Apple Mac OS X Server (version 10.2.3 or later) User Manual

Data Requirements of Mac OS X Directory Services

627

AuthenticationAuthority:

describes the user’s
authentication methods,
such as Password Server
or basic (crypt); not
required for a user with
only a basic password;
absence of this attribute
signifies legacy
authentication (crypt
and Authentication
Manager, if it is
available).

ASCII text

Values describe the user’s authentication
methods: Simple Authentication and Security
Layer (SASL), Kerberos, directory-based, or crypt
and replacement crypt.

Can be multivalued (for example, basic and
LocalWindowsHash).

Each value has the format vers; tag; data
(where vers and data may be blank).

crypt format: ;basic;

Password Server format: ;ApplePasswordServer;
HexID, server’s public key IPaddress:port

SMB hash format (local directory domain
only): ;LocalWindowsHash;

AuthenticationHint:

text set by the user to be
displayed as a password
reminder

UTF-8 text

Your guess is as good as mine.

Maximum 255 bytes.

FirstName

not used by Mac OS X,
but corresponds to part
of standard LDAP
schema

LastName

not used by Mac OS X,
but corresponds to part
of standard LDAP
schema

EMailAddress:

an email address to
which mail should be
automatically forwarded
when a user has no
MailAttribute defined

Any legal RFC
822 email
address or a valid
“mailto:” URL

[email protected]
mailto:[email protected]

Mac OS X
user attribute

Format

Sample values

LL0395.Book Page 627 Wednesday, November 20, 2002 11:44 AM