ClueNet is looking for a new Chief Technical Admin. More information here.
ClueNet:LDAP Attributes
From ClueWiki
This is a list of LDAP attributes that Cluenet uses.
[edit] uid
This is the username of the account. It is set at account creation time and cannot be changed. Distinguished names are based off the uid attribute. This attribute is publicly viewable.
[edit] uidnumber
This is the numeric UID of the account. It is set at account creation time and cannot be changed. This attribute is publicly viewable.
[edit] gidnumber
This is the numeric GID of the account. It is set at account creation time and cannot be changed. This attribute is publicly viewable.
[edit] gecos
This corresponds to the gecos (or "real name") field in /etc/passwd. It is publicly viewable. It can be changed by the user.
[edit] loginShell
This is the shell that the user is logged in with. It defaults to /bin/bash. It is publicly viewable. It can be changed by the user.
[edit] homeDirectory
This is the home directory for the account. It is set at account creation time and cannot be changed. This attribute is publicly viewable.
[edit] userPassword
This is the hashed password for the user. It is not publicly viewable. The hash is as generated by "slappasswd". Do not change this manually, use the "passwd" command.
[edit] cn
This is the user's "Common Name". It should be set to the user's real full name, if the user wants to make this public available. It is publicly viewable.
[edit] gn
This is the user's "Given Name". It should be set to the user's real first name. It is only viewable by admins.
[edit] sn
This is the user's "SurName". It should be set to the user's real last name. It is only viewable by admins.
[edit] c
This is a two letter code representing the user's country of origin. The two letter codes are defined by ISO 3166. It is publicly viewable.
[edit] mail
This is the user's primary email address. It is only viewable by admins.
[edit] st
This is the user's state or province of residence. The full name should be used. It is only viewable by admins.
[edit] l
This is the user's "Locality" or city of residence. The full name should be used. It is only viewable by admins.
[edit] telephoneNumber
This is the user's telephone number. It is only viewable by admins.
[edit] postalAddress
This is the user's street address. It is only viewable by admins.
[edit] clueSignupInfo
This is the information that the user provided at signup time. It cannot be changed by the user. It is only viewable by admins.
[edit] clueIrcNick
This is the nickname that the user uses on the ClueIRC network. It is publicly viewable.
[edit] clueVoipURI
If the user has a VOIP URI, this should be the full URI, including the "sip:" (or other) prefix. It is publicly viewable.
[edit] clueGender
This should be the user's gender, either "male" or "female". It is not publicly viewable.
[edit] clueBirthYear
This should be the user's year of birth. It is not publicly viewable.
[edit] clueSshPrivKey
If the user wants to automatically distribute a SSH private key to all the servers, this should be set to that key. It is not publicly viewable.
[edit] clueSshPubKey
If the user wants to automatically distribute a SSH public key to the authorized_keys file on all the servers, this should be set to that key. Multiple clueSshPubKey entries can be specified. The "ssh-dss" or "ssh-rsa" prefix and any comments at the end that the user wants should be included. It is publicly viewable.
[edit] clueGeneralContact
If the user wants to specify any more contact information, they can do so here. Multiple entries can be provided. It is not publicly viewable.
[edit] krb5PrincipalName
This is the name of the user's Kerberos principal. In all cases, it will be USERNAME@CLUENET.ORG. It is only used to get some other services using both LDAP and Kerberos to work.
[edit] suspendedPassword
This is a custom Cluenet attribute, and is used to store the password of a suspended account. The userPassword attribute is removed for a suspended account to prevent the user from logging in.
