Skip to main content

Distinguished Name for an Object

Every object in the LDAP directory structure has a unique path to its place in the directory. This path is the object’s Distinguished Name, or DN. For example, based on the example DIT in Figure 2-1, the DN for the organizational unit “usa” is the following:

OU=usa,DC=acme,DC=com

The DN for the user “Monty Burns” is the following:

CN=Monty Burns,OU=usa,DC=acme,DC=com

The DN for the group “engg” is the following:

CN=engG,OU=usa,DC=acme,DC=com

The DN can contain spaces within an attribute value and between attributes (for example, after the comma separating two attributes).