Specifications
Appendix A Mac OS X Directory Data 161
Attribute Mappings for Locations
Standard Attributes in User Records
The following table specifies facts about the standard attributes, or data types, found in
user records of Mac OS X data services. Use these facts when mapping LDAP or Active
Directory domains to Mac OS X directory services.
Important: When mapping Mac OS X user attributes to a read/write LDAP directory
domain (an LDAP domain that is not read-only), do not map the RealName and the first
RecordName attributes to the same LDAP attribute. For example, do not map both
RealName and RecordName to the cn attribute. If RealName and RecordName are
mapped to the same LDAP attribute, problems will occur when you try to edit the full
(long) name or the first short name in Workgroup Manager.
Open Directory name,
RFC/class
LDAP attribute name
OID
Active Directory plug-in
RecordName,
RFC 2256
cn
2.5.4.3
RFC standard
DNSDomain,
Apple registered
apple-dns-domain
1.3.6.1.4.1.63.1000.1.1.1.18.1
Apple extended schema
DNSNameServer,
Apple registered
apple-dns-nameserver
1.3.6.1.4.1.63.1000.1.1.1.18.2
Apple extended schema
Mac OS X
user attribute
Format Sample values
RecordName:
A list of names associated with a
user; the first is the user’s short
name, which is also the name of
the user’s home directory
Important: All attributes used
for authentication must map to
RecordName.
First value: ASCII characters A–Z,
a–z, 0–9, _,-
Second value: UTF-8 Roman text
Dave
David Mac
DMacSmith
Non-zero length, 1 to 16 values.
Maximum 255 bytes (85 triple-
byte to 255 single-byte
characters) per instance. First
value must be 1 to 30 bytes for
clients using Macintosh
Manager, or 1 to 8 bytes for
clients using Mac OS X version
10.1 and earlier.
RealName:
A single name, usually the user’s
full name; not used for
authentication
UTF-8 text David L. MacSmith, Jr.
Non-zero length, maximum 255
bytes (85 triple-byte to 255
single-byte characters).
LL2352.Book Page 161 Friday, August 22, 2003 3:12 PM