Configuration properties and LDAP user attributes

An LDAP server maintains a directory of information about system users. Each entry (record) in an LDAP directory consists of multiple attributes, which may or may not be assigned values. Users within the NiagaraNetwork require additional properties, such as permissions and facets that apply only within the NiagaraNetwork context.

A sample LDAP user entry might contain the following information from the LDAP server:

Figure 1. Example LDAP directory record


Several key configuration properties in each of the LDAP authentication schemes correspond directly to the names of attributes in the LDAP directory.

The property names for these LDAP properties begin with Attr (attribute). The system pulls the values for these properties from the LDAP directory on the LDAP server and uses them to fill out information about the user.

In the example above, the station user is jdoe. To populate the Full Name property value, you enter displayName in the Attr Full Name field.

The user properties that are not maintained by the LDAP server appear in the UserService property sheet for each user.