Chief Information Officer
IC Technical Specifications
IdAM: Full Service Directory
Overview
The Data Encoding Specification for the IC Full Service Directory Schema codifies the set of Lightweight Directory Access Protocol (LDAP) attributes that IC elements are expected to provide when participating in the Intelligence Community Full Service Directory (IC FSD) architecture. The collection of attributes defined in the specification results in an overarching IC FSD Schema that is suitable for describing IC Entities within the TS/SCI environment. IC Entities may fall into the categories of an “IC Person” or “IC Non-Person Entity”, with the latter being used to define objects such as servers, devices, appliances, applications, and services that exist within the IC enterprise. The IC FSD Schema described in the specification is designed for implementation within LDAPv3-compliant directory servers.
Technical Specification Downloads
Latest Approved Public Release:
- IdAM: IC Full Service Directory (V2016-SEP - Standalone Package)
- IdAM: IC Full Service Directory (V2016-SEP - Convenience Package)
- IdAM: IC Full Service Directory (V2016-SEP - Light Package)
Value Proposition
The Data Encoding Specification for the IC Full Service Directory Schema defines detailed specifications for attributes that IC elements are expected to provide to the Intelligence Community Full Service Directory (IC FSD). Its function is to facilitate the availability, accuracy, and standardization of these attributes across the IC TS/SCI enterprise, building a consistent basis for capabilities including directory services, email functions, and attribute-based access control decisions. The specification defines:
- IC-specific Schema and supporting objectClasses for IC Entities
- Attributes, both standard and IC-defined, that must be managed by IC Elements
- Controlled vocabulary for those attributes whose use requires standard values
- Authentication requirements for the attributes
The primary audience for the specification includes those responsible for implementing and managing the capabilities that create, provide, modify, store, exchange, search, display, or further process IC FSD attributes.