...
Registry CO Person Transaction | LDAP Action |
---|---|
Add | Add entry to LDAP (if entry already exists, throw error; manual provisioning required) |
Edit | Update configured attributes only (other attributes will be left untouched) |
Enter Grace Period | No changes (unless attributes change as part of grace period) |
Expiration / Becomes Inactive | Remove entry from LDAP (or place into some sort of referential integrity state for archival purposes?Update entry to maintain only Person attributes for referential integrity (no Role or Group attributes) |
Unexpire / Becomes Active | Add entry to LDAP (if entry already exists, throw error; manual provisioning required) |
Delete | Remove entry from LDAP |
Manual Provision | If entry exists: Update configured attributes only Attributes are subject to CO Person and Person Role Status |
...
Attribute | Object Class | Data Model | Multiple Values Exported? |
---|---|---|---|
cn | person | Only the preferred primary name attached to the CO Person is exported (CO-333) | |
cn | groupOfNames | cm_co_groups name | |
eduPersonAffiliation | eduPerson | cm_co_person_roles affiliation (possibly mapped via cm_co_extended_types) | |
eduPersonPrincipalName | eduPerson | cm_identifiers identifier | |
employeeNumber | inetOrgPerson | cm_identifiers identifier | |
employeeType | inetOrgPerson | cm_co_person_roles affiliation | |
facsimileTelephoneNumber | organizationalPerson | cm_telephone_numbers number | |
gecos | posixAccount | ||
gidNumber | posixAccount | cm_identifiers identifier where type is | |
givenName | inetOrgPerson | cm_names given | Only the preferred primary name attached to the CO Person is exported (CO-333) |
hasMember | eduMember | cm_identifiers identifier | |
homeDirectory | posixAccount | cm_identifiers identifier where type is | |
isMemberOf | eduMember | cm_co_groups name | |
l | organizationalPerson | cm_addresses locality | |
loginShell | posixAccount | Currently hard coded | |
inetOrgPerson | cm_email_addresses mail | ||
member | groupOfNames | ||
mobile | inetOrgPerson | cm_telephone_numbers number | |
o | inetOrgPerson | ||
ou | organizationalPerson | ||
postalCode | organizationalPerson | cm_addresses postal_code | |
sshPublicKey | ldapPublicKey | ||
sn | person | cm_names family | Only the preferred primary name attached to the CO Person is exported (CO-333) |
st | organizationalPerson | cm_addresses state | |
street | organizationalPerson | cm_addresses line1 | |
telephoneNumber | organizationalPerson | cm_telephone_numbers number | |
title | organizationalPerson | cm_co_person_roles title | |
uid | inetOrgPerson, posixAccount | cm_identifiers identifier | |
uidNumber | posixAccount | cm_identifiers identifier where type is |
...