urn:mace | urn:mace:dir:attribute-def:eduPersonScopedAffiliation |
urn:oid | urn:oid:1.3.6.1.4.1.5923.1.1.1.9 |
Multiplicity | multi-valued |
| Data type | UTF8 String of the form affiliation@subdomain. |
Description | Indicates the relationship between the user and a specific (security) domain with his home organisation in a fine-grained way. For example, it can specify that a user is a student in the Physics department or a secretary working in a specific department.The value consists of an affiliation-part and a domain-part, i.e. <affiliation>@<sub.domain.nl>. - The affiliation-part must be one of the values allowed for Affiliation (see above).
- The domain-part must be a subdomain of the user's schacHomeOrganization. This subdomain does not necessarily need to exist in DNS. E.g if schacHomeOrganization = uniharderwijk.nl, the domain-part could be science.uniharderwijk.nl or physics.science.uniharderwijk.nl,
|
| Examples | student@physics.uniharderwijk.nl
employee@facilities.uniharderwijk.nl |
Notes | - Can be used to express the faculty, field of study, department, etc. to which a user is affiliated.
- The attribute is multi-valuedcan have one or more values: a user can be a student in a certain field and at the same time an employee of a certain department of the university.
- There is no register of valid subdomains. SP's wanting to use this attribute, need to confer with the IdP to interpret the values of Scoped Affiliation.
|