Adapter attributes and object classes
The IBM® Security Identity server communicates with the adapter by using attributes, which are included in transmission packets that are sent over a network. After you install the adapter profile, the Azure Active Directory Adapter supports a standard set of attributes.
User attributes
The following tables show the standard attributes and object classes that are supported by the Azure Active Directory Adapter.
| IBM Security Identity Manager name | Attribute name in schema | Data type |
|---|---|---|
| User ID | eruid | String |
| Password | erpassword | Password |
| Display Name | erazuredisplayname | String |
| Mail Nickname | erazuremailnickname | String |
| Change Password on Next Login | erazurechgpwdnextlogin | String |
| Given Name | erazuregivename | String |
| Last Name | erazuresurname | String |
| erazuremail | String | |
| Job Title | erazurejobtitle | String |
| Department | erazuredepartment | String |
| Office Number | erazureoffice | String |
| Office Phone | erazuretelphone | String |
| Mobile Phone | erazuremobile | String |
| Fax Number | erazurefax | String |
| Street Address | erazurestreet | String |
| City | erazurecity | String |
| State or Province | erazurestate | String |
| Zip or Postal Code | erazurepostalcode | String |
| Country or Region | erazurecountry | String |
| Preferred Language | erazurepreflang | String |
| Set User Location | erazurelocation | String |
| Assign Licenses | erazurelicvalue | String |
| Alternate Email Address | erazureothermail | String |
| Group Membership | erazuregroupoid | String |
| Administrator Role Membership | erazureroleoid | String |
Group attributes
| IBM Security Identity Manager name | Attribute name in schema | Data type |
|---|---|---|
| Group Id | erazuregroupoid | String |
| Group Name | erazuregroupdisplayname | String |
| Group Description | erazuregroupdesc | String |
Note:
- The Group Id attribute is the Object Id of the Azure Active Directory group. This attribute is mapped to the IBM Security Identity Manager erGroupId. You cannot use the adapter to modify this attribute.
- The Group Name attribute is mapped to the IBM Security Identity Manager erGroupName attribute. You cannot user the adapter to modify this attribute.
Object classes
| Description | Object class name in schema | Superior |
|---|---|---|
| Service class | erazureservice | Top |
| Account class | erazureaccount | Top |
| Group class | erazuregroups | Top |
| License class | erazurelicenses | Top |