Ldap. what fields for middle name and birth name (maiden name)


I'm desperately looking for field names for ldap for the middle and last name.

Imagine following person

born as Maria Anastasia Kelly
and named
Maria Anastasia Miller

So up to my inderstanding
first name = Maria
middle name = Anastasia
birth name = Kelly
last name = Miller

So what would CN be?
"cn" = "Maria Miller"  or "Maria Anastasia Miller"
"sn" = "Miller"
"givenName" = "Maria"

How should I name the field for the birth name
(and if required middle name)

I'd like to be as 'standard' as possible.

Thanks a lot in advance
LVL 19
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Will SzymkowskiSenior Solution ArchitectCommented:
The CN of a user is formed using the Active Directory "Display Name" followed by the OU then the domain.com.

There is no  Birth Name field only The following...
First Name
Last Name

Maden name can be sensitive  info you are adding to an active directory account. There is no field designated fro this, so if you want to add a field for Maden Name you would have to create a new Attribute Set which is done by modifying the Active Directory Schema.

This is something that I would not recommend as the schema will affect the entire domain.


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
gelonidaAuthor Commented:
Thanks will for your info.
In fact the server is not an active directory server, but just an LDAP server on a linux server, that we will create from scratch for a customer.

The customer expressed the wish to store the birth name (maiden name) and the middle name.
I'm mainly interested in finding field names, that are kind of common. I did not find any mentioning of these fields in the RFCs, so I wondered what other people are doing if they have to store such information.

How do you tread middle names?
David Johnson, CD, MVPOwnerCommented:
Middle Names use the Initial Field. For Maiden Name/Birth Name you have to add your own field. or re purpose an existing field.
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

gelonidaAuthor Commented:
Isn't initials only one letter and middle name the full middle name?

Is it common practice to abuse initials to store the full middle name?
Is it common practice to re purpose existing fields or is it 'cleaner' to add own fields?
Will SzymkowskiSenior Solution ArchitectCommented:

 Is it common practice to abuse initials to store the full middle name?
 Is it common practice to re purpose existing fields or is it 'cleaner' to add own fields?

Initial should be intended for single digit letters. Also, it is a good practice to use default fields that are provided in Active Direcotry. You can create new fields but as i stated this modifies the current active directory schema and if you mess something up then that change will not be reversible. You can also break AD as well if you do not know what you are doing.

If you are still looking to go down that route i highly suggest that you run several tests in a lab environment before doing it in production. Also take backups of your production AD as well.

gelonidaAuthor Commented:
I didn't forget this thread.
I'm just waiting to see whether  anybody else had any experience with ldap servers storing
middle names and birth names.

The LDAP server does not exist so far. It will be created from scratch to store this information.
It's intended as a single sign on solution  with basic user information for a set of proprietary web servers.
So far the proprietary web services  would like to have middle name and maiden name in a central location.

I know I can just use any field name, but was mostly curious to see what others did in a similiar solution  (whether others encountered similiar situations)
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Active Directory

From novice to tech pro — start learning today.