Search

Chapter 9. Entry object class reference

download PDF

This reference is an alphabetical list of the object classes accepted by the default schema. It gives a definition of each object class and lists its required and allowed attributes. The object classes listed are available to support entry information.

The required attributes listed for an object class must be present in the entry when that object class is added to the directory’s ldif file. If an object class has a superior object class, both of these object classes with all required attributes must be present in the entry. If required attributes are not listed in the ldif file, than the server will not restart.

Note

The LDAP RFCs and X.500 standards allow for an object class to have more than one superior object class. This behavior is not currently supported by Directory Server.

9.1. account

The account object class defines entries for computer accounts. This object class is defined in RFC 1274.

Superior Class

top

OID

0.9.2342.19200300.100.4.5

Table 9.1. Required Attributes
AttributeDefinition

objectClass

Gives the object classes for the entry.

userID

Gives the defined account’s user ID.

Table 9.2. Allowed Attributes
AttributeDefinition

description

Gives a text description of the entry.

host

Gives the host name for the machine on which the account resides.

localityName

Gives the city or geographical location of the entry.

organizationName

Gives the organization to which the account belongs.

organizationalUnitName

Gives the organizational unit or division to which the account belongs.

seeAlso

Contains a URL to another entry or site with related information.

9.2. accountpolicy

The accountpolicy object class defines entries for account inactivation or expiration policies. This is used for a user directory configuration entry, which works in conjunction with the Account Policy Plug-in configuration.

Superior Class

top

OID

1.3.6.1.4.1.11.1.3.2.2.1

Table 9.3. Allowed Attributes
AttributeDefinition

accountInactivityLimit

Sets the period, in seconds, from the last login time of an account before that account is locked for inactivity.

9.3. alias

The alias object class points to other directory entries. This object class is defined in RFC 2256.

Note

Aliasing entries is not supported in {PRODUCT}.

Superior Class

top

OID

2.5.6.1

Table 9.4. Required Attributes
AttributeDefinition

objectClass

Defines the object classes for the entry.

aliasedObjectName

Gives the distinguished name of the entry for which this entry is an alias.

9.4. bootableDevice

The bootableDevice object class points to a device with boot parameters. This object class is defined in RFC 2307.

Note

This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.

Superior Class

top

OID

1.3.6.1.1.1.2.12

Table 9.5. Required Attributes
AttributeDefinition

objectClass

Defines the object classes for the entry.

commonName

Gives the common name of the device.

Table 9.6. Allowed Attributes
AttributeDefinition

bootFile

Gives the boot image file.

bootParameter

Gives the parameters used by the boot process for the device.

description

Gives a text description of the entry.

localityName

Gives the city or geographical location of the entry.

organizationName

Gives the organization to which the device belongs.

organizationalUnitName

Gives the organizational unit or division to which the device belongs.

owner

Gives the DN (distinguished name) of the person responsible for the device.

seeAlso

Contains a URL to another entry or site with related information.

serialNumber

Contains the serial number of the device.

9.5. cacheObject

The cacheObject is an object that contains the time to live (ttl) attribute type. This object class is defined in the LDAP Caching Internet Draft.

Superior Class

top

OID

1.3.6.1.4.1.250.3.18

Table 9.7. Required Attributes
AttributeDefinition

objectClass

Defines the object classes for the entry.

Table 9.8. Allowed Attributes
AttributeDefinition

timeToLive

The time that the object remains (lives) in the cache.

9.6. cosClassicDefinition

The cosClassicDefinition object class defines a class of service template entry using the entry’s DN (distinguished name), given in the cosTemplateDn attribute, and the value of one of the target attributes, specified in the cosSpecifier attribute.

This object class is defined in RFC 1274.

Superior Class

cosSuperDefinition

OID

2.16.840.1.113730.3.2.100

Table 9.9. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

cosAttribute

Provides the name of the attribute for which the CoS generates a value. There can be more than one cosAttribute value specified.

Table 9.10. Allowed Attributes
AttributeDefinition

commonName

Gives the common name of the entry.

cosSpecifier

Specifies the attribute value used by a classic CoS, which, along with the template entry’s DN, identifies the template entry.

cosTemplateDn

Provides the DN of the template entry which is associated with the CoS definition.

description

Gives a text description of the entry.

9.7. cosDefinition

The cosDefinition object class defines which class of service is being used; this object class provide compatibility with the DS4.1 CoS Plug-in.

This object class is defined in RFC 1274.

Superior Class

top

OID

2.16.840.1.113730.3.2.84

Table 9.11. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

Table 9.12. Allowed Attributes
AttributeDefinition

aci

Evaluates what rights are granted or denied when Directory Server receives an LDAP request from a client.

commonName

Gives the common name of the entry.

cosAttribute

Provides the name of the attribute for which the CoS generates a value. There can be more than one cosAttribute value specified.

cosSpecifier

Specifies the attribute value used by a classic CoS, which, along with the template entry’s DN, identifies the template entry.

cosTargetTree

Defines the subtrees in the directory to which the CoS schema applies.

cosTemplateDn

Provides the DN of the template entry which is associated with the CoS definition.

userID

Gives the user ID for the entry.

9.8. cosIndirectDefinition

The cosIndirectDefinition defines the template entry using the value of one of the target entry’s attributes. The attribute of the target entry is specified in the cosIndirectSpecifier attribute.

This object class is defined by Directory Server.

Superior Class

cosSuperDefinition

OID

2.16.840.1.113730.3.2.102

Table 9.13. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

cosAttribute

Provides the name of the attribute for which the CoS generates a value. There can be more than one cosAttribute value specified.

Table 9.14. Allowed Attributes
AttributeDefinition

commonName

Gives the common name of the entry.

cosIndirectSpecifier

Specifies the attribute value used by an indirect CoS to identify the template entry.

description

Gives a text description of the entry.

9.9. cosPointerDefinition

This object class identifies the template entry associated with the CoS definition using the template entry’s DN value. The DN of the template entry is specified in the cosIndirectSpecifier attribute.

This object class is defined by Directory Server.

Superior Class

cosSuperDefinition

OID

2.16.840.1.113730.3.2.101

Table 9.15. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

cosAttribute

Provides the name of the attribute for which the CoS generates a value. There can be more than one cosAttribute value specified.

Table 9.16. Allowed Attributes
AttributeDefinition

commonName

Gives the common name of the entry.

cosTemplateDn

Provides the DN of the template entry which is associated with the CoS definition.

description

Gives a text description of the entry.

9.10. cosSuperDefinition

All CoS definition object classes inherit from the cosSuperDefinition object class.

This object class is defined by Directory Server.

Superior Class

LDAPsubentry

OID

2.16.840.1.113730.3.2.99

Table 9.17. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

cosAttribute

Provides the name of the attribute for which the CoS generates a value. There can be more than one cosAttribute value specified.

Table 9.18. Allowed Attributes
AttributeDefinition

commonName

Gives the common name of the entry.

description

Gives a text description of the entry.

9.11. cosTemplate

The cosTemplate object class contains a list of the shared attribute values for the CoS.

This object class is defined by Directory Server.

Superior Class

top

OID

2.16.840.1.113730.3.2.128

Table 9.19. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

Table 9.20. Allowed Attributes
AttributeDefinition

commonName

Gives the common name of the entry.

cosPriority

Specifies which template provides the attribute value when CoS templates compete to provide an attribute value.

9.12. country

The country object class defines entries which represent countries. This object class is defined in RFC 2256.

Superior Class

top

OID

2.5.6.2

Table 9.21. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

countryName

Contains the two-character code representing country names, as defined by ISO, in the directory.

Table 9.22. Allowed Attributes
AttributeDefinition

description

Gives a text description of the entry.

searchGuide

Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search.

9.13. dcObject

The dcObject object class allows domain components to be defined for an entry. This object class is defined as auxiliary because it is commonly used in combination with another object class, such as o (organization), ou (organizationalUnit), or l (locality).

For example:

dn: dc=example,dc=com
objectClass: top
objectClass: organizationalUnit
objectClass: dcObject
dc: example
ou: Example Corporation

This object class is defined in RFC 2247.

Superior Class

top

OID

1.3.6.1.4.1.1466.344

Table 9.23. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

dc

Contains one component of a domain name.

9.14. device

The device object class stores information about network devices, such as printers, in the directory. This object class is defined in RFC 2247.

Superior Class

top

OID

2.5.6.14

Table 9.24. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the device.

commonName

Gives the common name of the device.

Table 9.25. Allowed Attributes
AttributeDefinition

description

Gives a text description of the entry.

localityName

Gives the city or geographical location of the entry.

organizationName

Gives the organization to which the device belongs.

organizationalUnitName

Gives the organizational unit or division to which the device belongs.

owner

Gives the DN (distinguished name) of the person responsible for the device.

seeAlso

Contains a URL to another entry or site with related information.

serialNumber

Contains the serial number of the device.

9.15. document

The document object class defines directory entries that represent documents. RFC 1247.

Superior Class

top

OID

0.9.2342.19200300.100.4.6

Table 9.26. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

documentIdentifier

Gives the unique ID for the document.

Table 9.27. Allowed Attributes
AttributeDefinition

abstract

Contains the abstract for the document.

audio

Stores a sound file in binary format.

authorCn

Gives the author’s common name or given name.

authorSn

Gives the author’s surname.

commonName

Gives the common name of the entry.

description

Gives a text description of the entry.

dITRedirect

Contains the DN (distinguished name) of the entry to use as a redirect for the document entry.

documentAuthor

Contains the DN (distinguished name) of the author.

documentLocation

Gives the location of the original document.

documentPublisher

Identifies the person or organization that published the document.

documentStore

 

documentTitle

Contains the title of the document.

documentVersion

Gives the version number of the document.

info

Contains information about the document.

jpegPhoto

Stores a JPG image.

keyWords

Contains keywords related to the document.

localityName

Gives the city or geographical location of the entry.

lastModifiedBy

Gives the DN (distinguished name) of the last user which modified the document entry.

lastModifiedTime

Gives the time of the last modification.

manager

Gives the DN (distinguished name) of the entry’s manager.

organizationName

Gives the organization to which the document belongs.

obsoletedByDocument

Gives the DN (distinguished name) of another document entry which obsoletes this document.

obsoletesDocument

Gives the DN (distinguished name) of another document entry which is obsoleted by this document.

organizationalUnitName

Gives the organizational unit or division to which the document belongs.

photo

Stores a photo of the document in binary format.

seeAlso

Contains a URL to another entry or site with related information.

subject

Describes the subject of the document.

uniqueIdentifier

Distinguishes between two entries when a distinguished name has been reused.

updatedByDocument

Gives the DN (distinguished name) of another document entry which updates this document.

updatesDocument

Gives the DN (distinguished name) of another document entry which is updated by this document.

9.16. documentSeries

The documentSeries object class defines an entry that represents a series of documents. This object class is defined in RFC 1274.

Superior Class

top

OID

0.9.2342.19200300.100.4.9

Table 9.28. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

commonName

Gives the common name of the entry.

Table 9.29. Allowed Attributes
AttributeDefinition

description

Gives a text description of the entry.

localityName

Gives the place where the document series is physically located.

organizationName

Gives the organization to which the document series belongs.

organizationalUnitName

Gives the organizational unit or division to which the series belongs.

seeAlso

Contains a URL to another entry or site with related information.

telephoneNumber

Gives the telephone number of the person responsible for the document series.

9.17. domain

The domain object class defines directory entries that represent DNS domains. Use the dc attribute to name entries of this object class.

This object class is also used for Internet domain names, such as example.com.

The domain object class can only be used for a directory entry which does not correspond to an organization, organizational unit, or any other object which has an object class defined for it. object for which an object class has been defined.

This object class is defined in RFC 2252.

Superior Class

top

OID

0.9.2342.19200300.100.4.13

Table 9.30. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

dc

Contains one component of a domain name.

Table 9.31. Allowed Attributes
AttributeDefinition

associatedName

Gives the name of an entry within the organizational directory tree which is associated with a DNS domain.

businessCategory

Gives the type of business in which this domain is engaged.

description

Gives a text description of the entry.

destinationIndicator

Gives the country and city associated with the entry; this was once required to provide public telegram service.

facsimileTelephoneNumber

Gives the fax number for the domain.

internationalISDNNumber

Gives the ISDN number for the domain.

localityName

Gives the city or geographical location of the entry.

organizationName

Gives the organization to which the entry belongs.

physicalDeliveryOfficeName

Gives a location where physical deliveries can be made.

postOfficeBox

Gives the post office box number for the domain.

postalAddress

Contains the mailing address for the domain.

postalCode

Gives the postal code for the domain, such as the zip code in the United States.

preferredDeliveryMethod

Shows the person’s preferred method of contact or message delivery.

General_Atttribute_registeredAddress

Gives a postal address suitable to receive expedited documents when the recipient must verify delivery.

searchGuide

Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search.

seeAlso

Contains a URL to another entry or site with related information.

stateOrProvinceName

Gives the state or province where the domain is located.

streetaddress

Gives the street name and address number for the domain’s physical location.

telephoneNumber

Gives the phone number for the domain.

teletexTerminalIdentifier

Gives the ID for a domain’s teletex terminal.

telexNumber

Gives the telex number for the domain.

userPassword

Stores the password with which the entry can bind to the directory.

x121Address

Gives the X.121 address for the domain.

9.18. domainRelatedObject

The domainRelatedObject object class defines entries that represent DNS or NRS domains which are equivalent to an X.500 domain, such as an organization or organizational unit.

This object class is defined in RFC 1274.

Superior Class

top

OID

0.9.2342.19200300.100.4.17

Table 9.32. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

associatedDomain

Specifies a DNS domain associated with an object in the directory tree.

9.19. dSA

The dSA object class defines entries that represent DSAs.

This object class is defined in RFC 1274.

Superior Class

top

OID

2.5.6.13

Table 9.33. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

commonName

Gives the common name of the entry.

presentationAddress

Contains the entry’s OSI presentation address.

Table 9.34. Allowed Attributes
AttributeDefinition

description

Gives a text description of the entry.

knowledgeinformation

 

localityName

Gives the city or geographical location of the entry.

organizationName

Gives the organization to which the entry belongs.

organizationalUnitName

Gives the organizational unit or division to which the entry belongs.

seeAlso

Contains a URL to another entry or site with related information.

supportedApplicationContext

Contains the identifiers of OSI application contexts.

9.20. extensibleObject

When present in an entry, extensibleObject permits the entry to hold optionally any attribute. The allowed attribute list of this class is implicitly the set of all attributes known to the server.

This object class is defined in RFC 2252.

Superior Class

top

OID

1.3.6.1.4.1.1466.101.120.111

Table 9.35. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

Allowed Attributes

All attributes known to the server.

9.21. friendlyCountry

The friendlyCountry object class defines country entries within the directory. This object class allows more friendly names than the country object class.

This object class is defined in RFC 1274.

Superior Class

top

OID

0.9.2342.19200300.100.4.18

Table 9.36. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

friendlyCountryName

Stores the human-readable country name.

countryName

Contains the two-character code representing country names, as defined by ISO, in the directory.

Table 9.37. Allowed Attributes
AttributeDefinition

description

Gives a text description of the entry.

searchGuide

Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search.

9.22. groupOfCertificates

The groupOfCertificates object class describes a set of X.509 certificates. Any certificate that matches one of the memberCertificateDescription values is considered a member of the group.

Superior Class

top

OID

2.16.840.1.113730.3.2.31

Table 9.38. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

commonName

Gives the common name of the entry.

Table 9.39. Allowed Attributes
AttributeDefinition

businessCategory

Gives the type of business in which the group is engaged.

description

Gives a text description of the entry.

memberCertificateDescription

Contains the values used to determine if a particular certificate is a member of this group.

organizationName

Gives the organization to which the entry belongs.

organizationalUnitName

Gives the organizational unit or division to which the entry belongs.

owner

Contains the DN (distinguished name) of the person responsible for the group.

seeAlso

Contains a URL to another entry or site with related information.

9.23. groupOfMailEnhancedUniqueNames

The groupOfMailEnhancedUniqueNames object class is used for a mail group which must have unique members. This object class is defined for Netscape Messaging Server.

Superior Class

top

OID

2.16.840.1.113730.3.2.5

Table 9.40. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

commonName

Gives the common name of the entry.

Table 9.41. Allowed Attributes
AttributeDefinition

businessCategory

Gives the type of business in which the group is engaged.

description

Gives a text description of the entry.

mailEnhancedUniqueMember

Contains a unique DN value to identify a member of the mail group.

organizationName

Gives the organization to which the entry belongs.

organizationalUnitName

Gives the organizational unit or division to which the entry belongs.

owner

Contains the DN (distinguished name) of the person responsible for the group.

seeAlso

Contains a URL to another entry or site with related information.

9.24. groupOfNames

The groupOfNames object class contains entries for a group of names. This object class is defined in RFC 2256.

Note

The definition for this object class in Directory Server differs from the standard definition. In the standard definition, member is a required attribute, while in Directory Server it is an allowed attribute. Directory Server, therefore, allows a group to have no members.

Superior Class

top

OID

2.5.6.9

Table 9.42. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

commonName

Gives the common name of the entry.

Table 9.43. Allowed Attributes
AttributeDefinition

businessCategory

Gives the type of business in which the entry is engaged.

description

Gives a text description of the entry.

member

Contains the DN (distinguished name) of a group member.

organizationName

Gives the organization to which the entry belongs.

organizationalUnitName

Gives the organizational unit or division to which the entry belongs.

owner

Contains the DN (distinguished name) of the person responsible for the group.

seeAlso

Contains a URL to another entry or site with related information.

9.25. groupOfUniqueNames

The groupOfUniqueNames object class defines a group which contains unique names.

Note

The definition for this object class in Directory Server differs from the standard definition. In the standard definition, uniqueMember is a required attribute, while in Directory Server it is an allowed attribute. Directory Server, therefore, allows a group to have no members.

This object class is defined in RFC 2256.

Superior Class

top

OID

2.5.6.17

Table 9.44. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

commonName

Gives the common name of the entry.

Table 9.45. Allowed Attributes
AttributeDefinition

businessCategory

Gives the type of business in which the entry is engaged.

description

Gives a text description of the entry.

organizationName

Gives the organization to which the entry belongs.

organizationalUnitName

Gives the organizational unit or division to which the entry belongs.

owner

Contains the DN (distinguished name) of the person responsible for the group.

seeAlso

Contains a URL to another entry or site with related information.

uniqueMember

Contains the DN (distinguished name) of a member of the group; this DN must be unique.

9.26. groupOfURLs

The groupOfURLs object class is an auxiliary object class for the groupOfUniqueNames and groupOfNames object classes. This group consists of a list of labeled URLs.

Superior Class

top

OID

2.16.840.1.113730.3.2.33

Table 9.46. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

commonName

Gives the common name of the entry.

Table 9.47. Allowed Attributes
AttributeDefinition

businessCategory

Gives the type of business in which the group is engaged.

description

Gives a text description of the entry.

memberURL

Contains a URL associated with each member of the group.

organizationName

Gives the organization to which the entry belongs.

organizationalUnitName

Gives the organizational unit or division to which the entry belongs.

owner

Contains the DN (distinguished name) of the person responsible for the group.

seeAlso

Contains a URL to another entry or site with related information.

9.27. ieee802Device

The ieee802Device object class points to a device with a MAC address. This object class is defined in RFC 2307.

Note

This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.

Superior Class

top

OID

1.3.6.1.1.1.2.11

Table 9.48. Required Attributes
AttributeDefinition

objectClass

Defines the object classes for the entry.

commonName

Gives the common name of the device.

Table 9.49. Allowed Attributes
AttributeDefinition

description

Gives a text description of the entry.

localityName

Gives the city or geographical location of the entry.

macAddress

Gives the MAC address of the device.

organizationName

Gives the organization to which the device belongs.

organizationalUnitName

Gives the organizational unit or division to which the device belongs.

owner

Gives the DN (distinguished name) of the person responsible for the device.

seeAlso

Contains a URL to another entry or site with related information.

serialNumber

Contains the serial number of the device.

9.28. inetAdmin

The inetAdmin object class is a marker for an administrative group or user. This object class is defined for the Netscape Delegated Administrator.

Superior Class

top

OID

2.16.840.1.113730.3.2.112

Table 9.50. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

Table 9.51. Allowed Attributes
AttributeDefinition

adminRole

Identifies a role to which the administrative user belongs.

memberOf

Contains a group name to which the administrative user belongs. This is dynamically managed by the MemberOf Plug-in.

9.29. inetDomain

The inetDomain object class is a auxiliary class for virtual domain nodes. This object class is defined for the Netscape Delegated Administrator.

Superior Class

top

OID

2.16.840.1.113730.3.2.129

Table 9.52. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

Table 9.53. Allowed Attributes
AttributeDefinition

inetDomainBaseDN

Defines the base DN of the user subtree for a DNS domain.

inetDomainStatus

Gives the status of the domain. The status can be active, inactive, or deleted.

9.30. inetOrgPerson

The inetOrgPerson object class defines entries representing people in an organization’s enterprise network. This object class inherits the commonName and surname attributes from the person object class.

This object class is defined in RFC 2798.

Superior Class

person

OID

2.16.840.1.113730.3.2.2

Table 9.54. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

commonName

Gives the common name of the entry.

surname

Gives the person’s family name or last name.

Table 9.55. Allowed Attributes
AttributeDefinition

audio

Stores a sound file in binary format.

businessCategory

Gives the type of business in which the entry is engaged.

carLicense

Gives the license plate number of the person’s vehicle.

departmentNumber

Gives the department for which the person works.

description

Gives a text description of the entry.

destinationIndicator

Gives the country and city associated with the entry; this was once required to provide public telegram service.

displayName

Shows the preferred name of a person to use when displaying entries.

employeeNumber

Contains the person’s employee number.

employeeType

Shows the person’s type of employment (for example, full time).

facsimileTelephoneNumber

Contains the person’s fax number.

givenName

Contains the person’s first name.

homeTelephoneNumber

Gives the person’s home phone number.

homePostalAddress

Gives the person’s home mailing address.

initials

Gives the person’s initials.

internationalISDNNumber

Contains the ISDN number for the entry.

jpegPhoto

Stores a JPG image.

localityName

Gives the city or geographical location of the entry.

labeledURI

Contains a URL which is relevant to the entry.

mail

Contains the person’s email address.

manager

Contains the DN (distinguished name) of the direct supervisor of the person entry.

mobile

Gives the person’s mobile phone number.

organizationName

Gives the organization to which the entry belongs.

organizationalUnitName

Gives the organizational unit or division to which the entry belongs.

pagerTelephoneNumber

Gives the person’s pager number.

photo

Stores a photo of a person, in binary format.

physicalDeliveryOfficeName

Gives a location where physical deliveries can be made.

postOfficeBox

Gives the post office box number for the entry.

postalAddress

Contains the mailing address for the entry.

postalCode

Gives the postal code for the entry, such as the zip code in the United States.

preferredDeliveryMethod

Shows the person’s preferred method of contact or message delivery.

preferredLanguage

Gives the person’s preferred written or spoken language.

General_Atttribute_registeredAddress

Gives a postal address suitable to receive expedited documents when the recipient must verify delivery.

roomNumber

Gives the room number where the person is located.

secretary

Contains the DN (distinguished name) of the person’s secretary or administrative assistant.

seeAlso

Contains a URL to another entry or site with related information.

stateOrProvinceName

Gives the state or province where the entry is located.

streetaddress

Gives the street name and number for the person’s physical location.

telephoneNumber

Gives the telephone number for the entry.

teletexTerminalIdentifier

Gives the identifier for the person’s teletex terminal.

telexNumber

Gives the telex number associated with the entry.

title

Shows the person’s job title.

userID

Contains the person’s user ID (usually his logon ID).

userCertificate

Stores a user’s certificate in cleartext (not used).

userPassword

Stores the password with which the entry can bind to the directory.

userSMIMECertificate

Stores the person’s certificate in binary form so it can be used by S/MIME clients.

x121Address

Gives the X.121 address for the person.

x500UniqueIdentifier

Reserved for future use.

9.31. inetSubscriber

The inetSubscriber object class is used for general user account management. This object class is defined for the Netscape subscriber interoperability.

Superior Class

top

OID

2.16.840.1.113730.3.2.134

Table 9.56. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

Table 9.57. Allowed Attributes
AttributeDefinition

inetSubscriberAccountId

Contains a unique attribute linking the subscriber to a billing system.

inetSubscriberChallenge

Contains some kind of question or prompt, the challenge phrase, which is used to confirm the identity of the user.

inetSubscriberResponse

Contains the answer to the challenge question.

9.32. inetUser

The inetUser object class is an auxiliary class which must be present in an entry in order to deliver subscriber services. This object class is defined for the Netscape subscriber interoperability.

Superior Class

top

OID

2.16.840.1.113730.3.2.130

Table 9.58. Required Attributes
AttributeDefinition

objectClass

Gives the object classes assigned to the entry.

Table 9.59. Allowed Attributes
AttributeDefinition

inetUserHttpURL

Contains web addresses associated with the user.

inetUserStatus

Gives the status of the user. The status can be active, inactive, or deleted.

memberOf

Contains a group name to which the user belongs. This is dynamically managed by the MemberOf Plug-in.

userID

Contains the person’s user ID (usually his logon ID).

userPassword

Stores the password with which the user can use to access the user account.

9.33. ipHost

The ipHost object class stores IP information about a host. This object class is defined in RFC 2307.

Note

This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.

Superior Class

top

OID

1.3.6.1.1.1.2.6

Table 9.60. Required Attributes
AttributeDefinition

objectClass

Defines the object classes for the entry.

commonName

Gives the common name of the device.

ipHostNumber

Contains the IP address of the device or host.

Table 9.61. Allowed Attributes
AttributeDefinition

description

Gives a text description of the entry.

localityName

Gives the city or geographical location of the entry.

manager

Contains the DN (distinguished name) of the maintainer or supervisor of the entry.

organizationName

Gives the organization to which the device belongs.

organizationalUnitName

Gives the organizational unit or division to which the device belongs.

owner

Gives the DN (distinguished name) of the person responsible for the device.

seeAlso

Contains a URL to another entry or site with related information.

serialNumber

Contains the serial number of the device.

9.34. ipNetwork

The ipNetwork object class stores IP information about a network. This object class is defined in RFC 2307.

Note

This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.

Superior Class

top

OID

1.3.6.1.1.1.2.7

Table 9.62. Required Attributes
AttributeDefinition

objectClass

Defines the object classes for the entry.

commonName

Gives the common name of the device.

ipNetworkNumber

Contains the IP number for the network.

Table 9.63. Allowed Attributes
AttributeDefinition

description

Gives a text description of the entry.

localityName

Gives the city or geographical location of the entry.

manager

Contains the DN (distinguished name) of the maintainer or supervisor of the entry.

ipNetmaskNumber

Contains the IP netmask for the network.

9.35. ipProtocol

The ipProtocol object class shows the IP protocol version. This object class is defined in RFC 2307.

Note

This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.

Superior Class

top

OID

1.3.6.1.1.1.2.4

Table 9.64. Required Attributes
AttributeDefinition

objectClass

Defines the object classes for the entry.

commonName

Gives the common name of the device.

ipProtocolNumber

Contains the IP protocol number for the network.

Table 9.65. Allowed Attributes
AttributeDefinition

description

Gives a text description of the entry.

9.36. ipService

<