Need to create a new Attribute in OpenLDAP and map it with existing attribute

kovvuri · 02-19-2020, 09:29 AM

HI,

Can someone please help me to create a new attribute (UserAccountControl) in openldap. And map this with already existing attribute (STATUS).

Existing format

dn: uid=xxxxxx,ou=People,ou=Branch,o=root
loginShell: /bin/bash
employeeNumber: xxxxxxx
gidNumber: xxxxxx
uid: xxxxxx
uidNumber: xxxxxx
homeDirectory: /home/xxxxx
sn: xxxxxx
status: ACTIVE
mail: xxxxxxxxxxxxxx
ntUserDomainId:xxxxxx
givenName: xxxxxxxxx
objectClass: top
objectClass: person
objectClass: nsnPerson
objectClass: posixAccount
objectClass: inetOrgPerson
gecos: xxxxxxxxxxxxxx
employeeType: E
cn: xxxxxxxxxx
displayName: xxxxxxxxxxxx

-----------------------
Required format

dn: uid=xxxxxx,ou=People,ou=Branch,o=root
loginShell: /bin/bash
employeeNumber: xxxxxxx
gidNumber: xxxxxx
uid: xxxxxx
uidNumber: xxxxxx
homeDirectory: /home/xxxxx
sn: xxxxxx
status: ACTIVE
mail: xxxxxxxxxxxxxx
ntUserDomainId:xxxxxx
givenName: xxxxxxxxx
objectClass: top
objectClass: person
objectClass: nsnPerson
objectClass: posixAccount
objectClass: inetOrgPerson
gecos: xxxxxxxxxxxxxx
employeeType: E
cn: xxxxxxxxxx
displayName: xxxxxxxxxxxx
UserAccountControl: (This value should be same as status attribute)

Thanks in advance

Br
Kovvuri

bathory · 02-19-2020, 12:43 PM

Hi,

You can use ldapmodify in order to add the attribute/value you want. Just make sure that the attribute exists in a schema from those loaded at openldap start.

For example create a ldif file like this:

Code:

dn: uid=xxxxxx,ou=People,ou=Branch,o=root
changetype: modify
add: UserAccountControl
UserAccountControl: ACTIVE

and use ldapmodify to import it in the ldap server

Regards