[edit] mirapointmailuser

[edit] Attributes

It would be beneficial if these attributes were moved under the object classes that contain them. Not many people know this structure, however...

• mailmessagestore
• mailhost
• mailequivalentaddress
• homedirectory
• uidnumber
• initials
• displayname
• mail
• givenname
• sn
• inetuserstatus
• mailalternateaddress
• homephone
• gecos
• miramailroutingaddress
• gidnumber
• telephonenumber
• miramailhost
• cn
• edupersonaffiliation
• edupersonnickname
• o
• uid
• paburi
• mailuserstatus
• maildeliveryoption
• nswmextendeduserprefs
• mailallowedserviceaccess
• mailquota