Attribute Name (Examples) | Usage | Type | Ldap Connector | Ldap Token List Persister | Ldap Pwd Self Service Token Persister |
|---|---|---|---|---|---|
| Holds the flag indicating if a user is self-registered | Boolean | O | ||
| Holds the self-registration date (if applicable) | Timestamp | O | ||
| Holds the number of completed resends of the channel verification token during the user's self-registration | Integer | O | ||
secretQuestionsEnabled | Indicates if Secret Questions are enabled for this user | Boolean | O | ||
| Roles or Role-Entry-DNs specifying the user's roles. Roles can also be resolved from a different directory tree using a search tree and filter. | String (multi-value), DN (multi-value) | O | ||
| Holds last global session id. May be empty. | String | O | ||
| Holds date when global session id was last updated. May be empty. | Timestamp | O | ||
[other attributes] | Any other string attributes (such as sn, givenName, street, l, etc.) can be read/written into/from the so called context data container. The data can be used in Airlock IAM plugins (e.g. admintool user profile or in generated letters). | String (single- or multi-value) | O |
| R | = required by plugin | |
| O | = may be used by plugin |