UAlberta Login Attributes
Introduction
This article will outline all the available attributes from UAlberta Login.
Applicability
Anyone configuring a service that will use UAlberta Login for authentication.
Attributes
UAlberta Login provides a number of attributes to a Service Provider (SP) when a users access the application. The attributes will only be provided when a user is redirected from the Identity Provider (IdP), UAlberta Login, to the SP they are accessing. Attributes will always be provided using the OID value rather than the friendly name for the attribute. If you would like to use the friendly name for the attribute in your application, you will need to ensure you have an appropriate attribute map so the SP software knows how to rename the OIDs.
Default Attributes
The default attributes will always be provided unless you request specific attributes to be sent to your SP.
Attribute Name
OID
Example
eduPersonTargetedID
urn:oid:1.3.6.1.4.1.5923.1.1.1.10
https://login.ualberta.ca/saml2/idp/metadata.php!https://sp.srv.ualberta.ca/shibboleth! b2661071653f8b9021344ddf17f9e005097edd22
This attribute is a pseudonymous identifier that is specific to each user and SP.
givenName
urn:oid:2.5.4.42
Jonathan
This is the legal first name of the user. If you would rather use preferred name, look at the displayName attribute instead.
sn
urn:oid:2.5.4.4
Doe
This is the legal last name of the user. There is no preferred last name available.
uid
urn:oid:0.9.2342.19200300.100.1.1
jdoe
The Campus Computing ID.
Additional Public Attributes
These attributes are public data, but aren't provided by default. These attributes can be provided upon request.
Attribute Name
OID
Example
displayName
urn:oid:2.16.840.1.113730.3.1.241
John
Perferred name set in Bear Tracks
eduPersonPrincipalName
urn:oid:1.3.6.1.4.1.5923.1.1.1.6
jdoe@ualberta.ca
Scoped version of uid. Always CCID@ualberta.ca
mail
urn:oid:0.9.2342.19200300.100.1.3
jdoe@ualberta.ca
The University provided email address. Always CCID@ualberta.ca
Private Attributes
These attributes are considered to be private data. If you require any of the following attributes, you must complete an IMS Interface Agreement. Please contact IST at ist@ualberta.ca.
Attribute Name
OID
Example
departmentNumber
urn:oid:2.16.840.1.113730.3.1.2
000001
List of department numbers
eduPersonAfilliation
urn:oid:1.3.6.1.4.1.5923.1.1.1.1
member;staff
Afilliation to the University (not to be confused with RTI). Possible affiliations are: member, faculty, staff, student.
eduPersonScopedAffiliation
urn:oid:1.3.6.1.4.1.5923.1.1.1.9
member@ualberta.ca;staff@ualberta.ca
Exactly the same as eduPersonAfilliation, but with a scope of @ualberta.ca
employeeNumber
urn:oid:2.16.840.1.113730.3.1.3
1234567
Unique 7 digit identifier for each person. If the CCID is a department-owned secondary CCID, this will be populated with the departmentNumber the CCID is assigned to.
institutionalIdentifier
institutionalIdentifier
UOFAB
Institution of the person
organizationalStatus
urn:oid:0.9.2342.19200300.100.1.45
tamis;cona
A list of statuses on the CCID. There are a number of possible values.
uOfAAccountType
urn:oid:1.3.6.1.4.1.11933.1.13
primary
Indicates if a CCID is primary or secondary.
uOfAOCCardID
urn:oid:1.3.6.1.4.1.11933.8.3
111234567
ONECard ID
uOfAOCProxID
urn:oid:1.3.6.1.4.1.11933.8.6
01234
ONECard Prox ID
uOfAOCSuffix
urn:oid:1.3.6.1.4.1.11933.8.9
01
ONECard suffix
uidNumber
uidNumber
98765
5 digit unix ID tied to a CCID. Used in systems like AFS.
uOfARTI
uofarti
EMP;SUP
List of Relationships to the Institution.