Setting Description

User Object Class This is the name of the class used for the LDAP user object. Example: user

User Object Filter The filter to use when searching user objects. Example: (& ( objectCategory=Person ) (sAMAccountName=*)) You can have a maximum of 4,000 characters in this field. Ensure your LDAP filters are concise. More examples can be found here and here.

User Name Attribute The attribute field to use when loading the username. Examples: cn

sAMAccountName NB: In Active Directory, the 'sAMAccountName' is the 'User Logon Name (pre-Windows 2000)' field. The User Logon Name field is referenced by 'cn'.

User Name RDN Attribute The RDN (relative distinguished name) to use when loading the username. The DN for each LDAP entry is composed of two parts: the RDN and the location within the LDAP directory where the record resides. The RDN is the portion of your DN that is not related to the directory tree structure. Example: cn

User First Name Attribute The attribute field to use when loading the user's first name. Example: givenName

User Last Name Attribute The attribute field to use when loading the user's last name. Example: sn

User Display Name Attribute The attribute field to use when loading the user's full name. Example: displayName This field cannot accept more than 50 characters from LDAP. Otherwise, the sync will skip the user. HCPUB-1763 - Getting issue details... STATUS is a feature request to increase the limit beyond 50 characters.

User Email Attribute The attribute field to use when loading the user's email address. Example: mail The user will not be synchronized if this attribute is empty. Always use the attribute that contains the user email (example: userPrincipalName ).



User Password Attribute The attribute field to use when loading a user's password. Example: unicodePwd