Installation and Upgrade > Installation and Configuration Guide > Advanced Configurations > Configuring Additional Enterprise Directories > User and Group LDAP Attribute Value Mapping > Default User and Group LDAP Attribute Values
  
Default User and Group LDAP Attribute Values
The following sections list the default group LDAP object class and attributes used by Windchill and the corresponding object class and attributes used for group objects in other LDAP directories. For Microsoft Active Directory-specific values, see Microsoft Active Directory Attribute Mapping for User and Group Objects.
User Object LDAP Attribute Values
The default value in Windchill assigned to the LDAP user object class:
Windchill User Object Class
<map_identifier>
Description
LDAP Object Class Default Value
objectClass
Specifies the LDAP object class value that defines users in the directory service.
inetOrgPerson
The following table lists the default LDAP values for user objects recognized by Windchill. If necessary, use the <map_identifier> to change the corresponding default attribute value for your LDAP directory:
Windchill LDAP User Attributes
<map_identifier>
Description
Default Value
cn
Identifies the attribute that holds the full name (“common name”) of a user in the directory service
cn
certificateType
Specifies the type of user certificates that are registered in the directory service.
X.509
mail
Identifies the attribute that holds the email address of a user in the directory service.
mail
postalAddress
Identifies the attribute that holds the postal address of a user in the directory service.
postalAddress
preferredLanguage
Identifies the attribute that holds the preferred language of a user in the directory service.
preferredLanguage
sn
Identifies the attribute that holds the surname of a user in the directory service.
sn
o
Identifies the attribute that holds the organization to which a user in the directory service belongs.
You can also set the user initial organization name using the usersOrganizationName. For more information, see Set Additional Properties.
o
uid
Identifies the attribute that holds the user ID (usually used as login ID) of a user in the directory service.
uid
uniqueIdAttribute
Identifies the attribute that uniquely identifies a user in the directory service.
uid
userCertificate
Identifies the attribute that provides the user certificate of a user in the directory service.
userCertificate
telephoneNumber
Identifies the attribute that holds the primary telephone number of the user.
telephoneNumber
mobile
Identifies the attribute that holds the cell phone number of the user.
mobile
facsimileTelephoneNumber
Identifies the attribute that holds the fax number of the user.
facsimileTelephoneNumber
labledURI
Identifies the attribute that holds the URL of the website of the user.
labledURI
Group Object LDAP Attribute Values
The default value in Windchill assigned to the LDAP group object class:
Windchill Group Object Class
<map_identifier>
Description
Default LDAP Object Class
objectClass
Specifies the LDAP object class value that defines groups in the directory service.
groupOfUniqueNames
The following table lists the default LDAP values for group objects recognized by Windchill. If necessary, use the <map_identifier> to change the corresponding default attribute value for your LDAP directory:
Windchill LDAP Group Attributes
<map_identifier>
Description
Default Value
cn
Identifies the attribute that holds the names of groups in the directory service.
cn
description
Identifies the attribute that holds the descriptive text about groups in the directory service.
description
filter
Specifies an additional expression that is be added to all LDAP search filters used in querying groups that use this JNDI adapter. By default, no additional expression is added. Example: (ou=Engineering)
You can also set the filter using the existing JNDI searchFilter property.
uniqueIdAttribute
Identifies the attribute that holds the unique names of groups in the directory service.
cn
uniqueMember
Identifies the attribute that defines members of groups in the directory service.
uniqueMember