LDAP - Mapping objectGUID field to Service-now field

twofirstnames · ‎08-14-2008

Hi All

I'm wanting to set my LDAP import to coalesce on the LDAP objectGUID value. The data type in Active Directory is an octet string (binary attribute). Which Service-now data type would be the best match? I've tried a couple (string, integer, GUID) but these don't display the objectGUID value in the same way so I'm concerned they may not be unique if 'converted' in this way.

Has anyone else done this? Any recommendations?

Thanks in advance

Dale

john_roberts · ‎08-14-2008

I know this works with objectSID which is just as unique as objectGUID. You can store the value in a string field. The LDAP module automatically converts the binary value to an encode64 string so it's still unique but won't look anything like the string SID you would see in AD. This feature became available starting with Spring08 release.
This is the standard we've been recommending. Let me know if objectSID cannot be used for some reason.

twofirstnames · ‎09-15-2008

Thanks for the reply John

I don't think objectSID is as permanent as objectGUID. If a user account is moved between domains the objectSID is recreated. The following link provides more information http://www.microsoft.com/technet/prodtechnol/windows2000serv/reskit/distrib/dsce_ctl_yicc.mspx?mfr=t.... The article is for Windows 2000 but I think this is still true for 2003/2008. Probably not a problem for most but would be for us.

objectGUID and objectSID have the same data type so I'm thinking either could be used. Is this correct?

john_roberts · ‎09-16-2008

Good point on objectSID. The attributes are the same data type and either can be used. By default, we only convert objectSID to an encode64 string. You will need to create a property called glide.ldap.binary_attributes and add objectGUID to tell the import to convert that attribute.

amirhh2000 · ‎07-23-2013

HI,

If it's SQL you can use "varbinary"

If it's SSIS or VB based script you can use "unique identifier [DT_GUID]"

Cheers,
Amir