„NIIFSchema” változatai közötti eltérés
(→niifPersonDateOfBirth) |
(→Attributes) |
||
| 121. sor: | 121. sor: | ||
|name= niifCertificateSubjectDN | |name= niifCertificateSubjectDN | ||
|OID= 1.3.6.1.4.1.11914.0.1.151 | |OID= 1.3.6.1.4.1.11914.0.1.151 | ||
| − | |description= | + | |description= '''OBSOLETED''', use [[#niifCertificateSHA1Fingerprint]] instead |
| + | }} | ||
| + | |||
| + | === niifCertificateSHA1Fingerprint === | ||
| + | {{LDAPAttributeDef | ||
| + | |name= niifCertificateSHA1Fingerprint | ||
| + | |OID= 1.3.6.1.4.1.11914.0.1.168 | ||
| + | |description= Fingerprint of a certificate which belongs to the subject. | ||
| + | |semantics= Multiple fingerprints may be stored in this attribute, if a subject has multiple valid certificates. This attribute uses case insensitive matching rule. | ||
| + | |value= SHA-1 hash format without any separator characters. | ||
| + | |example= fe6d5980e2c02912024054cec114ee53ebeb2e6c | ||
| + | |numofvalues= multi | ||
| + | |syntax= IA5String | ||
}} | }} | ||
| 128. sor: | 140. sor: | ||
|name= niifPersonDateOfBirth | |name= niifPersonDateOfBirth | ||
|OID= 1.3.6.1.4.1.11914.0.1.152 | |OID= 1.3.6.1.4.1.11914.0.1.152 | ||
| + | |values= YYYYMMDD date format according to RFC 3339 'full-date' format | ||
| + | |numofvalues= single | ||
| + | |description= Date of birth of the person | ||
| + | |availability= confidential | ||
|useinfederation=[[HREFAttributeSpec#schacDateOfBirth]],[[HREFAttributeSpec#schacYearOfBirth]] | |useinfederation=[[HREFAttributeSpec#schacDateOfBirth]],[[HREFAttributeSpec#schacYearOfBirth]] | ||
| + | |notes= It's recommended to use the schacDateOfBirth attribute instead, as it has the same syntax and semantics. | ||
}} | }} | ||
| 135. sor: | 152. sor: | ||
|name= niifPersonActivityStatus | |name= niifPersonActivityStatus | ||
|OID= 1.3.6.1.4.1.11914.0.1.153 | |OID= 1.3.6.1.4.1.11914.0.1.153 | ||
| + | |description= Activity status | ||
| + | |semantics= Describes whether the person is an active employee/student of the home organization | ||
| + | |numofvalues= single | ||
| + | |values= One of the term 'active' or 'inactive' | ||
| + | |availability= organizational | ||
}} | }} | ||
| 141. sor: | 163. sor: | ||
|name= niifActiveMemberOf | |name= niifActiveMemberOf | ||
|OID= 1.3.6.1.4.1.11914.0.1.168 | |OID= 1.3.6.1.4.1.11914.0.1.168 | ||
| + | |description= DN of a group entry to which the entity currently belongs. | ||
| + | |notes= As a special case, this attribute may be used to keep a record of a student's active major(s), but it's recommended to use [[#niifEduPersonMajor]] instead. | ||
}} | }} | ||
| 147. sor: | 171. sor: | ||
|name= niifPersonJoinDate | |name= niifPersonJoinDate | ||
|OID= 1.3.6.1.4.1.11914.0.1.169 | |OID= 1.3.6.1.4.1.11914.0.1.169 | ||
| + | |description= Date of joining to the organization | ||
| + | |semantics= Date of joining to the organization. For students it may represent the first date of enrollment. | ||
| + | |syntax= Integer | ||
| + | |values= YYYYMMDD date format according to RFC 3339 'full-date' format | ||
| + | |numofvalues= single | ||
| + | |availability= organizational | ||
}} | }} | ||
| 154. sor: | 184. sor: | ||
|OID= 1.3.6.1.4.1.11914.0.1.170 | |OID= 1.3.6.1.4.1.11914.0.1.170 | ||
|syntax= Integer | |syntax= Integer | ||
| + | |description= Date of leaving the organization | ||
| + | |values= YYYYMMDD date format according to RFC 3339 'full-date' format. | ||
| + | |numofvalues= single | ||
| + | |notes= If this date is in the past, niifPersonActivityStatus must be 'inactive', and the user should be locked out. | ||
| + | |availability= organizational | ||
}} | }} | ||
| 160. sor: | 195. sor: | ||
|name= niifPersonOrgID | |name= niifPersonOrgID | ||
|OID= 1.3.6.1.4.1.11914.0.1.154 | |OID= 1.3.6.1.4.1.11914.0.1.154 | ||
| + | |description= Organizational ID of a person | ||
| + | |semantics= ID of a person in a comprehensive organizational user database if such a database exists. This ID shall be unique within the organization. | ||
| + | It is strongly recommended to use the <unique-local-ID> part of the niifUniqueID as a value for niifPersonOrgID. | ||
| + | |numofvalues= single | ||
| + | |values= For integration with niifUniqueID, value must not contain the '@' mark. | ||
| + | |notes= It is recommended to import the user ID into <unique-local-ID> from a comprehensive user database (like Neptun and ETR at Hungarian Universities) if such a database exists. | ||
| + | This attribute is for facilitating the use of user ID's in intra-organizational applications in cases when standard uid attribute can not be applied for some reason. | ||
}} | }} | ||
| 166. sor: | 208. sor: | ||
|name= niifPersonCityOfBirth | |name= niifPersonCityOfBirth | ||
|OID= 1.3.6.1.4.1.11914.0.1.155 | |OID= 1.3.6.1.4.1.11914.0.1.155 | ||
| + | |description= The city or settlement where the person was born | ||
| + | |semantics= Name of the city or settlement where the person was born. If the place of birth is outside the borders of Hungary, the name may be given in Hungarian. | ||
| + | |numofvalues= single | ||
| + | |availability= confidential | ||
| + | |notes= It's recommended to use the schacPlaceOfBirth attribute instead. | ||
}} | }} | ||
| 172. sor: | 219. sor: | ||
|name= niifPersonCountryOfBirth | |name= niifPersonCountryOfBirth | ||
|OID= 1.3.6.1.4.1.11914.0.1.156 | |OID= 1.3.6.1.4.1.11914.0.1.156 | ||
| + | |description= The country where the person was born | ||
| + | |semantics= Name of the country where the person was born. If the place of birth is outside the borders of Hungary, the name must be given in Hungarian. | ||
| + | |numofvalues= single | ||
| + | |availability= confidential | ||
| + | |notes= It's recommended to use the schacPlaceOfBirth attribute instead. | ||
}} | }} | ||
| 178. sor: | 230. sor: | ||
|name= niifPersonMothersName | |name= niifPersonMothersName | ||
|OID= 1.3.6.1.4.1.11914.0.1.157 | |OID= 1.3.6.1.4.1.11914.0.1.157 | ||
| + | |description= Name of the mother of the person | ||
| + | |semantics= Maiden name of the mother of the person. | ||
| + | |numofvalues= single | ||
| + | |availability= confidential | ||
}} | }} | ||
| 184. sor: | 240. sor: | ||
|name= niifPersonIdentityNumber | |name= niifPersonIdentityNumber | ||
|OID= 1.3.6.1.4.1.11914.0.1.158 | |OID= 1.3.6.1.4.1.11914.0.1.158 | ||
| + | |description= Number of the Identity Card | ||
| + | |semantics= Number of the Identity Card of the person or Passport Number for those who are non-Hungarian citizens | ||
| + | |numofvalues= single | ||
| + | |availability= confidential | ||
| + | |notes= Every Hungarian citizen by the age of 14 receives an Identity Card. For foreigners, Passport Number should be used. This number should never be made public. | ||
| + | Format of the code may vary as numbering scheme has been changed in the recent years. | ||
| + | It's recommended to use the URN-formatted schacPersonalUniqueID attribute instead. | ||
}} | }} | ||
| 190. sor: | 253. sor: | ||
|name= niifPersonResidentialAddress | |name= niifPersonResidentialAddress | ||
|OID= 1.3.6.1.4.1.11914.0.1.159 | |OID= 1.3.6.1.4.1.11914.0.1.159 | ||
| + | |description= Home address of the person | ||
| + | |semantics= Permanent home address of the person. The postal code, the name of the city, street and apartment number shall be included. | ||
| + | |numofvalues= single | ||
| + | |availability= confidential | ||
}} | }} | ||
A lap 2010. január 7., 13:15-kori változata
Tartalomjegyzék
[elrejtés]- 1 NIIF LDAP Schema
- 1.1 Versioning
- 1.2 ObjectClasses
- 1.3 Attributes
- 1.3.1 niifUniqueID
- 1.3.2 niifPrefix
- 1.3.3 niifPersonPrefix
- 1.3.4 niifStatus
- 1.3.5 niifPersonDegree
- 1.3.6 niifTitle
- 1.3.7 niifPersonPosition
- 1.3.8 niifCertificateSubjectDN
- 1.3.9 niifCertificateSHA1Fingerprint
- 1.3.10 niifPersonDateOfBirth
- 1.3.11 niifPersonActivityStatus
- 1.3.12 niifActiveMemberOf
- 1.3.13 niifPersonJoinDate
- 1.3.14 niifPersonQuitDate
- 1.3.15 niifPersonOrgID
- 1.3.16 niifPersonCityOfBirth
- 1.3.17 niifPersonCountryOfBirth
- 1.3.18 niifPersonMothersName
- 1.3.19 niifPersonIdentityNumber
- 1.3.20 niifPersonResidentialAddress
- 1.3.21 niifEduPersonFaculty
- 1.3.22 niifEduPersonFacultyDN
- 1.3.23 niifEduPersonMajor
- 1.3.24 niifEduPersonAcademicYear
- 1.3.25 niifEduPersonAttendedCourse
- 1.3.26 niifEduPersonArchiveCourse
- 1.3.27 niifEduPersonArchiveCourse
- 1.3.28 niifEduPersonHeldCourse
NIIF LDAP Schema
Versioning
Current version: 2.1
ObjectClasses
niifPerson
| niifPerson | |
|---|---|
| Parent | inetOrgPerson |
| OID | 1.3.6.1.4.1.11914.0.0.0 |
| Description | - |
| Mandatory attributes | |
| Optional attributes |
|
niifEduPerson
| niifEduPerson | |
|---|---|
| Parent | eduPerson |
| OID | 1.3.6.1.4.1.11914.0.0.9 |
| Description | - |
| Mandatory attributes | - |
| Optional attributes | |
Attributes
niifUniqueID
| niifUniqueID | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.3 |
| Description | Unique ID of a person. |
| Semantics | <unique-local-ID>@<organization-domain>
The <organization-domain> part equals to the main internet domain of the organization (i.e.: 'sztaki.hu'). The <unique-local-ID> part is a sequence of letters (case insensitive) and numbers. It can be freely chosen by the home organization provided that the ID is unique within the scope of the organization and one and only one ID is assigned to every single person. |
| Values | - |
| # of values | multi
|
| Availabilty | organizational |
| Syntax | Directory String
|
| Examples | gmx3f0@bme.hu |
| Notes | It is up to the local policy to define how the <unique-local-ID> is generated and how long does it represent a user. However, assigning the same ID to another person (after the first person entry has been removed from the directory) is deprecated.
It is recommended to import the user ID into <unique-local-ID> from a comprehensive user database (like Neptun and ETR at Hungarian Universities) if such a database exists. |
| Use in federation | - |
niifPrefix
| niifPrefix | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.0 |
| Description | OBSOLETED, use #niifPersonPrefix |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifPersonPrefix
| niifPersonPrefix | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.165 |
| Description | Prefix of the person's name |
| Semantics | A name should have only one prefix, multiple entitlements may be listed one after the other in the same value |
| Values | - |
| # of values | multi
|
| Availabilty | public |
| Syntax | Directory String
|
| Examples | Prof. Dr. |
| Notes | - |
| Use in federation | HREFAttributeSpec#schacPersonalTitle |
niifStatus
| niifStatus | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.1 |
| Description | OBSOLETED, use #niifPersonDegree |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifPersonDegree
| niifPersonDegree | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.166 |
| Description | Scientific degree of the person |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | public |
| Syntax | Directory String
|
| Examples | - |
| Notes | Only the highest degree should be stored. |
| Use in federation | - |
niifTitle
| niifTitle | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.2 |
| Description | OBSOLETED, use #niifPersonPosition |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifPersonPosition
| niifPersonPosition | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.167 |
| Description | Position of the person within a department or organization |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | dékán |
| Notes | May be specified in multiple languages by the use of language tags. Also see schacPersonalPosition attribute, which defines an URN format for this purpose. |
| Use in federation | - |
niifCertificateSubjectDN
| niifCertificateSubjectDN | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.151 |
| Description | OBSOLETED, use #niifCertificateSHA1Fingerprint instead |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifCertificateSHA1Fingerprint
| niifCertificateSHA1Fingerprint | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.168 |
| Description | Fingerprint of a certificate which belongs to the subject. |
| Semantics | Multiple fingerprints may be stored in this attribute, if a subject has multiple valid certificates. This attribute uses case insensitive matching rule. |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | IA5String
|
| Examples | fe6d5980e2c02912024054cec114ee53ebeb2e6c |
| Notes | - |
| Use in federation | - |
niifPersonDateOfBirth
| niifPersonDateOfBirth | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.152 |
| Description | Date of birth of the person |
| Semantics | - |
| Values | YYYYMMDD date format according to RFC 3339 'full-date' format |
| # of values | single
|
| Availabilty | confidential |
| Syntax | Directory String
|
| Examples | - |
| Notes | It's recommended to use the schacDateOfBirth attribute instead, as it has the same syntax and semantics. |
| Use in federation | HREFAttributeSpec#schacDateOfBirth,HREFAttributeSpec#schacYearOfBirth |
niifPersonActivityStatus
| niifPersonActivityStatus | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.153 |
| Description | Activity status |
| Semantics | Describes whether the person is an active employee/student of the home organization |
| Values | One of the term 'active' or 'inactive' |
| # of values | single
|
| Availabilty | organizational |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifActiveMemberOf
| niifActiveMemberOf | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.168 |
| Description | DN of a group entry to which the entity currently belongs. |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | As a special case, this attribute may be used to keep a record of a student's active major(s), but it's recommended to use #niifEduPersonMajor instead. |
| Use in federation | - |
niifPersonJoinDate
| niifPersonJoinDate | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.169 |
| Description | Date of joining to the organization |
| Semantics | Date of joining to the organization. For students it may represent the first date of enrollment. |
| Values | YYYYMMDD date format according to RFC 3339 'full-date' format |
| # of values | single
|
| Availabilty | organizational |
| Syntax | Integer
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifPersonQuitDate
| niifPersonQuitDate | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.170 |
| Description | Date of leaving the organization |
| Semantics | - |
| Values | YYYYMMDD date format according to RFC 3339 'full-date' format. |
| # of values | single
|
| Availabilty | organizational |
| Syntax | Integer
|
| Examples | - |
| Notes | If this date is in the past, niifPersonActivityStatus must be 'inactive', and the user should be locked out. |
| Use in federation | - |
niifPersonOrgID
| niifPersonOrgID | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.154 |
| Description | Organizational ID of a person |
| Semantics | ID of a person in a comprehensive organizational user database if such a database exists. This ID shall be unique within the organization.
It is strongly recommended to use the <unique-local-ID> part of the niifUniqueID as a value for niifPersonOrgID. |
| Values | For integration with niifUniqueID, value must not contain the '@' mark. |
| # of values | single
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | It is recommended to import the user ID into <unique-local-ID> from a comprehensive user database (like Neptun and ETR at Hungarian Universities) if such a database exists.
This attribute is for facilitating the use of user ID's in intra-organizational applications in cases when standard uid attribute can not be applied for some reason. |
| Use in federation | - |
niifPersonCityOfBirth
| niifPersonCityOfBirth | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.155 |
| Description | The city or settlement where the person was born |
| Semantics | Name of the city or settlement where the person was born. If the place of birth is outside the borders of Hungary, the name may be given in Hungarian. |
| Values | - |
| # of values | single
|
| Availabilty | confidential |
| Syntax | Directory String
|
| Examples | - |
| Notes | It's recommended to use the schacPlaceOfBirth attribute instead. |
| Use in federation | - |
niifPersonCountryOfBirth
| niifPersonCountryOfBirth | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.156 |
| Description | The country where the person was born |
| Semantics | Name of the country where the person was born. If the place of birth is outside the borders of Hungary, the name must be given in Hungarian. |
| Values | - |
| # of values | single
|
| Availabilty | confidential |
| Syntax | Directory String
|
| Examples | - |
| Notes | It's recommended to use the schacPlaceOfBirth attribute instead. |
| Use in federation | - |
niifPersonMothersName
| niifPersonMothersName | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.157 |
| Description | Name of the mother of the person |
| Semantics | Maiden name of the mother of the person. |
| Values | - |
| # of values | single
|
| Availabilty | confidential |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifPersonIdentityNumber
| niifPersonIdentityNumber | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.158 |
| Description | Number of the Identity Card |
| Semantics | Number of the Identity Card of the person or Passport Number for those who are non-Hungarian citizens |
| Values | - |
| # of values | single
|
| Availabilty | confidential |
| Syntax | Directory String
|
| Examples | - |
| Notes | Every Hungarian citizen by the age of 14 receives an Identity Card. For foreigners, Passport Number should be used. This number should never be made public.
Format of the code may vary as numbering scheme has been changed in the recent years. It's recommended to use the URN-formatted schacPersonalUniqueID attribute instead. |
| Use in federation | - |
niifPersonResidentialAddress
| niifPersonResidentialAddress | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.159 |
| Description | Home address of the person |
| Semantics | Permanent home address of the person. The postal code, the name of the city, street and apartment number shall be included. |
| Values | - |
| # of values | single
|
| Availabilty | confidential |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifEduPersonFaculty
| niifEduPersonFaculty | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.160 |
| Description | - |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifEduPersonFacultyDN
| niifEduPersonFacultyDN | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.161 |
| Description | - |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifEduPersonMajor
| niifEduPersonMajor | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.162 |
| Description | - |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifEduPersonAcademicYear
| niifEduPersonAcademicYear | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.163 |
| Description | - |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifEduPersonAttendedCourse
| niifEduPersonAttendedCourse | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.164 |
| Description | - |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifEduPersonArchiveCourse
| niifEduPersonArchiveCourse | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.165 |
| Description | - |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifEduPersonArchiveCourse
| niifEduPersonArchiveCourse | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.166 |
| Description | - |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
niifEduPersonHeldCourse
| niifEduPersonHeldCourse | |
|---|---|
| OID | 1.3.6.1.4.1.11914.0.1.167 |
| Description | - |
| Semantics | - |
| Values | - |
| # of values | multi
|
| Availabilty | - |
| Syntax | Directory String
|
| Examples | - |
| Notes | - |
| Use in federation | - |
