OpenLDAP schema and attribute for account type

Question

We have different account types:

Personal - For employees
Sponsored - For users that are affiliated with the organization but not official employees
E-mail only - Only for e-mail usage (campaigns, etc)
Shared - For offices or departments

Right now, we use an Oracle database to distinguish account types but are looking to move this information into LDAP.

Anyone aware of a schema and attribute that would be applicable to denote these accounts?

Schemas currently loaded: Default OpenLDAP schemas along with the eduPerson and eduOrg schemas.

score 3 · Accepted Answer · answered Nov 30 '10 at 17:01

3

The employeeType of the inetOrgPerson objectclass would appear to be the appropriate field.

You may be able to determine E-mail only by lack of certain fields.

answered Nov 30 '10 at 17:01

BillThor

1

I ended up going with userClass, part of the cosine schema: http://www.zytrax.com/books/ldap/ape/cosine.html – Belmin Fernandez Dec 02 '10 at 01:51

1 Answers1