User identity attributes
A set of standard set of LDAP attributes and Cloud Identity Service user attributes can be set when you create or update users. In addition, you might have extra custom attributes specific to your organization.
Contact your support representative for assistance with custom attributes.
Standard LDAP user identity attributes
The standard LDAP attributes that are available are specified in the inetOrgPerson, organizationalPerson, person, and ePerson object classes.| Attribute name | Type | Multi-value | Description |
|---|---|---|---|
| accessHint | String | Yes | DN pointer to an accessRole or accessGroup object class. |
| accountHint | String | Yes | DN pointer to an account directory object. |
| audio | String | Yes | Contains a sound file in binary format. |
| businessCategory | String | Yes | The kind of business that is performed by an organization. |
| c | String | No | Country, indicated by a two-letter ISO 3166 country code (countryName). |
| carLicense | String | Yes | Vehicle license plate tag. |
| cn | String | Yes | Common name. The X.500 commonName attribute, which contains a name of an object. If the object corresponds to a person, it is typically the full name of the person. |
| configPtr | String | Yes | DN pointer to a directory that is derived from the cimConfigurationentry object class, such as an ePropertySet. |
| departmentNumber | String | Yes | A department within an organization. |
| description | String | Yes | A lengthy description of a directory object entry. An attribute that is common to CIM and LDAP schema. |
| destinationIndicator | String | Yes | The country and city strings that are associated with the object (the addressee) needed to provide the public telegram service. |
| displayName | String | Yes | A name that is used to display an entry in a one-line summary list. |
| employeeNumber | String | No | Identifies an employee in an organization by the employee number. |
| employeeType | String | Yes | The type of employment for an employee. |
| facsimileTelephoneNumber | String | Yes | A fax number. |
| generationQualifier | String | Yes | The suffix part of the name of a person, for example, III, 3rd, and Jr. |
| givenName | String | Yes | The part of the name of a person that is not their surname or their middle name, for example John, Jane, or Joe. |
| homeFax | String | Yes | A home fax number. |
| homePhone | String | Yes | A home telephone number. |
| initials | String | Yes | The initials of some or all of the name of a person, but not including the surname, for example D. or D. A. for a person with the name Dan Andrew Smith. |
| internationalISDNNumber | String | Yes | The Integrated Services Digital Network (ISDN) addresses, in the format specified in CCITT Rec. E. 164. |
| jpegPhoto | String | Yes | A JPEG photo. |
| l | String | Yes | The name of a locality, such as a city, county, or other geographic region. (localityName in X.500.) |
| labeledURI | String | Yes | The Uniform Resource Identifier with an optional label as defined in RFC2079. |
| String | Yes | Email address. | |
| manager | String | Yes | The given name of a user's manager within your organization. |
| middleName | String | Yes | The middle name of a person. |
| mobile | String | Yes | The mobile or cellular phone number. |
| o | String | Yes | The name of an organization. (organizationName in X.500.) |
| objectClass | String | Yes | The kind of object that an entry represents. |
| organizationalStatus | String | Yes | A category by which a person is referred to in an organization. |
| otherMailbox | String | Yes | Specifies values for electronic mailbox types other than X.400 and rfc822. |
| ou | String | Yes | The name of an organizational unit. (organizationName in X.500.) |
| pager | String | Yes | A pager phone number. |
| personalTitle | String | Yes | A personal title for a person, for example Mr, Ms, Dr, Prof, and Rev. |
| photo | String | Yes | A photo, in binary form. |
| physicalDeliveryOfficeName | String | Yes | A physical delivery office number. |
| postalAddress | String | Yes | A mailing address. This field is intended to include multiple lines. When represented in LDIF format, each line must be separated by a dollar sign ($) |
| postalCode | String | Yes | Postal code. |
| postOfficeBox | String | Yes | Post office box number. |
| preferredDeliveryMethod | String | No | A preferred contact or delivery method. |
| preferredLanguage | String | No | The preferred written or spoken language of a person. |
| registeredAddress | String | Yes | A postal address for receiving telegrams or expedited documents. |
| roomNumber | String | Yes | A room number. The commonName attribute is normally used for naming room objects. |
| secretary | String | Yes | Identifies a secretary or administrative assistant, by distinguished name. |
| seeAlso | String | Yes | The distinguished names of objects that are related to the subject object. Each related object name is one value of this multi-valued attribute. |
| sn | String | Yes | The X.500 surname attribute, which is the surname of a person. |
| st | String | Yes | The full name of a state or province. (stateOrProvinceName in X.500) |
| street | String | Yes | The site information from a postal address (the street name, place, avenue, and the house number). (streetAddress in X.500.) |
| telephoneNumber | String | Yes | A telephone number. |
| teletexTerminalIdentifier | String | Yes | A teletex terminal identifier. |
| telexNumber | String | Yes | A telex number. |
| thumbNailLogo | String | Yes | Thumbnail logo that is associated with a user. |
| thumbNailPhoto | String | Yes | Thumbnail photo that is associated with a user. |
| title | String | Yes | The title, such as Vice President, of a person in their organizational context. |
| uid | String | Yes | A login name that is associated with the user, typically shortname, or userid. |
| uniqueIdentifier | String | Yes | A unique identifier for an object that is represented in the directory. The domain within which the identifier is unique, and the exact semantics of the identifier, are defined locally. |
| userCertificate | String | Yes | The certificates that are issued to the user by one or more certificate authorities. |
| userPKCS12 | String | Yes | PKCS \2312 PFX PDU standard for exchange of personal identity information. |
| userPassword | String | Yes | A password value for a distinguished name. |
| userSMIMECertificate | String | Yes | Signed message that is used to support S/MIME. |
| x121Address | String | Yes | Specifies the X.121 address for an object. |
| x500UniqueIdentifier | String | Yes | Differentiates objects when a distinguished name is reused. The method of identification is binary. |
Cloud Identity Service user identity attributes
| Field | Type | Description |
|---|---|---|
| gtwayAddressLine1 | String | The first line of a postal address. |
| gtwayAddressLine2 | String | The second line of a postal address. |
| gtwayDelegate | Boolean | The name of a user's delegate in Cloud Identity Service. |
| gtwayIsManager | Boolean | Indicates whether a user is a manager of other users in Cloud Identity Service. |
| gtwayLastRecertDate | String | The last recertification date for a user. |
| gtwayManager | String | The name of a user's manager in Cloud Identity Service. |
| gtwayUserType | String | The user type. |