[KLUG Members] LDAP & PHP
Jeremy Leonard
members@kalamazoolinux.org
Tue, 5 Aug 2003 15:18:42 -0400 (EDT)
Well, it looks like there isn't a uid attr in AD.
I guess I'll have to have several versions based on the DS my clients are
using.
>> I looked at all the attr's returned.
>> It looks like:
>> samaccountname
>> returns the info I'm looking for.
>> It's odd is this another case of M$ "embracing and extending" a
>> standard or did Novell meander.
>> In eDir cn="the user's account name" example "JeremyL"
>> in AD cn="The users full name" example "Jeremy F. Leonard"
>
> I'm afraid that in this case Active Directory is correct. "cn" is
> "Canonical Name" which in the context of a person should be the legal
> name (usually first + last) although an initial or middle name is
> probably perfectly legal.
>
> User name should be stored in "uid."
>
>> Which one is correct for open ldap or does that do something
>> completely different?
>
> AD is the correct implementation. Actually AD isn't such a bad LDAP
> server, the continued reliance on old RPC operations is the real
> problem with the full Active Directory Domain implementation.
>
> A full blown user object might look something like (although this will
> differ between sites) -
>
> dn: cn=Adam Williams,ou=People,o=Morrison Industries, c=US
> homeDirectory: /home/adam
> facsimileTelephoneNumber: 6163611124
> title: System and Network Administrator
> mail: adam@morrison-ind.com
> morrisonvpnaccess: Y
> homePhone: 6164568931
> mailRoutingAddress: adam@sardine
> mailHost: sardine
> morrisonttymenu: 1103
> givenName: Adam
> sn: Williams
> telephoneNumber: 6164473822
> morrisonphoneextension: 3822
> morrisoncifsuser: Y
> morrisonallbranches: Y
> gidNumber: 230
> morrisonlogincount: 9
> uidNumber: 437
> morrisoncompanylist: 123456790ABE
> loginShell: /bin/ksh
> employeeType: office
> employeeType: salary
> physicalDeliveryOfficeName: Grand Rapids
> ou: CIS/IT
> mailLocalAddress: adam@morrison-ind.com
> mailLocalAddress: adam@morrison.iserv.net
> mailLocalAddress: adam@cisco-inc.com
> mailLocalAddress: adam@mor-value.com
> mailLocalAddress: abuse@morrison-ind.com
> mailLocalAddress: adam@gearheadcareers.com
> mailLocalAddress: abuse@mor-value.com
> mailLocalAddress: abuse@cisco-inc.com
> mailLocalAddress: abuse@morrison.iserv.net
> mailLocalAddress: abuse@gearheadcareers.com
> mailLocalAddress: adam@triadservice.com
> mailLocalAddress: abuse@triadservice.com
> mailLocalAddress: adam.t.williams@morrison-ind.com
> mailLocalAddress: adam.t.williams@gearheadcareers.com
> mailLocalAddress: adam.t.williams@mor-value.com
> mailLocalAddress: adam.t.williams@cisco-inc.com
> mailLocalAddress: adam.t.williams@morrison.iserv.net
> mailLocalAddress: adam.t.williams@triadservice.com
> mailLocalAddress: awilliam@morrison-ind.com
> mailLocalAddress: awilliam@morrison.iserv.net
> gecos: Adam Tauno Williams
> morrisonbranch: GRD
> initials: ATW
> l: Grand Rapids
> st: Mi
> postalAddress: Morrison Industries$1825 Monroe Ave. NW$Grand Rapids, Mi.
> 49505
> homePostalAddress: Adam Tauno Williams$537 Shirley St$Grand Rapids, Mi.
> 49503
> otherFacsimileTelephoneNumber: 6163611775
> registeredAddress: Morrison Industries$1825 Monroe Ave. NW$Grand Rapids,
> Mi. 49505
> assistantPhone: 6164473820
> objectClass: top
> objectClass: posixAccount
> objectClass: inetLocalMailRecipient
> objectClass: morrisonuser
> objectClass: organizationalPerson
> objectClass: morrisonperson
> objectClass: sambaAccount
> objectClass: inetOrgPerson
> objectClass: person
> objectClass: account
> objectClass: officePerson
> objectClass: evolutionPerson
> objectClass: mHybridPerson
> objectClass: shadowAccount
> fileAs: Williams, Adam
> o: Morrison Industries
> spouseName: Michelle Suzanne Williams
> morrisoninternalrate: 0
> birthDate: 12/06/1972
> otherEmployeeNumber: IND028
> employeeNumber: IND028
> morrisonserialid: 1001
> postalCode: 49505
> mobile: 6165818010
> note: Call mobile number after hours. If your reporting a computer or
> network related problem do NOT do so via voice mail, if I do not answer
> my phone call my mobile if the problem is urgent or send an e-mail if
> the problem is not urgent. I do have access to the Morrison
> network`even after hours most of the time.
> mailer: IMP
> morrisondialaccess: Y
> shadowMin: 5
> shadowMax: 60
> shadowWarning: 15
> uid: adam
> pwdLastSet: 1057576571
> logonTime: 2
> logoffTime: 2
> kickoffTime: 2
> pwdCanChange: 2
> pwdMustChange: 0
> displayName: Adam Williams
> cn: Adam Williams
> smbHome: \\sardine\homedir
> homeDrive: F
> scriptPath: cis.bat
> profilePath: \\BARBEL\PROFILES\adam
> rid: 1874
> primaryGroupID: 1461
> lmPassword:
> ntPassword:
> acctFlags: [U ]
> userPassword::
> shadowLastChange: 12247
>
>
> _______________________________________________
> Members mailing list
> Members@kalamazoolinux.org
>