LDAP (Lightweight Directory Access Protocol) gives compatible email clients such as OS X, Thunderbird, Mulberry and others the ability to look up email addresses in the Duke Phonebook.
In addition, the LDAP Directory Server Gateway allows users to search for information about people in the phonebook and gives authorized users access to Duke Unique IDs.
Specific instructions for configuring email clients to use Duke's LDAP directory are included in the How-to Guides for:
| OS X | Thunderbird | Mulberry |
| Server host name | ldap.duke.edu |
| LDAP port | 389 |
| Search root | ou=People,dc=duke,dc=edu |
| Secure LDAP port (SSL) | 636* |
* Required if binding (authenticating) to the directory with a specific user. Binding as a specific user is not currently in general use for the LDAP directory.
Although most email clients have the capability, you do not need to log in to the LDAP server from an email client. If you do, the LDAP configuration requires you use the Secure LDAP Port (636), which uses SSL. If you do not use the secure port, you will be exposing your user name and password in clear text over the network.
The LDAP Directory Server Gateway uses a secure SSL connection to protect login information and the Duke Unique ID numbers.
The LDAP database uses a Directory Key as a unique key for a database entry. It shows up on the Gateway, but but it is not the Duke Unique ID. This Directory Key is specific to the LDAP server and is not used elsewhere.
Public access to student Duke Unique IDs is prohibited by FERPA (Family Educational Rights and Privacy Act), but for other affiliates, the Unique ID is considered public information. Access to student Unique IDs is permitted to faculty, administrators and other staff who have a legitimate Duke educational or Duke business need for such access. Access must be approved by a dean, director or department head.
To obtain access to the Duke Unique IDs, a dean, director or department head should send an email request to dukeid@duke.edu. The request should detail who is being authorized to access Unique IDs and the legitimate educational or business reason for the access.