Used Attributes

The following table describes the attributes that the appliance uses in the supported directories.

Attribute Name	LDAP Name	Description	Type	Supported in Active Directory	Supported in eDirectory
CN (Common Name)	CN	An identifier of an object	String	✓	✓
Mobile	Mobile	A phone number of an object's cellular or mobile phone	Phone number	✓	✓
Email Address	mail	An email address of a user	Email address	✓	✓
User-Principal-Name (UPN)	userPrincipalName	An Internet based format login name for a user	String	✓	✓
SAM-Account-Name	sAMAccountName	The login name used to support clients and servers running earlier versions of operating systems such as Windows NT 4.0	String	✓	×
GUID	GUID	An assured unique value for any object	Octet String	×	✓
Object Class	Object Class	An unordered list of object classes	String	✓	✓
Member	Member	A list that indicates the objects associated with a group or list	String	✓	✓
User-Account-Control	userAccountControl	Flags that control the behavior of a user account	Enumeration	✓	×
ms-DS-User-Account-Control-Computed	msDS-User-Account-Control-Computed	Flags that are similar to userAccountControl, but the attribute's value can contain additional bits that are not persisted	Enumeration	✓	×
Primary-Group-ID	primaryGroupID	A relative identifier (RID) for the primary group of a user	Enumeration	✓	×
Object-Guid	objectGUID	A unique identifier for an object	Octet String	✓	×
object-Sid	objectSid	A Binary value that specifies the security identifier (SID) of the user	Octet String	✓	×
Logon-Hours	logonHours	Hours that the user is allowed to logon to the domain	Octet String	✓	×
USN-Changed	uSNChanged	An update sequence number (USN) assigned by the local directory for the latest change including creation	Interval	✓	×

NOTE:The sAMAccountName and userPrincipalName attributes are supported only for AD DS repository. The Active Directory LDS and eDirectory repositories do not support these attributes.