Red Hat SummitDieser Inhalt ist in der von Ihnen ausgewählten Sprache nicht verfügbar.
Chapter 9. Entry object class reference
The entry object classes in Red Hat Directory Server define the schema rules that dictate which attributes are required or allowed for specific types of directory entries. Understanding these object classes helps you to consistently categorize directory data.
Review an alphabetical list of the object classes accepted by the default schema. It gives a definition of each object class and lists its required and allowed attributes. The listed object classes are available to support entry information.
The required attributes listed for an object class must be present in the entry when that object class is added to the directory’s ldif file. If an object class has a superior object class, both of these object classes with all required attributes must be present in the entry. If required attributes are not listed in the ldif file, than the server will not restart.
The LDAP RFCs and X.500 standards allow for an object class to have more than one superior object class. Currently, this behavior is not supported by Directory Server.
9.1. account
The account object class defines entries for computer accounts. This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.5
| Attribute | Definition |
|---|---|
| Gives the object classes for the entry. | |
| Gives the defined account’s user ID. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Gives the host name for the machine on which the account resides. | |
| Gives the city or geographical location of the entry. | |
| Gives the organization to which the account belongs. | |
| Gives the organizational unit or division to which the account belongs. | |
| Contains a URL to another entry or site with related information. |
9.2. accountpolicy
The accountpolicy object class defines entries for account inactivation or expiration policies. This is used for a user directory configuration entry, which works in conjunction with the Account Policy Plug-in configuration.
Superior Class
top
OID
1.3.6.1.4.1.11.1.3.2.2.1
| Attribute | Definition |
|---|---|
| Sets the period, in seconds, from the last login time of an account before that account is locked for inactivity. |
9.3. alias
The alias object class points to other directory entries. This object class is defined in RFC 2256.
Aliasing entries is not supported in Red Hat Directory Server.
Superior Class
top
OID
2.5.6.1
| Attribute | Definition |
|---|---|
| Defines the object classes for the entry. | |
| Gives the distinguished name of the entry for which this entry is an alias. |
9.4. bootableDevice
The bootableDevice object class points to a device with boot parameters. This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in the Red Hat Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.12
| Attribute | Definition |
|---|---|
| Defines the object classes for the entry. | |
| Gives the common name of the device. |
| Attribute | Definition |
|---|---|
| Gives the boot image file. | |
| Gives the parameters used by the boot process for the device. | |
| Gives a text description of the entry. | |
| Gives the city or geographical location of the entry. | |
| Gives the organization to which the device belongs. | |
| Gives the organizational unit or division to which the device belongs. | |
| Gives the DN (Distinguished Name) of the person responsible for the device. | |
| Contains a URL to another entry or site with related information. | |
| Contains the serial number of the device. |
9.5. cacheObject
The cacheObject is an object that contains the time to live (ttl) attribute type.
This object class is defined in the LDAP Caching Internet Draft.
Superior Class
top
OID
1.3.6.1.4.1.250.3.18
| Attribute | Definition |
|---|---|
| Defines the object classes for the entry. |
| Attribute | Definition |
|---|---|
| The time that the object remains (lives) in the cache. |
9.6. cosClassicDefinition
The cosClassicDefinition object class defines a class of service template entry by using the entry’s distinguished name (DN) set in the cosTemplateDn attribute, and the value of one of the target attributes specified in the cosSpecifier attribute.
This object class is defined in RFC 1274.
Superior Class
cosSuperDefinition
OID
2.16.840.1.113730.3.2.100
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
|
Provides the name of the attribute for which the CoS generates a value. There can be more than one |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Specifies the attribute value used by a classic CoS, which, along with the template entry’s DN, identifies the template entry. | |
| Provides the DN of the template entry which is associated with the CoS definition. | |
| Gives a text description of the entry. |
9.7. cosDefinition
The cosDefinition object class defines which class of service is used. This object class provides compatibility with the DS4.1 CoS plugin.
This object class is defined in RFC 1274.
Superior Class
top
OID
2.16.840.1.113730.3.2.84
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Evaluates what rights are granted or denied when Directory Server receives an LDAP request from a client. | |
| Gives the common name of the entry. | |
|
Provides the name of the attribute for which the CoS generates a value. There can be more than one | |
| Specifies the attribute value used by a classic CoS, which, along with the template entry’s DN, identifies the template entry. | |
| Defines the subtrees in the directory to which the CoS schema applies. | |
| Provides the DN of the template entry which is associated with the CoS definition. | |
| Gives the user ID for the entry. |
9.8. cosIndirectDefinition
The cosIndirectDefinition defines the template entry by using the value of one of the target entry’s attributes. The attribute of the target entry is specified in the cosIndirectSpecifier attribute.
This object class is defined by Red Hat Directory Server.
Superior Class
cosSuperDefinition
OID
2.16.840.1.113730.3.2.102
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
|
Provides the name of the attribute for which the CoS generates a value. There can be more than one |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Specifies the attribute value used by an indirect CoS to identify the template entry. | |
| Gives a text description of the entry. |
9.9. cosPointerDefinition
The cosPointerDefinition object class identifies the template entry associated with the CoS definition by using the template entry’s DN value. The DN of the template entry is specified in the cosIndirectSpecifier attribute.
This object class is defined by Red Hat Directory Server.
Superior Class
cosSuperDefinition
OID
2.16.840.1.113730.3.2.101
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
|
Provides the name of the attribute for which the CoS generates a value. There can be more than one |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Provides the DN of the template entry which is associated with the CoS definition. | |
| Gives a text description of the entry. |
9.10. cosSuperDefinition
All CoS definition object classes are inherited from the cosSuperDefinition object class.
This object class is defined by Red Hat Directory Server.
Superior Class
LDAPsubentry
OID
2.16.840.1.113730.3.2.99
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
|
Provides the name of the attribute for which the CoS generates a value. There can be more than one |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Gives a text description of the entry. |
9.11. cosTemplate
The cosTemplate object class contains a list of the shared attribute values for the CoS.
This object class is defined by Red Hat Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.128
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Specifies which template provides the attribute value when CoS templates compete to provide an attribute value. |
9.12. country
The country object class defines entries which represent countries.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.2
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Contains the two-character code representing country names, as defined by ISO, in the directory. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. |
9.13. dcObject
The dcObject object class allows domain components to be defined for an entry. This object class is defined as auxiliary because it is commonly used in combination with another object class, such as o (organization), ou (organizationalUnit), or l (locality).
For example:
dn: dc=example,dc=com
objectClass: top
objectClass: organizationalUnit
objectClass: dcObject
dc: example
ou: Example CorporationThis object class is defined in RFC 2247.
Superior Class
top
OID
1.3.6.1.4.1.1466.344
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Contains one component of a domain name. |
9.14. device
The device object class stores information about network devices, such as printers, in the directory. This object class is defined in RFC 2247.
Superior Class
top
OID
2.5.6.14
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the device. | |
| Gives the common name of the device. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Gives the city or geographical location of the entry. | |
| Gives the organization to which the device belongs. | |
| Gives the organizational unit or division to which the device belongs. | |
| Gives the DN (distinguished name) of the person responsible for the device. | |
| Contains a URL to another entry or site with related information. | |
| Contains the serial number of the device. |
9.15. document
The document object class defines directory entries that represent documents.
This object class is defined in RFC 1247.
Superior Class
top
OID
0.9.2342.19200300.100.4.6
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the unique ID for the document. |
| Attribute | Definition |
|---|---|
| Contains the abstract for the document. | |
| Stores a sound file in binary format. | |
| Gives the author’s common name or given name. | |
| Gives the author’s surname. | |
| Gives the common name of the entry. | |
| Gives a text description of the entry. | |
| Contains the DN (distinguished name) of the entry to use as a redirect for the document entry. | |
| Contains the DN (distinguished name) of the author. | |
| Gives the location of the original document. | |
| Identifies the person or organization that published the document. | |
| Contains information on where the document is stored | |
| Contains the title of the document. | |
| Gives the version number of the document. | |
| Contains information about the document. | |
| Stores a JPG image. | |
| Contains keywords related to the document. | |
| Gives the city or geographical location of the entry. | |
| Gives the DN (distinguished name) of the last user which modified the document entry. | |
| Gives the time of the last modification. | |
| Gives the DN (distinguished name) of the entry’s manager. | |
| Gives the organization to which the document belongs. | |
| Gives the DN (distinguished name) of another document entry which obsoletes this document. | |
| Gives the DN (distinguished name) of another document entry which is obsoleted by this document. | |
| Gives the organizational unit or division to which the document belongs. | |
| Stores a photo of the document in binary format. | |
| Contains a URL to another entry or site with related information. | |
| Describes the subject of the document. | |
| Distinguishes between two entries when a distinguished name has been reused. | |
| Gives the DN (distinguished name) of another document entry which updates this document. | |
| Gives the DN (distinguished name) of another document entry which is updated by this document. |
9.16. documentSeries
The documentSeries object class defines an entry that represents a series of documents.
This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.9
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Gives the place where the document series is physically located. | |
| Gives the organization to which the document series belongs. | |
| Gives the organizational unit or division to which the series belongs. | |
| Contains a URL to another entry or site with related information. | |
| Gives the telephone number of the person responsible for the document series. |
9.17. domain
The domain object class defines directory entries that represent DNS domains. Use the dc attribute to name entries of this object class.
In addition, use this object class for Internet domain names, such as example.com.
The domain object class can only be used for a directory entry which does not correspond to an organization, organizational unit, or any other object which has an object class defined for it. object for which an object class has been defined.
This object class is defined in RFC 2252.
Superior Class
top
OID
0.9.2342.19200300.100.4.13
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Contains one component of a domain name. |
| Attribute | Definition |
|---|---|
| Gives the name of an entry within the organizational directory tree which is associated with a DNS domain. | |
| Gives the type of business in which this domain is engaged. | |
| Gives a text description of the entry. | |
| Gives the country and city associated with the entry; this was once required to provide public telegram service. | |
| Gives the fax number for the domain. | |
| Gives the ISDN number for the domain. | |
| Gives the city or geographical location of the entry. | |
| Gives the organization to which the entry belongs. | |
| Gives a location where physical deliveries can be made. | |
| Gives the post office box number for the domain. | |
| Contains the mailing address for the domain. | |
| Gives the postal code for the domain, such as the zip code in the United States. | |
| Shows the person’s preferred method of contact or message delivery. | |
| Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. | |
| Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. | |
| Contains a URL to another entry or site with related information. | |
| Gives the state or province where the domain is located. | |
| Gives the street name and address number for the domain’s physical location. | |
| Gives the phone number for the domain. | |
| Gives the ID for a domain’s teletex terminal. | |
| Gives the telex number for the domain. | |
| Stores the password with which the entry can bind to the directory. | |
| Gives the X.121 address for the domain. |
9.19. dSA
The dSA object class defines entries that represent DSAs.
This object class is defined in RFC 1274.
Superior Class
top
OID
2.5.6.13
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. | |
| Contains the entry’s OSI presentation address. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| knowledgeinformation | No longer used. |
| Gives the city or geographical location of the entry. | |
| Gives the organization to which the entry belongs. | |
| Gives the organizational unit or division to which the entry belongs. | |
| Contains a URL to another entry or site with related information. | |
| Contains the identifiers of OSI application contexts. |
9.20. extensibleObject
When present in an entry, extensibleObject permits the entry to hold optionally any attribute. The allowed attribute list of this class is implicitly the set of all attributes known to the server.
This object class is defined in RFC 2252.
Superior Class
top
OID
1.3.6.1.4.1.1466.101.120.111
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
Allowed attributes All attributes known to the server are allowed.
9.21. friendlyCountry
The friendlyCountry object class defines country entries within the directory. This object class allows more friendly names than the country object class.
This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.18
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Stores the human-readable country name. | |
| Contains the two-character code representing country names, as defined by ISO, in the directory. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. |
9.22. groupOfCertificates
The groupOfCertificates object class describes a set of X.509 certificates. Any certificate that matches one of the memberCertificateDescription values is considered a member of the group.
Superior Class
top
OID
2.16.840.1.113730.3.2.31
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| Gives the type of business in which the group is engaged. | |
| Gives a text description of the entry. | |
| Contains the values used to determine if a particular certificate is a member of this group. | |
| Gives the organization to which the entry belongs. | |
| Gives the organizational unit or division to which the entry belongs. | |
| Contains the DN (distinguished name) of the person responsible for the group. | |
| Contains a URL to another entry or site with related information. |
9.23. groupOfMailEnhancedUniqueNames
The groupOfMailEnhancedUniqueNames object class is used for a mail group which must have unique members.
This object class is defined for Netscape Messaging Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.5
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| Gives the type of business in which the group is engaged. | |
| Gives a text description of the entry. | |
| Contains a unique DN value to identify a member of the mail group. | |
| Gives the organization to which the entry belongs. | |
| Gives the organizational unit or division to which the entry belongs. | |
| Contains the DN (Distinguished Name) of the person responsible for the group. | |
| Contains a URL to another entry or site with related information. |
9.24. groupOfNames
The groupOfNames object class contains entries for a group of names.
This object class is defined in RFC 2256.
The definition for this object class in Directory Server differs from the standard definition. In the standard definition, member is a required attribute, while in Directory Server it is an allowed attribute. Directory Server, therefore, allows a group to have no members.
Superior Class
top
OID
2.5.6.9
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| Gives the type of business in which the entry is engaged. | |
| Gives a text description of the entry. | |
| Contains the DN (Distinguished Name) of a group member. | |
| Gives the organization to which the entry belongs. | |
| Gives the organizational unit or division to which the entry belongs. | |
| Contains the DN (Distinguished Name) of the person responsible for the group. | |
| Contains a URL to another entry or site with related information. |
9.25. groupOfUniqueNames
The groupOfUniqueNames object class defines a group which contains unique names.
The definition for this object class in Red Hat Directory Server (RHDS) differs from the standard definition. In the standard definition, uniqueMember is a required attribute, while in RHDS it is an allowed attribute. RHDS allows a group to have no members.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.17
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| Gives the type of business in which the entry is engaged. | |
| Gives a text description of the entry. | |
| Gives the organization to which the entry belongs. | |
| Gives the organizational unit or division to which the entry belongs. | |
| Contains the DN (Distinguished Name) of the person responsible for the group. | |
| Contains a URL to another entry or site with related information. | |
| Contains the DN (Distinguished Name) of a member of the group; this DN must be unique. |
9.26. groupOfURLs
The groupOfURLs object class is an auxiliary object class for the groupOfUniqueNames and groupOfNames object classes. This group consists of a list of labeled URLs.
Superior Class
top
OID
2.16.840.1.113730.3.2.33
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| Gives the type of business in which the group is engaged. | |
| Gives a text description of the entry. | |
| Contains a URL associated with each member of the group. | |
| Gives the organization to which the entry belongs. | |
| Gives the organizational unit or division to which the entry belongs. | |
| Contains the DN (distinguished name) of the person responsible for the group. | |
| Contains a URL to another entry or site with related information. |
9.27. ieee802Device
The ieee802Device object class points to a device with a MAC address.
This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in Red Hat Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.11
| Attribute | Definition |
|---|---|
| Defines the object classes for the entry. | |
| Gives the common name of the device. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Gives the city or geographical location of the entry. | |
| Gives the MAC address of the device. | |
| Gives the organization to which the device belongs. | |
| Gives the organizational unit or division to which the device belongs. | |
| Gives the DN (Distinguished Name) of the person responsible for the device. | |
| Contains a URL to another entry or site with related information. | |
| Contains the serial number of the device. |
9.28. inetAdmin
The inetAdmin object class is a marker for an administrative group or user. This object class is defined for the Netscape Delegated Administrator.
Superior Class
top
OID
2.16.840.1.113730.3.2.112
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
9.29. inetDomain
The inetDomain object class is a auxiliary class for virtual domain nodes.
This object class is defined for the Netscape Delegated Administrator.
Superior Class
top
OID
2.16.840.1.113730.3.2.129
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Defines the base DN of the user subtree for a DNS domain. | |
| Gives the status of the domain. The status can be active, inactive, or deleted. |
9.30. inetOrgPerson
The inetOrgPerson object class defines entries representing people in an organization’s enterprise network. This object class inherits the commonName and surname attributes from the person object class.
This object class is defined in RFC 2798.
Superior Class
person
OID
2.16.840.1.113730.3.2.2
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. | |
| Gives the person’s family name or last name. |
| Attribute | Definition |
|---|---|
| Stores a sound file in binary format. | |
| Gives the type of business in which the entry is engaged. | |
| Gives the license plate number of the person’s vehicle. | |
| Gives the department for which the person works. | |
| Gives a text description of the entry. | |
| Gives the country and city associated with the entry; this was once required to provide public telegram service. | |
| Shows the preferred name of a person to use when displaying entries. | |
| GiContains the person’s employee number. | |
| Shows the person’s type of employment (for example, full time). | |
| Contains the person’s fax number. | |
| Contains the person’s first name. | |
| Gives the person’s home mailing address. | |
| Gives the person’s initials. | |
| Contains the ISDN number for the entry. | |
| Stores a JPG image. | |
| Gives the city or geographical location of the entry. | |
| Contains a URL which is relevant to the entry. | |
| Contains the person’s email address. | |
| Contains the DN (Distinguished Name) of the direct supervisor of the person entry. | |
| Gives the person’s mobile phone number. | |
| Gives the organization to which the entry belongs. | |
| Gives the organizational unit or division to which the entry belongs. | |
| Gives the person’s pager number. | |
| Stores a photo of a person, in binary format. | |
| Gives a location where physical deliveries can be made. | |
| Gives the post office box number for the entry. | |
| Contains the mailing address for the entry. | |
| Gives the postal code for the entry, such as the zip code in the United States. | |
| Shows the person’s preferred method of contact or message delivery. | |
| Gives the person’s preferred written or spoken language. | |
| Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. | |
| Gives the room number where the person is located. | |
| Contains the DN (Distinguished Name) of the person’s secretary or administrative assistant. | |
| Contains a URL to another entry or site with related information. | |
| Gives the state or province where the entry is located. | |
| Gives the street name and number for the person’s physical location. | |
| Gives the telephone number for the entry. | |
| Gives the identifier for the person’s teletex terminal. | |
| Gives the telex number associated with the entry. | |
| Shows the person’s job title. | |
| Contains the person’s user ID (usually his logon ID). | |
| Stores a user’s certificate in cleartext (not used). | |
| Stores the password with which the entry can bind to the directory. | |
| Stores the person’s certificate in binary form so it can be used by S/MIME clients. | |
| Gives the X.121 address for the person. | |
| Reserved for future use. |
9.31. inetSubscriber
The inetSubscriber object class is used for general user account management.
This object class is defined for the Netscape subscriber interoperability.
Superior Class
top
OID
2.16.840.1.113730.3.2.134
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Contains a unique attribute linking the subscriber to a billing system. | |
| Contains some kind of question or prompt, the challenge phrase, which is used to confirm the identity of the user. | |
| Contains the answer to the challenge question. |
9.32. inetUser
The inetUser object class is an auxiliary class which must be present in an entry in order to deliver subscriber services. This object class is defined for the Netscape subscriber interoperability.
Superior Class
top
OID
2.16.840.1.113730.3.2.130
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Contains web addresses associated with the user. | |
| Gives the status of the user. The status can be active, inactive, or deleted. | |
| Contains a group name to which the user belongs. This is dynamically managed by the MemberOf Plug-in. | |
| Contains the person’s user ID (usually his logon ID). | |
| Stores the password with which the user can use to access the user account. |
9.33. ipHost
The ipHost object class stores IP information about a host.
This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in Red Hat Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-<instance_name>/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.6
| Attribute | Definition |
|---|---|
| Defines the object classes for the entry. | |
| Gives the common name of the device. | |
| Contains the IP address of the device or host. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Gives the city or geographical location of the entry. | |
| Contains the DN (Distinguished Name) of the maintainer or supervisor of the entry. | |
| Gives the organization to which the device belongs. | |
| Gives the organizational unit or division to which the device belongs. | |
| Gives the DN (Distinguished Name) of the person responsible for the device. | |
| Contains a URL to another entry or site with related information. | |
| Contains the serial number of the device. |
9.34. ipNetwork
The ipNetwork object class stores IP information about a network.
This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in Red Hat Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-<instance_name>/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.7
| Attribute | Definition |
|---|---|
| Defines the object classes for the entry. | |
| Gives the common name of the device. | |
| Contains the IP number for the network. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Gives the city or geographical location of the entry. | |
| Contains the DN (Distinguished Name) of the maintainer or supervisor of the entry. | |
| Contains the IP netmask for the network. |
9.35. ipProtocol
The ipProtocol object class shows the IP protocol version.
This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in the Red Hat Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-<instance_name>/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.4
| Attribute | Definition |
|---|---|
| Defines the object classes for the entry. | |
| Gives the common name of the device. | |
| Contains the IP protocol number for the network. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. |
9.36. ipService
The ipService object class stores information about the IP service.
This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in Red Hat Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.3
| Attribute | Definition |
|---|---|
| Defines the object classes for the entry. | |
| Gives the common name of the device. | |
| Gives the port number used by the IP service. | |
| Contains the IP protocol number for the service. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. |
9.37. labeledURIObject
When added to existing directory entries, the labeledURIObject object class allows URI values to be included. Using this object class does not preclude including the labeledURI attribute type directly in other object classes as appropriate.
This object class is defined in RFC 2079.
Superior Class
top
OID
1.3.6.1.4.1.250.3.15
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Gives a URI which is relevant to the entry’s object. |
9.38. locality
The locality object class defines entries that represent localities or geographic areas.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.3
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Gives the city or geographical location of the entry. | |
| Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. | |
| Contains a URL to another entry or site with related information. | |
| Gives the state or province associated with the locality. | |
| Gives a street and number associated with the locality. |
9.39. mailGroup
The mailGroup object class defines the mail attributes for a group.
This object is defined in the schema for the Netscape Messaging Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.4
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Stores email addresses for the group. | |
| Contains secondary email addresses for the group. | |
| Contains the host name of the mail server. | |
| Contains the DN (distinguished name) of the person responsible for the group. |
9.40. mailRecipient
The mailRecipient object class defines a mail account for a user.
This object is defined in the schema for the Netscape Messaging Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.3
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Stores email addresses for the group. | |
| Contains the domain from which the user can access the messaging server. | |
| Contains secondary email addresses for the group. | |
| Specifies whether autoreply mode for the account is enabled. | |
| Contains the text use for automatic reply emails. | |
| Specifies the mail delivery mechanism to be used for the mail user. | |
| Specifies the mail delivery mechanism to use for the mail user. | |
| Contains the host name of the mail server. | |
| Specifies the location of the user’s mail box. | |
| Specifies the commands used for programmed mail delivery. | |
| Specifies the disk space allowed for the user’s mail box. | |
| Contains a routing address to use when forwarding the mail from this entry’s account to another messaging server. | |
| Contains a text description of the entry which spans more than one line. | |
| Gives the defined account’s user ID. | |
| Stores the password with which the entry can access the account. |
9.41. mepManagedEntry
The mepManagedEntry object class identifies an entry which was generated by an instance of the Managed Entries plugin. This object class is defined in Red Hat Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.319
| Attribute | Definition |
|---|---|
| Gives the DN of the originating entry which corresponds to the managed entry. |
9.42. mepOriginEntry
The mepOriginEntry object class identifies an entry which is within a subtree that is monitored by an instance of the Managed Entries plugin and which has had a managed entry created by the plugin, for which this is the originating entry.
This object class is defined in Red Hat Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.320
| Attribute | Definition |
|---|---|
| Gives the DN of the managed entry entry which was created by the Managed Entries Plug-in instance and which corresponds to this originating entry. |
9.43. mepTemplateEntry
The mepTemplateEntry object class identifies an entry that the Managed Entries plugin instance uses as a template to create the managed entries.
This object class is defined in Red Hat Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.321
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Contains an attribute-token pair that the plug-in uses to create an attribute in the managed entry with a value taken from the originating entry. | |
| Specifies which attribute to use as the naming attribute in the managed entry. | |
| Contains an attribute-value pair that will be used, with that specified value, in the managed entry. |
9.44. newPilotPerson
The newPilotPerson object class is a subclass of the person to allow additional attributes to be assigned to entries of the person object class. This object class inherits the commonName and surname attributes from the person object class.
This object class is defined in Internet White Pages Pilot.
Superior Class
person
OID
0.9.2342.19200300.100.4.4
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. | |
| Gives the person’s family name or last name. |
| Attribute | Definition |
|---|---|
| Gives the type of business in which the entry is engaged. | |
| Gives a text description of the entry. | |
| Gives the person’s favorite drink. | |
| Gives the person’s home mailing address. | |
| Gives the person’s email address; this is primarily for use in Great Britain or organizations which do no use RFC 822 mail addresses. | |
| Contains the person’s email address. | |
| Indicates the user’s preference for including his name on mailing lists (electronic or physical). | |
| Gives the person’s mobile phone number. | |
| Gives the common job category for a person’s function. | |
| Contains values for electronic mailbox types other than X.400 and RFC 822. | |
| Gives the person’s pager number. | |
| Contains the person’s signature file. | |
| Gives the person’s honorific. | |
| Shows the person’s preferred method of contact or message delivery. | |
| Gives the room number where the person is located. | |
| Contains the DN (Distinguished Name) of the person’s secretary or administrative assistant. | |
| Contains a URL to another entry or site with related information. | |
| Gives the telephone number for the entry. | |
| Contains the person’s user ID (usually his logon ID). | |
| Describes the type of computer user this entry is. | |
| Stores the password with which the entry can bind to the directory. |
9.45. nisMap
The nisMap object class points to a NIS map.
This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
This object class is defined in 10rfc2307.ldif in Red Hat Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-<instance_name>/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.13
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Contains the NIS map name. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. |
9.46. nisNetgroup
The nisNetgroup object class contains a netgroup used within a NIS domain. Adding this object class allows administrators to use netgroups to control login and service authentication in NIS.
This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
This object class is defined in 10rfc2307.ldif in Red Hat Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-<instance_name>/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.8
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Merges the attribute values of another netgroup into the current one by listing the name of the merging netgroup. | |
|
Contains a user name ( |
9.47. nisObject
The nisObject object class contains information about an object in a NIS domain.
This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
This object class is defined in 10rfc2307.ldif in Red Hat Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-<instance_name>/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.10
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. | |
| Identifies the NIS map entry. | |
| Contains the name of the NIS map. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. |
9.48. nsComplexRoleDefinition
The nsComplexRoleDefinition object class defines a complex role. Any role that is not a simple role is, by definition, a complex role.
This object class is defined by Red Hat Directory Server.
For more information about the object class that denies a simple role, see Section 9.54, “nsSimpleRoleDefinition”.
Superior Class
nsRoleDefinition
OID
2.16.840.1.113730.3.2.95
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Gives a text description of the entry. |
9.49. nsContainer
The nsContainer object class defines container entries that do not define any specific entity, but create a defined space within the directory tree as a parent entry for similar or related child entries.
Superior Class
top
OID
2.16.840.1.113730.3.2.104
| Attribute | Definition |
|---|---|
| Defines the object classes for the entry. | |
| Gives the common name of the entry. |
9.50. nsManagedRoleDefinition
The nsManagedRoleDefinition object class specifies the member assignments of a role to an explicit, enumerated list of members.
This object class is defined in Red Hat Directory Server.
Superior Class
nsComplexRoleDefinition
OID
2.16.840.1.113730.3.2.96
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Gives a text description of the entry. |
9.51. nsMessagingServerUser
The nsICQpresence auxiliary object class describes a messaging server user.
This object class is defined for Netscape Messaging Server.
Superior Class
top
OID
2.16.840.113730.3.2.37
| Attribute | Definition |
|---|---|
| Gives the object classes for the entry. |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Contains the domain from which the user can access the messaging server. | |
| Contains secondary email addresses for the group. | |
| Specifies whether autoreply mode for the account is enabled. | |
| Contains the text use for automatic reply emails. | |
| Specifies the mail delivery mechanism to be used for the mail user. | |
| Specifies the mail delivery mechanism to use for the mail user. | |
| Specifies the location of the user’s mail box. | |
| Specifies the commands used for programmed mail delivery. | |
| Specifies the disk space allowed for the user’s mail box. | |
| Contains the end date for a vacation period. | |
| Contains the start date for a vacation period. |
9.52. nsResourceRef
The nsNestedRoleDefinition object class configures a resource reference.
This object class is defined in the Administration Services.
Superior Class
top
OID
nsResourceRef-oid
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| Contains a URL to another entry or site with related information. |
9.53. nsRoleDefinition
All role definition object classes are inherited from the nsRoleDefinition object class.
This object class is defined by Red Hat Directory Server.
Superior Class
LDAPsubentry
OID
2.16.840.1.113730.3.2.93
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Gives a text description of the entry. |
9.54. nsSimpleRoleDefinition
The nsSimpleRoleDefinition object class defines a simple role.
Roles containing this object class are called simple roles because they have a deliberately limited flexibility, which makes it easy to:
- Enumerate the members of a role.
- Determine whether a given entry possesses a particular role.
- Enumerate all the roles possessed by a given entry.
- Assign a particular role to a given entry.
- Remove a particular role from a given entry.
This object class is defined by Red Hat Directory Server.
Superior Class
nsRoleDefinition
OID
2.16.840.1.113730.3.2.94
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Gives a text description of the entry. |
9.55. nsTopologyPlugin
The nsTopologyPlugin object class configures the topology plugin used to set views in the web console.
This object class is defined for the Administrative Services.
Superior Class
nsAdminObject
OID
nsTopologyPlugin-oid
9.56. oncRpc
The oncRpc object class defines an abstraction of an Open Network Computing Remote Procedure Call (ONC RPC). This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in Red Hat Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-<instance_name>/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.5
| Attribute | Definition |
|---|---|
| Defines the object classes for the entry. | |
| Gives the common name of the entry. | |
| Contains part of the RPC map and stores the RPC number for UNIX RPCs. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. |
9.57. organization
The organization attributes defines entries that represent organizations. An organization is generally assumed to be a large, relatively static grouping within a larger corporation or enterprise.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.4
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the organization to which the entry belongs. |
| Attribute | Definition |
|---|---|
| Gives the type of business in which the entry is engaged. | |
| Gives a text description of the entry. | |
| Gives the country and city associated with the entry; this was once required to provide public telegram service. | |
| Contains the fax number for the entry. | |
| Contains the ISDN number for the entry. | |
| Gives the city or geographical location of the entry. | |
| Gives a location where physical deliveries can be made. | |
| Contains the mailing address for the entry. | |
| Gives the postal code for the entry, such as the zip code in the United States. | |
| Gives the post office box number for the entry. | |
| Shows the preferred method of contact or message delivery for the entry. | |
| Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. | |
| Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. | |
| Contains a URL to another entry or site with related information. | |
| Gives the state or province where the person is located. | |
| Gives the street name and number for the person’s physical location. | |
| Gives the telephone number of the person responsible for the organization. | |
| Gives the ID for an entry’s teletex terminal. | |
| Gives the telex number associated with the entry. | |
| Gives the password with which the entry can bind to the directory. | |
| Gives the X.121 address for the entry. |
9.58. organizationalPerson
The organizationalPerson object class defines entries for people employed or affiliated with the organization. This object class inherits the commonName and surname attributes from the person object class.
This object class is defined in RFC 2256.
Superior Class
person
OID
2.5.6.7
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. | |
| Gives the person’s family name or last name. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Gives the country and city associated with the entry; this was once required to provide public telegram service. | |
| Contains the fax number for the entry. | |
| Contains the ISDN number for the entry. | |
| Gives the city or geographical location of the entry. | |
| Gives the organizational unit or division to which the entry belongs. | |
| Gives a location where physical deliveries can be made. | |
| Contains the mailing address for the entry. | |
| Gives the postal code for the entry, such as the zip code in the United States. | |
| Gives the post office box number for the entry. | |
| Shows the person’s preferred method of contact or message delivery. | |
| Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. | |
| Contains a URL to another entry or site with related information. | |
| Gives the state or province where the person is located. | |
| Gives the street name and number for the person’s physical location. | |
| Gives the telephone number for the entry. | |
| Gives the ID for an entry’s teletex terminal. | |
| Gives the telex number associated with the entry. | |
| Shows the person’s job title. | |
| Stores the password with which the entry can bind to the directory. | |
| Gives the X.121 address for the entry. |
9.59. organizationalRole
The organizationalRole object class is used to define entries for roles held by people within an organization.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.8
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Gives the country and city associated with the entry; this was once required to provide public telegram service. | |
| Contains the fax number for the entry. | |
| Contains the ISDN number for the entry. | |
| Gives the city or geographical location of the entry. | |
| Gives the organizational unit or division to which the entry belongs. | |
| Gives a location where physical deliveries can be made. | |
| Contains the mailing address for the entry. | |
| Gives the postal code for the entry, such as the zip code in the United States. | |
| Gives the post office box number for the entry. | |
| Shows the role’s preferred method of contact or message delivery. | |
| Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. | |
| Contains the DN (Distinguished Name) of the person in the role. | |
| Contains a URL to another entry or site with related information. | |
| Gives the state or province where the entry is located. | |
| Gives the street name and number for the role’s physical location. | |
| Gives the telephone number for the entry. | |
| Gives the ID for an entry’s teletex terminal. | |
| Gives the telex number associated with the entry. | |
| Gives the X.121 address for the entry. |
9.60. organizationalUnit
The organizationalUnit object class defines entries that represent organizational units, generally understood to be a relatively static grouping within a larger organization.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.5
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the organizational unit or division to which the entry belongs. |
| Attribute | Definition |
|---|---|
| Gives the type of business in which the entry is engaged. | |
| Gives a text description of the entry. | |
| Gives the country and city associated with the entry; this was once required to provide public telegram service. | |
| Contains the fax number for the entry. | |
| Contains the ISDN number for the entry. | |
| Gives the city or geographical location of the entry. | |
| Gives a location where physical deliveries can be made. | |
| Contains the mailing address for the entry. | |
| Gives the postal code for the entry, such as the zip code in the United States. | |
| Gives the post office box number for the entry. | |
| Gives the preferred method of being contacted. | |
| Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. | |
| Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. | |
| Contains a URL to another entry or site with related information. | |
| Gives the state or province where the person is located. | |
| Gives the street name and number for the role’s physical location. | |
| Gives the telephone number for the entry. | |
| Gives the ID for an entry’s teletex terminal. | |
| Gives the telex number associated with the entry. | |
| Stores the password with which the entry can bind to the directory. | |
| Gives the X.121 address for the entry. |
9.61. person
The person object class represents entries for generic people. This is the base object class for the organizationalPerson object class.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.6
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. | |
| Gives the person’s family name or last name. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Contains a URL to another entry or site with related information. | |
| Gives the telephone number for the entry. | |
| Stores the password with which the entry can bind to the directory. |
9.62. pilotObject
The pilotObject is a subclass to allow additional attributes to be assigned to entries of all other object classes.
This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.3
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Stores a sound file in a binary format. | |
| Contains the DN (Distinguished Name) of the entry to use as a redirect for the entry. | |
| Contains information about the entry. | |
| Stores a JPG image. | |
| Gives the DN (Distinguished Name) of the last user which modified the document entry. | |
| Gives the time the object was most recently modified. | |
| Gives the DN (Distinguished Name) of the entry’s manager. | |
| Stores a photo of the document in binary format. | |
| Distinguishes between two entries when a distinguished name has been reused. |
9.63. pilotOrganization
The pilotOrganization object class is a subclass used to add attributes to organization and organizationalUnit object class entries.
This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.20
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the organization to which the entry belongs. | |
| Gives the organizational unit or division to which the entry belongs. |
| Attribute | Definition |
|---|---|
| Gives the name of the building where the entry is located. | |
| Gives the type of business in which the entry is engaged. | |
| Gives a text description of the entry. | |
| Gives the country and city associated with the entry; this was once required to provide public telegram service. | |
| Contains the fax number for the entry. | |
| Contains the ISDN number for the entry. | |
| Gives the city or geographical location of the entry. | |
| Gives a location where physical deliveries can be made. | |
| Contains the mailing address for the entry. | |
| Gives the postal code for the entry, such as the zip code in the United States. | |
| Gives the post office box number for the entry. | |
| Gives the preferred method of being contacted. | |
| Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. | |
| Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. | |
| Contains a URL to another entry or site with related information. | |
| Gives the state or province where the person is located. | |
| Gives the street name and address number for the person’s physical location. | |
| Gives the telephone number for the entry. | |
| Gives the ID for an entry’s teletex terminal. | |
| Gives the telex number associated with the entry. | |
| Stores the password with which the entry can bind to the directory. | |
| Gives the X.121 address for the entry. |
9.64. pkiCA
The pkiCA auxiliary object class contains required or available certificates that are configured for a certificate authority.
This object class is defined in RFC 4523, which defines object classes and attributes for LDAP to use to manage X.509 certificates and related certificate services.
Superior Class
top
OID
2.5.6.22
| Attribute | Definition |
|---|---|
| Contains a list of revoked CA certificates. | |
| Contains a CA certificate. | |
| Contains a list of certificates that have been revoked. | |
| Contains a pair of certificates that are used to cross-certify a pair of CAs in a FBCA-style bridge CA configuration. |
9.65. pkiUser
The pkiUser auxiliary object class contains required certificates for a user or client that connects to a certificate authority or element in the public key infrastructure.
This object class is defined in RFC 4523, which defines object classes and attributes for LDAP to use to manage X.509 certificates and related certificate services.
Superior Class
top
OID
2.5.6.21
| Attribute | Definition |
|---|---|
| Stores a user’s certificate, usually in binary form. |
9.66. posixAccount
The posixAccount object class defines network accounts which use POSIX attributes.
This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
This object class is defined in 10rfc2307.ldif in Red Hat Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-<instance_name>/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.0
| Attribute | Definition |
|---|---|
| Gives the common name of the entry. | |
| Contains a unique numeric identifier for a group entry or to identify the group for a user entry, analogous to the group number in Unix. | |
| Contains the path to the user’s home directory. | |
| Gives the object classes assigned to the entry. | |
| Gives the defined account’s user ID. | |
| Contains a unique numeric identifier for a user entry, analogous to the user number in Unix. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Used to determine the GECOS field for the user; this is based on a common name, with additional information embedded. | |
| Contains the path to a script that is launched automatically when a user logs into the domain. | |
| Stores the password with which the entry can bind to the directory. |
9.67. posixGroup
The posixGroup object class defines a group of network accounts which use POSIX attributes.
This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
Superior Class
top
OID
1.3.6.1.1.1.2.2
| Attribute | Definition |
|---|---|
| Contains the path to a script that is launched automatically when a user logs into the domain. | |
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Gives the login name of the group member; this possibly may not be the same as the member’s DN. | |
| Contains the login name of the member of a group. |
9.68. referral
The referral object class defines an object which supports LDAPv3 smart referrals.
This object class is defined in LDAPv3 referrals Internet Draft.
Superior Class
top
OID
2.16.840.1.113730.3.2.6
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| Contains information for an LDAPv3 smart referral. |
9.69. residentialPerson
The residentialPerson object class manages a person’s residential information.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.10
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. | |
| Gives the city or geographical location of the entry. | |
| Gives the person’s family name or last name. |
| Attribute | Definition |
|---|---|
| Gives the type of business in which the entry is engaged. | |
| Gives a text description of the entry. | |
| Gives the country and city associated with the entry; this was once required to provide public telegram service. | |
| Contains the fax number for the entry. | |
| Contains the ISDN number for the entry. | |
| Gives a location where physical deliveries can be made. | |
| Contains the mailing address for the entry. | |
| Gives the postal code for the entry, such as the zip code in the United States. | |
| Gives the post office box number for the entry. | |
| Shows the person’s preferred method of contact or message delivery. | |
| Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. | |
| Contains a URL to another entry or site with related information. | |
| Gives the state or province where the person is located. | |
| Gives the street name and address number for the person’s physical location. | |
| Gives the telephone number for the entry. | |
| Gives the ID for an entry’s teletex terminal. | |
| Gives the telex number associated with the entry. | |
| Stores the password with which the entry can bind to the directory. | |
| Gives the X.121 address for the entry. |
9.70. RFC822LocalPart
The RFC822LocalPart object class defines entries that represent the local part of RFC 822 mail addresses. The directory treats this part of an RFC822 address as a domain.
This object class is defined by the Internet Directory Pilot.
Superior Class
domain
OID
0.9.2342.19200300.100.4.14
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Contains one component of a domain name. |
| Attribute | Definition |
|---|---|
| Gives the name of an entry within the organizational directory tree which is associated with a DNS domain. | |
| Gives the type of business in which the entry is engaged. | |
| Gives the common name of the entry. | |
| Gives a text description of the entry. | |
| Gives the country and city associated with the entry; this was once required to provide public telegram service. | |
| Contains the fax number for the entry. | |
| Contains the ISDN number for the entry. | |
| Gives the city or geographical location of the entry. | |
| Gives the organization to which the account belongs. | |
| Gives a location where physical deliveries can be made. | |
| Contains the mailing address for the entry. | |
| Gives the postal code for the entry, such as the zip code in the United States. | |
| Gives the post office box number for the entry. | |
| Shows the person’s preferred method of contact or message delivery. | |
| Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. | |
| Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. | |
| Contains a URL to another entry or site with related information. | |
| Gives the person’s family name or last name. | |
| Gives the state or province where the person is located. | |
| Gives the street name and address number for the person’s physical location. | |
| Gives the telephone number for the entry. | |
| Gives the identifier for the person’s teletex terminal. | |
| Gives the telex number associated with the entry. | |
| Stores the password with which the entry can bind to the directory. | |
| Gives the X.121 address for the entry. |
9.71. room
The room object class stores information in the directory about rooms.
Superior Class
top
OID
0.9.2342.19200300.100.4.7
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| Gives a text description of the room. | |
| Contains the room’s number. | |
| Contains a URL to another entry or site with related information. | |
| Gives the telephone number for the entry. |
9.72. shadowAccount
The shadowAccount object class allows the LDAP directory to be used as a shadow password service. Shadow password services relocate the password files on a host to a shadow file with tightly restricted access.
This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
This object class is defined in 10rfc2307.ldif in Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.1
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Gives the defined account’s user ID. |
| Attribute | Definition |
|---|---|
| Gives a text description of the entry. | |
| Contains the date that the shadow account expires. | |
| Identifies what area in the shadow map stores the flag values. | |
| Sets how long the shadow account can be inactive. | |
| Contains the time and date of the last modification to the shadow account. | |
| Sets the maximum number of days that a shadow password is valid. | |
| Sets the minimum number of days that must pass between changing the shadow password. | |
| Sets how may days in advance of password expiration to send a warning to the user. | |
| Stores the password with which the entry can bind to the directory. |
9.73. simpleSecurityObject
The simpleSecurityObject object class allows an entry to contain the userPassword attribute when an entry’s principal object classes do not allow a password attribute. This attribute is reserved for future use.
This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.19
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Stores the password with which the entry can bind to the directory. |
9.74. strongAuthenticationUser
The strongAuthenticationUser object class stores a user’s certificate in the directory.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.15
| Attribute | Definition |
|---|---|
| Gives the object classes assigned to the entry. | |
| Stores a user’s certificate, usually in binary form. |
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}