Account Status (tamuStatus)
| Definition: | Account status flags. |
| Attribute Name: | 'tamuStatus' |
| OID: | 1.3.6.1.4.1.4391.0.420 |
| URN: | urn:oid:1.3.6.1.4.1.4391.0.420 |
| Object Class: | tamuPerson |
| Required: | no |
| Multiple Values: | Multi-valued |
| Format: | Directory String {256} |
| Controlled Vocabulary: |
Password status flags: passwordExpired account password is over 166 days old passwordAdminSet account password was administratively changed to a randomly generated string when previous password was expired for over 7 days passwordForgotten allow password to be reset using alternate authentication mechanism ssprLocked account owner unable to use Self-Service Password Reset application to reset password Other account status flags: ssatExpired Student Information Security Awareness training expired deletionHold:timestamp:keystoneslip# account deletion put on hold securityLocked account has been locked for security reasons |
| Source: |
Password management system inserts/deletes password status flags. ITIM SAT management system inserts/deletes ssatExpired flag. If account deletion contested by account owner LDAP administrators manually add => deletionHold:timestamp:keystoneslip# while matter is investigated. If account was locked (rendered unusable by the account owner) at request of HR, ITIM, UPD, etc. for security reasons, LDAP administrators manually add => securityLocked |
| Indexing: |
Presence (pres): Improves searches for entries that contain the indexed attribute. Equality (eq): Improves searches for entries that contain an attribute that is set to a specific value. |
| Search Syntax: | EQUALITY caseIgnoreMatch |
| Access: |
If tamuEduSuppress is set to administrative or name, account owner has read access, and everyone else has no access. Otherwise, account owner, authenticated users, and nonauthenticated (anonymous) users have read access. |
| Usage: |
Help Desk Central customer support CAS redirects users to the Password Change application when the passwordExpired flag is present. CAS redirects users to the ITIM SAT web application when the ssatExpired flag is present. |
| Example(s): | passwordExpired |