Attribute Mapping
Many LDAP implementations use different names for attributes that contain user information. By default, FMOS expects the attribute names uses by Microsoft Active Directory beginning with Windows Server 2003 R2. For other environments, these may not be appropriate, so FMOS provides the ability to change the mapping.
To explicitly map attributes, set the ldap_user_attr_map, ldap_group_attr_map, and/or ldap_shadow_attr_map variables.
The table below describes the values FMOS requires and the attributes it uses by default to find them.
| Description | Value | Default Attribute |
|---|---|---|
| Username | uid | sAMAccountName |
| User ID Number | uidNumber | derived from the user’s SID |
| Primary Group ID Number | gidNumber | derived from the user’s SID |
| Display Name | gecos | displayName |
| Home Directory | homeDirectory |
homeDirectory (defaults to /home/sAMAccountName if unset) |
| Login Shell | loginShell | loginShell (defaults to /bin/bash if unset) |
| Description | Value | Default Value |
|---|---|---|
| Group Name | cn | cn |
| Group ID Number | gidNumber | derived from the group's SID |