Name strings that are the part of a person's name that is not their surname (see RFC4519).

urn:oid:2.5.4.42 (givenName)

Single-valued

In the specification of urn:oid:2.5.4.42 it is stated that the attribute supports multiple values, but the OIDC claim support supports only a single value. The Sevice Service will release a single value to both SAML and OIDC relying parties

Family name of the user

urn:oid:2.5.4.4 (surname)

Single-valued

In the specification of urn:oid:2.5.4.4 it is stated that the attribute supports multiple values, but the OIDC claim support supports only a single value. The Service will release a single value to both SAML and OIDC relying parties

One or more home organisations (such as , universities, research institutions or private companies) this user is affiliated with. The syntax and semantics follows follow the eduPersonScopedAffiliation attribute.

Following The following values are recommended for use to the left of the “@” sign:

• Faculty

  The person is a researcher or teacher in their home organisation. 

  The exact interpretation is left to the home organizationorganisation, but the intention is that the primary focus of the person in their home organisation is in research and/or education. 

  Note. This attribute value is for users in the academic sector
  
  
• Industry-researcher
  

  The person is a researcher or teacher in their home organisation. 

  The exact interpretation is left to the home organisation, but the intention is that the primary focus of the person in their home organisation is in research and/or education. 

  Note. This attribute value is for users in the private sector.
  
  
• Member
  

  Member The member is intended to include faculty, industry-researcher, staff, student and other persons with a full set of basic privileges that go with membership in the home organisation, as defined in eduPerson. 
  
  

  In contrast to faculty, among other things, this covers positions with managerial and service focus, such as service management or IT support.
  
  
• Affiliate
  
  The affiliate value indicates that the holder has some definable affiliation to the home organisation NOT captured by any of faculty, industry-researcher, staff, student and/or member.

If a person has faculty or industry-researcher affiliation with a certain organisation, they have also the member affiliation. However, that does not apply in a reverse order. Furthermore, those persons who do not qualify to as member have an affiliation of affiliate.

urn:oid:1.3.6.1.4.1.25178.4.1.11 (voPesonExternalAffiliation)

Multi-valued

The Connected Services are not supposed to do SAML scope check to checks on this attribute.

Groups

urn:oid:1.3.6.1.4.1.5923.1.1.1.7 (eduPersonEntitlement)

Multi-valued

• urn:geant:eduteams.org:service:eduteams:group:eduTEAMS#eduteams.org
• urn:geant:eduteams.org:service:eduteams:group:Hollywood#eduteams.org
• urn:geant:eduteams.org:service:eduteams:group:Hollywood:writers#eduteams.org
• urn:geant:eduteams.org:service:eduteams:group:Hollywood:writers:movies#eduteams.org

This is an example of a user registered in eduTEAMS, who is member of the Hollywood VO and she is in the writers group and the movies movies subgroup within the writers group.