Common Schema Attributes
Common Name (cn)
Typically the account holder's formal full name, and variations of the name. Common name is the only attribute universally used by LDAP applications for name lookup.
Attribute Metadata | Details |
---|---|
Example(s) | Aggie, Joe; Joe Aggie |
OID | 2.5.4.3 |
URN | urn:oid:2.5.4.3 |
Multi-Value | Yes |
Format | UTF-8 String |
Possible Values | Any valid string |
Source(s) | Workday, Student Information System, or relevant partner source |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
Primary Department (department)
Name of department with which the employee/affiliate is associated. If the employee or affiliate has multiple appointments, the primary position appointment department name is stored.
Because the adlocDeptName
(Administrative Department Name) represents the department to which the employee reports, it does not associate unit heads with the unit he/she oversees. To allow unit heads to be properly associated with their unit, emplocDeptName
(Employee Location Department Name) is given preference. If emplocDeptName
is undefined, adlocDeptName
is used.
Attribute Metadata | Details |
---|---|
Example(s) | Technology Services |
OID | 1.2.840.113556.1.2.141 |
URN | urn:oid:1.2.840.113556.1.2.141 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | Any valid string |
Source(s) | Workday or relevant partner source |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | N/A |
Date of Birth (birthDate)
Account holder's date of birth.
Attribute Metadata | Details |
---|---|
Example(s) | 20070101000000Z ; 20070101 |
OID | 1.3.6.1.4.1.4391.0.1 |
URN | urn:oid:1.3.6.1.4.1.4391.0.1 |
Multi-Value | No |
Format | The time stored in this attribute is expressed in Coordinated Universal Time (UTC). |
Possible Values | Any valid timestamp |
Source(s) | Workday, Student Information System, or relevant partner source |
Security-Sensitive | Yes |
Usage | NetID activation |
Suppression Allowed | N/A |
Display Name (displayName)
Account holder's preferred name.
Your preferred name (as a student or employee) can be configured via self-service in Howdy or Workday, respectively.
Attribute Metadata | Details |
---|---|
Example(s) | Aggie, Joe |
OID | 2.16.840.1.113730.3.1.241 or 1.2.840.113556.1.2.13 |
URN | urn:oid:2.16.840.1.113730.3.1.241 or urn:oid:1.2.840.113556.1.2.13 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | lastName suffix , firstName |
Source(s) | Workday, Student Information System, or relevant partner source |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
Universal Identification Number (employeeID)
Account holder's Universal Identification Number (UIN). This is the Texas A&M University System unique identifier. The UIN is also used as the Texas A&M NetID system primary key (the NetID username can be changed; UIN is not designed to change).
Attribute Metadata | Details |
---|---|
Example(s) | 990000148 |
OID | 1.2.840.113556.1.4.35 |
URN | urn:oid:1.2.840.113556.1.4.35 |
Multi-Value | No |
Format | Algorithmically determined using these rules: + Exactly 9 digits + 1st digit != 0 + 4th and 5th digits == 0 |
Possible Values | Algorithmically determind |
Source(s) | Workday, Student Information System, or relevant partner source |
Security-Sensitive | No |
Usage | Directory searches, unique identifier |
Suppression Allowed | No |
First Name (givenName)
The first name of the account holder.
Attribute Metadata | Details |
---|---|
Example(s) | Joe |
OID | 2.5.4.42 |
URN | urn:oid:2.5.4.42 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | Any valid string |
Source(s) | Workday, Student Information System, or relevant partner source |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
Employee Work City (localityName)
Office (work) mailing address city.
Attribute Metadata | Details |
---|---|
Example(s) | College Station |
OID | 2.5.4.7 |
URN | urn:oid:2.5.4.7 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | Any valid string |
Source(s) | Workday (workCity ), or relevant partner source |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | N/A |
Email Address (mail)
Preferred address for the 'To' field of email sent to the account holder. This is not the final delivery address.
Attribute Metadata | Details |
---|---|
Example(s) | helpdesk@tamu.edu |
OID | 0.9.2342.19200300.100.1.3 |
URN | urn:oid:0.9.2342.19200300.100.1.3 |
Multi-Value | No |
Format | Values must conform with the syntax of an Internet e-mail address, which is a string of the form localpart@domainname. The part before the @ sign is the local part of the address, often the username of the recipient, and the part after the @ sign is a domain name. |
Possible Values | Any valid format-specific string |
Source(s) | If NetID has not been activated or the destination for institutional email has not been specified, this attribute contains no value. If NetID has been activated and a destination for institutional email has been specified, the attribute value is set to one of the mailLocalAddress email aliases (default value is the NetID@domainname alias). Account holder can specify the preferred email alias using the Aggie Account Gateway application. |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
Primary & Alternate Email Aliases (mailLocalAddress)
Primary & alternate aliases for the account holder's institutional email account.
Attribute Metadata | Details |
---|---|
Example(s) | helpdesk@tamu.edu |
OID | 2.16.840.1.113730.3.1.13 |
URN | urn:oid:2.16.840.1.113730.3.1.13 |
Multi-Value | Yes |
Format | The local part of the alias must conform to the following syntax rules: • must be at least three (3) and at most (64) characters long • must begin with a letter • must contain only the following characters: a-z, 0-9, dot(.), dash(-), and underscore(_) |
Possible Values | Any valid format-specific string |
Source(s) | Defined by account holder via the Aggie Account Gateway application. If the account holder has activated their NetID and has specified a destination for their institutional email, there will be at least one alias value. Up to three aliases may be defined for the entry. If the account owner has activated their NetID but has not specified a destination for their institutional email, this attribute will be empty. |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
Email Destination (mailRoutingAddress)
Destination for email sent to the account holder's institutional email addresses.
Attribute Metadata | Details |
---|---|
Example(s) | joe-aggie@exchange.tamu.edu |
OID | 2.16.840.1.113730.3.1.47 |
URN | urn:oid:2.16.840.1.113730.3.1.47 |
Multi-Value | No |
Format | IA5 String |
Possible Values | NetID@exchange.tamu.edu, NetID@email.tamu.edu, or another valid email address |
Source(s) | Defined by account holder via the Aggie Account Gateway application. There are three possible settings: NetID@exchange.tamu.edu for storage in the account holder's Exchange mailbox, NetID@email.tamu.edu for storage in the account holder's Google mailbox, or an arbitrary email address for forwarding. |
Security-Sensitive | No |
Usage | Email delivery |
Suppression Allowed | N/A |
Employee Supervisor (manager)
Link to directory entry of employee's immediate supervisor.
Attribute Metadata | Details |
---|---|
Example(s) | CN=joe-college,OU=People,OU=TAMUSystems,DC=auth,DC=tamu,DC=edu |
OID | 0.9.2342.19200300.100.1.10 |
URN | urn:oid:0.9.2342.19200300.100.1.10 |
Multi-Value | No |
Format | RFC 2252 |
Possible Values | Any valid format-specific string |
Source(s) | Workday or relevant partner source |
Security-Sensitive | No |
Usage | Organizational charts |
Suppression Allowed | N/A |
NetID (name)
Account login identifier for campus electronic resources. NetIDs are human-friendly identifiers selected by the account holder. NetIDs are revokable (account holders are allowed to switch to a different NetID).
Attribute Metadata | Details |
---|---|
Example(s) | joeaggie |
OID | 1.2.840.113556.1.4.1 |
URN | urn:oid:1.2.840.113556.1.4.1 |
Multi-Value | No |
Format | UTF-8 String conforming to the following syntax rules: • must be at least three (3) and at most (20) characters long • must begin with a letter • must contain only the following characters: a-z, 0-9, dot(.), dash(-), and underscore(_) |
Possible Values | Any valid format-specific string |
Source(s) | Defined by account holder in NetID Activation application (part of Aggie Account Gateway). |
Security-Sensitive | No |
Usage | Logging in to information resources |
Suppression Allowed | No |
Home Page URL (personalURI)
Personal home page URL.
Attribute Metadata | Details |
---|---|
Example(s) | https://www.tamu.edu |
OID | 1.3.6.1.4.1.4391.0.4 |
URN | urn:oid:1.3.6.1.4.1.4391.0.4 |
Multi-Value | No |
Format | IA5 String |
Possible Values | Any valid string |
Source(s) | Defined by account holder via the Aggie Account Gateway application. |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | N/A |
Employee Work Address (postalAddress)
Employee's office (work) mailing address. This information is provided only for faculty, staff, and graduate assistant employees of the Texas A&M System.
Attribute Metadata | Details |
---|---|
Example(s) | Technology Services 3363 TAMU College Station, TX 77843-3363 |
OID | 2.5.4.16 |
URN | urn:oid:2.5.4.16 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | Any valid string |
Source(s) | Workday |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
Employee Work Zip Code (postalCode)
Office (work) mailing address ZIP code.
Attribute Metadata | Details |
---|---|
Example(s) | 77845-3363 |
OID | 2.5.4.17 |
URN | urn:oid:2.5.4.17 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | Any valid string |
Source(s) | Workday, or relevant partner source |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
NetID (sAMAccountName)
Account login identifier for campus electronic resources. NetIDs are human-friendly identifiers selected by the account holder. NetIDs are revokable (account holders are allowed to switch to a different NetID).
Attribute Metadata | Details |
---|---|
Example(s) | joeaggie |
OID | 1.2.840.113556.1.4.221 |
URN | urn:oid:1.2.840.113556.1.4.221 |
Multi-Value | No |
Format | UTF-8 String conforming to the following syntax rules: • must be at least three (3) and at most (20) characters long • must begin with a letter • must contain only the following characters: a-z, 0-9, dot(.), dash(-), and underscore(_) |
Possible Values | Any valid format-specific string |
Source(s) | Defined by account holder in NetID Activation application (part of Aggie Account Gateway). |
Security-Sensitive | No |
Usage | Logging in to information resources |
Suppression Allowed | No |
Last Name (sn)
The last name of the account holder (i.e. surname).
Attribute Metadata | Details |
---|---|
Example(s) | Aggie |
OID | 2.5.4.4 |
URN | urn:oid:2.5.4.4 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | Any valid string |
Source(s) | Workday, Student Information System, or relevant partner source |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
Employee Work State (stateOrProvinceName)
Office (work) mailing address state.
Attribute Metadata | Details |
---|---|
Example(s) | TX |
OID | 2.5.4.8 |
URN | urn:oid:2.5.4.8 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | Any valid string |
Source(s) | Workday, or relevant partner source |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
Employee Work Address (streetAddress)
Employee's office (work) mailing address. This information is provided only for faculty, staff, and graduate assistant employees of the Texas A&M System.
Attribute Metadata | Details |
---|---|
Example(s) | Technology Services 3363 TAMU College Station, TX 77843-3363 |
OID | 2.5.5.12 |
URN | urn:oid:2.5.5.12 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | Any valid string |
Source(s) | Workday, or relevant partner source |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
Employee/Affiliate Public Office Phone (telephoneNumber)
Office (work) phone number.
Attribute Metadata | Details |
---|---|
Example(s) | +1 979-845-8300 |
OID | 2.5.4.20 |
URN | urn:oid:2.5.4.20 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | Any valid string |
Source(s) | Workday, or relevant partner source (most do not include this data) |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
Employee/Affiliate Official Title (title)
Employee's or affiliate's job title. For employees with multiple appointments, only the primary appointment title is stored.
To change the business title in Workday, an employee can do the following:
• Select the Personal Information application.
• In the Change box, click More
• Select Business Title.
• Complete the Proposed Business Title form
Your proposed Business Title must be approved by your supervisor. It may take 24 hours to update downstream systems.
Attribute Metadata | Details |
---|---|
Example(s) | Software Applications Developer |
OID | 2.5.4.12 |
URN | urn:oid:2.5.4.12 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | Any valid string |
Source(s) | Workday, or relevant partner source |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | Yes |
Unique Identifier (uid)
Unique identifier assigned to every entry in the directory. The uid
is used as the relative distinguished name (RDN
) for entries in the Enterprise Directory people branch.
Attribute Metadata | Details |
---|---|
Example(s) | 79094b873aa31720a4bbcd59b45df5d2e |
OID | 0.9.2342.19200300.100.1.1 |
URN | urn:oid:0.9.2342.19200300.100.1.1 |
Multi-Value | No |
Format | 32-character hexadecimal string |
Possible Values | Any valid string |
Source(s) | Generated on account creation |
Security-Sensitive | No |
Usage | Directory cross-references |
Suppression Allowed | N/A |
Scoped NetID (userPrincipalName)
This is the account login scoped to the Identity Provider. For everyone in the directory, it is NetID@tamu.edu
. NetIDs are human-friendly identifiers selected by the account holder. NetIDs are revokable (account holders are allowed to switch to a different NetID).
Attribute Metadata | Details |
---|---|
Example(s) | joe-college@tamu.edu |
OID | 1.2.840.113556.1.4.656 |
URN | urn:oid:1.2.840.113556.1.4.656 |
Multi-Value | No |
Format | UTF-8 String |
Possible Values | The values consist of a left and right component separated by an @ sign. The left component is the entry's NetID value. The right component identifies the domain or scope. For all entries in the Texas A&M NetID system this is tamu.edu . |
Source(s) | Defined by account holder in NetID Activation application. |
Security-Sensitive | No |
Usage | Logging in to information resources across campus. |
Suppression Allowed | N/A |
Consolidated Identifiers (searchMailbox)
All identifiers reserved for use by account holder. This attribute is used in management of the NetID/email alias namespace.
Attribute Metadata | Details |
---|---|
Example(s) | joeaggie , joe-aggie1 |
OID | 1.3.6.1.4.1.2630.1.7 |
URN | urn:oid:1.3.6.1.4.1.2630.1.7 |
Multi-Value | Yes |
Format | IA5 String |
Possible Values | Any valid string |
Source(s) | If the account holder has activated their NetID in Aggie Account Gateway, there will be at least one value. Up to three values may be defined for the entry. |
Security-Sensitive | No |
Usage | Directory searches |
Suppression Allowed | N/A |
User Password (userPassword)
Account password. No passwords are stored in the Texas A&M LDAP directory. Account passwords are stored in Kerberos and LDAP contains a pointer to the Kerberos principal. LDAP authenticates against the Kerberos password repository.
Attribute Metadata | Details |
---|---|
Example(s) | {SASL}joe-college@TAMU.EDU |
OID | 2.5.4.35 |
URN | urn:oid:2.5.4.35 |
Multi-Value | No |
Format | Octet String |
Possible Values | Any valid string |
Source(s) | Defined by account holder in the NetID Activation and Password Change applications. |
Security-Sensitive | Yes |
Usage | Some CAS authentications, and authentication for some Linux systems |
Suppression Allowed | N/A |