Red Hat SummitChapter 9. Entry object class reference
This reference is an alphabetical list of the object classes accepted by the default schema. It gives a definition of each object class and lists its required and allowed attributes. The object classes listed are available to support entry information.
The required attributes listed for an object class must be present in the entry when that object class is added to the directory’s ldif file. If an object class has a superior object class, both of these object classes with all required attributes must be present in the entry. If required attributes are not listed in the ldif file, than the server will not restart.
The LDAP RFCs and X.500 standards allow for an object class to have more than one superior object class. This behavior is not currently supported by Directory Server.
9.1. account
The account object class defines entries for computer accounts. This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.5
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes for the entry. |
| userID | Gives the defined account’s user ID. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| host | Gives the host name for the machine on which the account resides. |
| localityName | Gives the city or geographical location of the entry. |
| organizationName | Gives the organization to which the account belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the account belongs. |
| seeAlso | Contains a URL to another entry or site with related information. |
9.2. accountpolicy
The accountpolicy object class defines entries for account inactivation or expiration policies. This is used for a user directory configuration entry, which works in conjunction with the Account Policy Plug-in configuration.
Superior Class
top
OID
1.3.6.1.4.1.11.1.3.2.2.1
| Attribute | Definition |
|---|---|
| accountInactivityLimit | Sets the period, in seconds, from the last login time of an account before that account is locked for inactivity. |
9.3. alias
The alias object class points to other directory entries. This object class is defined in RFC 2256.
Aliasing entries is not supported in Red Hat Directory Server.
Superior Class
top
OID
2.5.6.1
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| aliasedObjectName | Gives the distinguished name of the entry for which this entry is an alias. |
9.4. bootableDevice
The bootableDevice object class points to a device with boot parameters. This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.12
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| commonName | Gives the common name of the device. |
| Attribute | Definition |
|---|---|
| bootFile | Gives the boot image file. |
| bootParameter | Gives the parameters used by the boot process for the device. |
| description | Gives a text description of the entry. |
| localityName | Gives the city or geographical location of the entry. |
| organizationName | Gives the organization to which the device belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the device belongs. |
| owner | Gives the DN (distinguished name) of the person responsible for the device. |
| seeAlso | Contains a URL to another entry or site with related information. |
| serialNumber | Contains the serial number of the device. |
9.5. cacheObject
The cacheObject is an object that contains the time to live (ttl) attribute type. This object class is defined in the LDAP Caching Internet Draft.
Superior Class
top
OID
1.3.6.1.4.1.250.3.18
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| Attribute | Definition |
|---|---|
| timeToLive | The time that the object remains (lives) in the cache. |
9.6. cosClassicDefinition
The cosClassicDefinition object class defines a class of service template entry using the entry’s DN (distinguished name), given in the cosTemplateDn attribute, and the value of one of the target attributes, specified in the cosSpecifier attribute.
This object class is defined in RFC 1274.
Superior Class
cosSuperDefinition
OID
2.16.840.1.113730.3.2.100
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| cosAttribute |
Provides the name of the attribute for which the CoS generates a value. There can be more than one |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| cosSpecifier | Specifies the attribute value used by a classic CoS, which, along with the template entry’s DN, identifies the template entry. |
| cosTemplateDn | Provides the DN of the template entry which is associated with the CoS definition. |
| description | Gives a text description of the entry. |
9.7. cosDefinition
The cosDefinition object class defines which class of service is being used; this object class provide compatibility with the DS4.1 CoS Plug-in.
This object class is defined in RFC 1274.
Superior Class
top
OID
2.16.840.1.113730.3.2.84
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| aci | Evaluates what rights are granted or denied when Directory Server receives an LDAP request from a client. |
| commonName | Gives the common name of the entry. |
| cosAttribute |
Provides the name of the attribute for which the CoS generates a value. There can be more than one |
| cosSpecifier | Specifies the attribute value used by a classic CoS, which, along with the template entry’s DN, identifies the template entry. |
| cosTargetTree | Defines the subtrees in the directory to which the CoS schema applies. |
| cosTemplateDn | Provides the DN of the template entry which is associated with the CoS definition. |
| userID | Gives the user ID for the entry. |
9.8. cosIndirectDefinition
The cosIndirectDefinition defines the template entry using the value of one of the target entry’s attributes. The attribute of the target entry is specified in the cosIndirectSpecifier attribute.
This object class is defined by Directory Server.
Superior Class
cosSuperDefinition
OID
2.16.840.1.113730.3.2.102
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| cosAttribute |
Provides the name of the attribute for which the CoS generates a value. There can be more than one |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| cosIndirectSpecifier | Specifies the attribute value used by an indirect CoS to identify the template entry. |
| description | Gives a text description of the entry. |
9.9. cosPointerDefinition
This object class identifies the template entry associated with the CoS definition using the template entry’s DN value. The DN of the template entry is specified in the cosIndirectSpecifier attribute.
This object class is defined by Directory Server.
Superior Class
cosSuperDefinition
OID
2.16.840.1.113730.3.2.101
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| cosAttribute |
Provides the name of the attribute for which the CoS generates a value. There can be more than one |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| cosTemplateDn | Provides the DN of the template entry which is associated with the CoS definition. |
| description | Gives a text description of the entry. |
9.10. cosSuperDefinition
All CoS definition object classes inherit from the cosSuperDefinition object class.
This object class is defined by Directory Server.
Superior Class
LDAPsubentry
OID
2.16.840.1.113730.3.2.99
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| cosAttribute |
Provides the name of the attribute for which the CoS generates a value. There can be more than one |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| description | Gives a text description of the entry. |
9.11. cosTemplate
The cosTemplate object class contains a list of the shared attribute values for the CoS.
This object class is defined by Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.128
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| cosPriority | Specifies which template provides the attribute value when CoS templates compete to provide an attribute value. |
9.12. country
The country object class defines entries which represent countries. This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.2
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| countryName | Contains the two-character code representing country names, as defined by ISO, in the directory. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| searchGuide | Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. |
9.13. dcObject
The dcObject object class allows domain components to be defined for an entry. This object class is defined as auxiliary because it is commonly used in combination with another object class, such as o (organization), ou (organizationalUnit), or l (locality).
For example:
dn: dc=example,dc=com objectClass: top objectClass: organizationalUnit objectClass: dcObject dc: example ou: Example Corporation
This object class is defined in RFC 2247.
Superior Class
top
OID
1.3.6.1.4.1.1466.344
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| dc | Contains one component of a domain name. |
9.14. device
The device object class stores information about network devices, such as printers, in the directory. This object class is defined in RFC 2247.
Superior Class
top
OID
2.5.6.14
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the device. |
| commonName | Gives the common name of the device. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| localityName | Gives the city or geographical location of the entry. |
| organizationName | Gives the organization to which the device belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the device belongs. |
| owner | Gives the DN (distinguished name) of the person responsible for the device. |
| seeAlso | Contains a URL to another entry or site with related information. |
| serialNumber | Contains the serial number of the device. |
9.15. document
The document object class defines directory entries that represent documents. RFC 1247.
Superior Class
top
OID
0.9.2342.19200300.100.4.6
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| documentIdentifier | Gives the unique ID for the document. |
| Attribute | Definition |
|---|---|
| abstract | Contains the abstract for the document. |
| audio | Stores a sound file in binary format. |
| authorCn | Gives the author’s common name or given name. |
| authorSn | Gives the author’s surname. |
| commonName | Gives the common name of the entry. |
| description | Gives a text description of the entry. |
| dITRedirect | Contains the DN (distinguished name) of the entry to use as a redirect for the document entry. |
| documentAuthor | Contains the DN (distinguished name) of the author. |
| documentLocation | Gives the location of the original document. |
| documentPublisher | Identifies the person or organization that published the document. |
| documentStore | |
| documentTitle | Contains the title of the document. |
| documentVersion | Gives the version number of the document. |
| info | Contains information about the document. |
| jpegPhoto | Stores a JPG image. |
| keyWords | Contains keywords related to the document. |
| localityName | Gives the city or geographical location of the entry. |
| lastModifiedBy | Gives the DN (distinguished name) of the last user which modified the document entry. |
| lastModifiedTime | Gives the time of the last modification. |
| manager | Gives the DN (distinguished name) of the entry’s manager. |
| organizationName | Gives the organization to which the document belongs. |
| obsoletedByDocument | Gives the DN (distinguished name) of another document entry which obsoletes this document. |
| obsoletesDocument | Gives the DN (distinguished name) of another document entry which is obsoleted by this document. |
| organizationalUnitName | Gives the organizational unit or division to which the document belongs. |
| photo | Stores a photo of the document in binary format. |
| seeAlso | Contains a URL to another entry or site with related information. |
| subject | Describes the subject of the document. |
| uniqueIdentifier | Distinguishes between two entries when a distinguished name has been reused. |
| updatedByDocument | Gives the DN (distinguished name) of another document entry which updates this document. |
| updatesDocument | Gives the DN (distinguished name) of another document entry which is updated by this document. |
9.16. documentSeries
The documentSeries object class defines an entry that represents a series of documents. This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.9
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| localityName | Gives the place where the document series is physically located. |
| organizationName | Gives the organization to which the document series belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the series belongs. |
| seeAlso | Contains a URL to another entry or site with related information. |
| telephoneNumber | Gives the telephone number of the person responsible for the document series. |
9.17. domain
The domain object class defines directory entries that represent DNS domains. Use the dc attribute to name entries of this object class.
This object class is also used for Internet domain names, such as example.com.
The domain object class can only be used for a directory entry which does not correspond to an organization, organizational unit, or any other object which has an object class defined for it. object for which an object class has been defined.
This object class is defined in RFC 2252.
Superior Class
top
OID
0.9.2342.19200300.100.4.13
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| dc | Contains one component of a domain name. |
| Attribute | Definition |
|---|---|
| associatedName | Gives the name of an entry within the organizational directory tree which is associated with a DNS domain. |
| businessCategory | Gives the type of business in which this domain is engaged. |
| description | Gives a text description of the entry. |
| destinationIndicator | Gives the country and city associated with the entry; this was once required to provide public telegram service. |
| facsimileTelephoneNumber | Gives the fax number for the domain. |
| internationalISDNNumber | Gives the ISDN number for the domain. |
| localityName | Gives the city or geographical location of the entry. |
| organizationName | Gives the organization to which the entry belongs. |
| physicalDeliveryOfficeName | Gives a location where physical deliveries can be made. |
| postOfficeBox | Gives the post office box number for the domain. |
| postalAddress | Contains the mailing address for the domain. |
| postalCode | Gives the postal code for the domain, such as the zip code in the United States. |
| preferredDeliveryMethod | Shows the person’s preferred method of contact or message delivery. |
| General_Atttribute_registeredAddress | Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. |
| searchGuide | Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. |
| seeAlso | Contains a URL to another entry or site with related information. |
| stateOrProvinceName | Gives the state or province where the domain is located. |
| streetaddress | Gives the street name and address number for the domain’s physical location. |
| telephoneNumber | Gives the phone number for the domain. |
| teletexTerminalIdentifier | Gives the ID for a domain’s teletex terminal. |
| telexNumber | Gives the telex number for the domain. |
| userPassword | Stores the password with which the entry can bind to the directory. |
| x121Address | Gives the X.121 address for the domain. |
9.18. domainRelatedObject
The domainRelatedObject object class defines entries that represent DNS or NRS domains which are equivalent to an X.500 domain, such as an organization or organizational unit.
This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.17
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| associatedDomain | Specifies a DNS domain associated with an object in the directory tree. |
9.19. dSA
The dSA object class defines entries that represent DSAs.
This object class is defined in RFC 1274.
Superior Class
top
OID
2.5.6.13
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| presentationAddress | Contains the entry’s OSI presentation address. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| knowledgeinformation | |
| localityName | Gives the city or geographical location of the entry. |
| organizationName | Gives the organization to which the entry belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| seeAlso | Contains a URL to another entry or site with related information. |
| supportedApplicationContext | Contains the identifiers of OSI application contexts. |
9.20. extensibleObject
When present in an entry, extensibleObject permits the entry to hold optionally any attribute. The allowed attribute list of this class is implicitly the set of all attributes known to the server.
This object class is defined in RFC 2252.
Superior Class
top
OID
1.3.6.1.4.1.1466.101.120.111
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
Allowed Attributes
All attributes known to the server.
9.21. friendlyCountry
The friendlyCountry object class defines country entries within the directory. This object class allows more friendly names than the country object class.
This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.18
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| friendlyCountryName | Stores the human-readable country name. |
| countryName | Contains the two-character code representing country names, as defined by ISO, in the directory. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| searchGuide | Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. |
9.22. groupOfCertificates
The groupOfCertificates object class describes a set of X.509 certificates. Any certificate that matches one of the memberCertificateDescription values is considered a member of the group.
Superior Class
top
OID
2.16.840.1.113730.3.2.31
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| businessCategory | Gives the type of business in which the group is engaged. |
| description | Gives a text description of the entry. |
| memberCertificateDescription | Contains the values used to determine if a particular certificate is a member of this group. |
| organizationName | Gives the organization to which the entry belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| owner | Contains the DN (distinguished name) of the person responsible for the group. |
| seeAlso | Contains a URL to another entry or site with related information. |
9.23. groupOfMailEnhancedUniqueNames
The groupOfMailEnhancedUniqueNames object class is used for a mail group which must have unique members. This object class is defined for Netscape Messaging Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.5
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| businessCategory | Gives the type of business in which the group is engaged. |
| description | Gives a text description of the entry. |
| mailEnhancedUniqueMember | Contains a unique DN value to identify a member of the mail group. |
| organizationName | Gives the organization to which the entry belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| owner | Contains the DN (distinguished name) of the person responsible for the group. |
| seeAlso | Contains a URL to another entry or site with related information. |
9.24. groupOfNames
The groupOfNames object class contains entries for a group of names. This object class is defined in RFC 2256.
The definition for this object class in Directory Server differs from the standard definition. In the standard definition, member is a required attribute, while in Directory Server it is an allowed attribute. Directory Server, therefore, allows a group to have no members.
Superior Class
top
OID
2.5.6.9
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| businessCategory | Gives the type of business in which the entry is engaged. |
| description | Gives a text description of the entry. |
| member | Contains the DN (distinguished name) of a group member. |
| organizationName | Gives the organization to which the entry belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| owner | Contains the DN (distinguished name) of the person responsible for the group. |
| seeAlso | Contains a URL to another entry or site with related information. |
9.25. groupOfUniqueNames
The groupOfUniqueNames object class defines a group which contains unique names.
The definition for this object class in Directory Server differs from the standard definition. In the standard definition, uniqueMember is a required attribute, while in Directory Server it is an allowed attribute. Directory Server, therefore, allows a group to have no members.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.17
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| businessCategory | Gives the type of business in which the entry is engaged. |
| description | Gives a text description of the entry. |
| organizationName | Gives the organization to which the entry belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| owner | Contains the DN (distinguished name) of the person responsible for the group. |
| seeAlso | Contains a URL to another entry or site with related information. |
| uniqueMember | Contains the DN (distinguished name) of a member of the group; this DN must be unique. |
9.26. groupOfURLs
The groupOfURLs object class is an auxiliary object class for the groupOfUniqueNames and groupOfNames object classes. This group consists of a list of labeled URLs.
Superior Class
top
OID
2.16.840.1.113730.3.2.33
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| businessCategory | Gives the type of business in which the group is engaged. |
| description | Gives a text description of the entry. |
| memberURL | Contains a URL associated with each member of the group. |
| organizationName | Gives the organization to which the entry belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| owner | Contains the DN (distinguished name) of the person responsible for the group. |
| seeAlso | Contains a URL to another entry or site with related information. |
9.27. ieee802Device
The ieee802Device object class points to a device with a MAC address. This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.11
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| commonName | Gives the common name of the device. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| localityName | Gives the city or geographical location of the entry. |
| macAddress | Gives the MAC address of the device. |
| organizationName | Gives the organization to which the device belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the device belongs. |
| owner | Gives the DN (distinguished name) of the person responsible for the device. |
| seeAlso | Contains a URL to another entry or site with related information. |
| serialNumber | Contains the serial number of the device. |
9.28. inetAdmin
The inetAdmin object class is a marker for an administrative group or user. This object class is defined for the Netscape Delegated Administrator.
Superior Class
top
OID
2.16.840.1.113730.3.2.112
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| adminRole | Identifies a role to which the administrative user belongs. |
| memberOf | Contains a group name to which the administrative user belongs. This is dynamically managed by the MemberOf Plug-in. |
9.29. inetDomain
The inetDomain object class is a auxiliary class for virtual domain nodes. This object class is defined for the Netscape Delegated Administrator.
Superior Class
top
OID
2.16.840.1.113730.3.2.129
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| inetDomainBaseDN | Defines the base DN of the user subtree for a DNS domain. |
| inetDomainStatus | Gives the status of the domain. The status can be active, inactive, or deleted. |
9.30. inetOrgPerson
The inetOrgPerson object class defines entries representing people in an organization’s enterprise network. This object class inherits the commonName and surname attributes from the person object class.
This object class is defined in RFC 2798.
Superior Class
person
OID
2.16.840.1.113730.3.2.2
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| surname | Gives the person’s family name or last name. |
| Attribute | Definition |
|---|---|
| audio | Stores a sound file in binary format. |
| businessCategory | Gives the type of business in which the entry is engaged. |
| carLicense | Gives the license plate number of the person’s vehicle. |
| departmentNumber | Gives the department for which the person works. |
| description | Gives a text description of the entry. |
| destinationIndicator | Gives the country and city associated with the entry; this was once required to provide public telegram service. |
| displayName | Shows the preferred name of a person to use when displaying entries. |
| employeeNumber | Contains the person’s employee number. |
| employeeType | Shows the person’s type of employment (for example, full time). |
| facsimileTelephoneNumber | Contains the person’s fax number. |
| givenName | Contains the person’s first name. |
| homeTelephoneNumber | Gives the person’s home phone number. |
| homePostalAddress | Gives the person’s home mailing address. |
| initials | Gives the person’s initials. |
| internationalISDNNumber | Contains the ISDN number for the entry. |
| jpegPhoto | Stores a JPG image. |
| localityName | Gives the city or geographical location of the entry. |
| labeledURI | Contains a URL which is relevant to the entry. |
| | Contains the person’s email address. |
| manager | Contains the DN (distinguished name) of the direct supervisor of the person entry. |
| mobile | Gives the person’s mobile phone number. |
| organizationName | Gives the organization to which the entry belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| pagerTelephoneNumber | Gives the person’s pager number. |
| photo | Stores a photo of a person, in binary format. |
| physicalDeliveryOfficeName | Gives a location where physical deliveries can be made. |
| postOfficeBox | Gives the post office box number for the entry. |
| postalAddress | Contains the mailing address for the entry. |
| postalCode | Gives the postal code for the entry, such as the zip code in the United States. |
| preferredDeliveryMethod | Shows the person’s preferred method of contact or message delivery. |
| preferredLanguage | Gives the person’s preferred written or spoken language. |
| General_Atttribute_registeredAddress | Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. |
| roomNumber | Gives the room number where the person is located. |
| secretary | Contains the DN (distinguished name) of the person’s secretary or administrative assistant. |
| seeAlso | Contains a URL to another entry or site with related information. |
| stateOrProvinceName | Gives the state or province where the entry is located. |
| streetaddress | Gives the street name and number for the person’s physical location. |
| telephoneNumber | Gives the telephone number for the entry. |
| teletexTerminalIdentifier | Gives the identifier for the person’s teletex terminal. |
| telexNumber | Gives the telex number associated with the entry. |
| title | Shows the person’s job title. |
| userID | Contains the person’s user ID (usually his logon ID). |
| userCertificate | Stores a user’s certificate in cleartext (not used). |
| userPassword | Stores the password with which the entry can bind to the directory. |
| userSMIMECertificate | Stores the person’s certificate in binary form so it can be used by S/MIME clients. |
| x121Address | Gives the X.121 address for the person. |
| x500UniqueIdentifier | Reserved for future use. |
9.31. inetSubscriber
The inetSubscriber object class is used for general user account management. This object class is defined for the Netscape subscriber interoperability.
Superior Class
top
OID
2.16.840.1.113730.3.2.134
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| inetSubscriberAccountId | Contains a unique attribute linking the subscriber to a billing system. |
| inetSubscriberChallenge | Contains some kind of question or prompt, the challenge phrase, which is used to confirm the identity of the user. |
| inetSubscriberResponse | Contains the answer to the challenge question. |
9.32. inetUser
The inetUser object class is an auxiliary class which must be present in an entry in order to deliver subscriber services. This object class is defined for the Netscape subscriber interoperability.
Superior Class
top
OID
2.16.840.1.113730.3.2.130
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| inetUserHttpURL | Contains web addresses associated with the user. |
| inetUserStatus | Gives the status of the user. The status can be active, inactive, or deleted. |
| memberOf | Contains a group name to which the user belongs. This is dynamically managed by the MemberOf Plug-in. |
| userID | Contains the person’s user ID (usually his logon ID). |
| userPassword | Stores the password with which the user can use to access the user account. |
9.33. ipHost
The ipHost object class stores IP information about a host. This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.6
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| commonName | Gives the common name of the device. |
| ipHostNumber | Contains the IP address of the device or host. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| localityName | Gives the city or geographical location of the entry. |
| manager | Contains the DN (distinguished name) of the maintainer or supervisor of the entry. |
| organizationName | Gives the organization to which the device belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the device belongs. |
| owner | Gives the DN (distinguished name) of the person responsible for the device. |
| seeAlso | Contains a URL to another entry or site with related information. |
| serialNumber | Contains the serial number of the device. |
9.34. ipNetwork
The ipNetwork object class stores IP information about a network. This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.7
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| commonName | Gives the common name of the device. |
| ipNetworkNumber | Contains the IP number for the network. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| localityName | Gives the city or geographical location of the entry. |
| manager | Contains the DN (distinguished name) of the maintainer or supervisor of the entry. |
| ipNetmaskNumber | Contains the IP netmask for the network. |
9.35. ipProtocol
The ipProtocol object class shows the IP protocol version. This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.4
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| commonName | Gives the common name of the device. |
| ipProtocolNumber | Contains the IP protocol number for the network. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
9.36. ipService
The ipService object class stores information about the IP service. This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.3
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| commonName | Gives the common name of the device. |
| ipServicePort | Gives the port number used by the IP service. |
| ipServiceProtocol | Contains the IP protocol number for the service. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
9.37. labeledURIObject
This object class can be added to existing directory objects to allow URI values to be included. Using this object class does not preclude including the labeledURI attribute type directly in other object classes as appropriate.
This object class is defined in RFC 2079.
Superior Class
top
OID
1.3.6.1.4.1.250.3.15
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| labeledURI | Gives a URI which is relevant to the entry’s object. |
9.38. locality
The locality object class defines entries that represent localities or geographic areas.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.3
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| localityName | Gives the city or geographical location of the entry. |
| searchGuide | Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. |
| seeAlso | Contains a URL to another entry or site with related information. |
| stateOrProvinceName | Gives the state or province associated with the locality. |
| streetaddress | Gives a street and number associated with the locality. |
9.39. mailGroup
The mailGroup object class defines the mail attributes for a group. This object is defined in the schema for the Netscape Messaging Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.4
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| | Stores email addresses for the group. |
| mailAlternateAddress | Contains secondary email addresses for the group. |
| mailHost | Contains the host name of the mail server. |
| owner | Contains the DN (distinguished name) of the person responsible for the group. |
9.40. mailRecipient
The mailRecipient object class defines a mail account for a user. This object is defined in the schema for the Netscape Messaging Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.3
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| | Stores email addresses for the group. |
| mailAccessDomain | Contains the domain from which the user can access the messaging server. |
| mailAlternateAddress | Contains secondary email addresses for the group. |
| mailAutoReplyMode | Specifies whether autoreply mode for the account is enabled. |
| mailAutoReplyText | Contains the text use for automatic reply emails. |
| mailDeliveryOption | Specifies the mail delivery mechanism to be used for the mail user. |
| mailForwardingAddress | Specifies the mail delivery mechanism to use for the mail user. |
| mailHost | Contains the host name of the mail server. |
| mailMessageStore | Specifies the location of the user’s mail box. |
| mailProgramDeliveryInfo | Specifies the commands used for programmed mail delivery. |
| mailQuota | Specifies the disk space allowed for the user’s mail box. |
| mailRoutingAddress | Contains a routing address to use when forwarding the mail from this entry’s account to another messaging server. |
| multiLineDescription | Contains a text description of the entry which spans more than one line. |
| userID | Gives the defined account’s user ID. |
| userPassword | Stores the password with which the entry can access the account. |
9.41. mepManagedEntry
The mepManagedEntry object class identifies an entry which was been generated by an instance of the Managed Entries Plug-in. This object class is defined in Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.319
| Attribute | Definition |
|---|---|
| mepManagedBy | Gives the DN of the originating entry which corresponds to the managed entry. |
9.42. mepOriginEntry
The mepOriginEntry object class identifies an entry which is within a subtree that is monitored by an instance of the Managed Entries Plug-in and which has had a managed entry created by the plug-in, for which this is the originating entry. This object class is defined in Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.320
| Attribute | Definition |
|---|---|
| mepManagedEntry | Gives the DN of the managed entry entry which was created by the Managed Entries Plug-in instance and which corresponds to this originating entry. |
9.43. mepTemplateEntry
The mepTemplateEntry object class identifies an entry which is used as a template by an instance of the Managed Entries Plug-in to create the managed entries. This object class is defined in Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.321
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| mepMappedAttr | Contains an attribute-token pair that the plug-in uses to create an attribute in the managed entry with a value taken from the originating entry. |
| mepRDNAttr | Specifies which attribute to use as the naming attribute in the managed entry. |
| mepStaticAttr | Contains an attribute-value pair that will be used, with that specified value, in the managed entry. |
9.44. netscapeCertificateServer
The netscapeCertificateServer object class stores information about a Netscape certificate server. This object is defined in the schema for the Netscape Certificate Management System.
Superior Class
top
OID
2.16.840.1.113730.3.2.18
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
9.45. netscapeDirectoryServer
The netscapeDirectoryServer object class stores information about a Directory Server instance. This object is defined in the schema for the Netscape Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.23
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
9.46. NetscapeLinkedOrganization
NetscapeLinkedOrganization is an auxiliary object class. This object is defined in the schema for the Netscape server suite.
Superior Class
top
OID
1.3.6.1.4.1.1466.101.120.141
| Attribute | Definition |
|---|---|
| parentOrganization | Identifies the parent organization for the linked organization defined for the server suite. |
9.47. netscapeMachineData
The netscapeMachineData object class distinguishes between machine data and non-machine data. This object is defined in the schema for the Netscape Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.32
9.48. NetscapePreferences
NetscapePreferences is an auxiliary object class which stores the user preferences. This object is defined by Netscape.
Superior Class
top
OID
1.3.6.1.4.1.1466.101.120.142
| Attribute | Definition |
|---|---|
| preferredLanguage | Gives the person’s preferred written or spoken language. |
| preferredLocale | Gives the person’s preferred locale. A locale setting defines cultural or national settings like date formats and currencies. |
| preferredTimeZone | Gives the person’s preferred time zone. |
9.49. netscapeReversiblePasswordObject
netscapeReversiblePasswordObject is an auxiliary object class to store a password. This object is defined in the schema for the Netscape Web Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.154
| Attribute | Definition |
|---|---|
| netscapeReversiblePassword | Contains a password used for HTTP Digest/MD5 authentication. |
9.50. netscapeServer
The netscapeServer object class contains instance-specific information about a Netscape server and its installation.
Superior Class
top
OID
2.16.840.1.113730.3.2.10
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| administratorContactInfo | Contains the contact information for the server administrator. |
| adminUrl | Contains the URL for the Administration Server used by the instance. |
| description | Gives a text description of the entry. |
| installationTimeStamp | Contains the time that the server instance was installed. |
| serverHostName | Contains the host name of the server on which the Directory Server instance is running. |
| serverProductName | Contains the product name of the server type. |
| serverRoot | Specifies the top directory where the server product is installed. |
| serverVersionNumber | Contains the product version number. |
| userPassword | Stores the password with which the entry can bind to the directory. |
9.51. netscapeWebServer
The netscapeWebServer object class identifies an installed Netscape Web Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.29
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| nsServerID | Contains the server’s name or ID. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| nsServerPort | Contains the server’s port number. |
9.52. newPilotPerson
The newPilotPerson object class is a subclass of the person to allow additional attributes to be assigned to entries of the person object class. This object class inherits the commonName and surname attributes from the person object class.
This object class is defined in Internet White Pages Pilot.
Superior Class
person
OID
0.9.2342.19200300.100.4.4
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| surname | Gives the person’s family name or last name. |
| Attribute | Definition |
|---|---|
| businessCategory | Gives the type of business in which the entry is engaged. |
| description | Gives a text description of the entry. |
| favoriteDrink | Gives the person’s favorite drink. |
| homeTelephoneNumber | Gives the person’s home phone number. |
| homePostalAddress | Gives the person’s home mailing address. |
| janetMailbox | Gives the person’s email address; this is primarily for use in Great Britain or organizations which do no use RFC 822 mail addresses. |
| | Contains the person’s email address. |
| mailPreferenceOption | Indicates the user’s preference for including his name on mailing lists (electronic or physical). |
| mobile | Gives the person’s mobile phone number. |
| organizationalStatus | Gives the common job category for a person’s function. |
| otherMailbox | Contains values for electronic mailbox types other than X.400 and RFC 822. |
| pagerTelephoneNumber | Gives the person’s pager number. |
| Personal_Signature_personalSignature | Contains the person’s signature file. |
| personalTitle | Gives the person’s honorific. |
| preferredDeliveryMethod | Shows the person’s preferred method of contact or message delivery. |
| roomNumber | Gives the room number where the person is located. |
| secretary | Contains the DN (distinguished name) of the person’s secretary or administrative assistant. |
| seeAlso | Contains a URL to another entry or site with related information. |
| telephoneNumber | Gives the telephone number for the entry. |
| userID | Contains the person’s user ID (usually his logon ID). |
| userClass | Describes the type of computer user this entry is. |
| userPassword | Stores the password with which the entry can bind to the directory. |
9.53. nisMap
This object class points to a NIS map.
This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.13
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| nisMapName | Contains the NIS map name. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
9.54. nisNetgroup
This object class contains a netgroup used within a NIS domain. Adding this object class allows administrators to use netgroups to control login and service authentication in NIS.
This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.8
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| memberNisNetgroup | Merges the attribute values of another netgroup into the current one by listing the name of the merging netgroup. |
| nisNetgroupTriple |
Contains a user name ( |
9.55. nisObject
This object class contains information about an object in a NIS domain.
This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.10
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| NisMapEntry | Identifies the NIS map entry. |
| nisMapName | Contains the name of the NIS map. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
9.56. nsAdminConfig
This object class stores the configuration parameters for the Administration Server. This object is defined for the Administration Services.
Superior Class
nsConfig
OID
nsAdminConfig-oid
| Attribute | Definition |
|---|---|
| nsAdminAccessAddresses | Identifies the Administration Server IP addresses. |
| nsAdminAccessHosts | Contains the Administration Server host name or a list of Administration Server host names. |
| nsAdminCacheLifetime | Notes the length of the cache timeout period. |
| nsAdminCgiWaitPid | Contains the PID of the CGI process the server is waiting for. |
| nsAdminEnableEnduser | Sets whether to allow or disallow end user access to the Administration Server web services pages. |
| nsAdminOneACLDir | Contains the path of the local ACL directory for the Administration Server. |
| nsAdminUsers | Points to the file which contains the admin user info. |
9.57. nsAdminConsoleUser
This object class stores the configuration parameters for the Administration Server. This object is defined for the Administration Services.
Superior Class
top
OID
nsAdminConsoleUser-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| nsPreference | Stores preference information for console settings. |
9.58. nsAdminDomain
This object class stores user information to access Admin Console. This object is defined for the Administration Services.
Superior Class
organizationalUnit
OID
nsAdminDomain-oid
| Attribute | Definition |
|---|---|
| nsAdminDomainName | Identifies the administration domain for the servers. |
9.59. nsAdminGlobalParameters
This object class stores the configuration parameters for the Administration Server. This object is defined for the Administration Services.
Superior Class
top
OID
nsAdminGlobalParameters-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| nsAdminEndUserHTMLIndex | Sets whether to allow or disallow end-user access to the HTML index pages. |
| nsNickName | Gives the nickname for the application. |
9.60. nsAdminGroup
This object class stores group information for administrator users in the Administration Server. This object is defined for the Administration Services.
Superior Class
top
OID
nsAdminGroup-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| nsAdminGroupName | Contains the name for the admin group. |
| nsAdminSIEDN | Shows the DN of the server instance entry (SIE) for the Administration Server instance. |
| nsConfigRoot | Gives the full path to the Administration Server instance’s configuration directory. |
9.61. nsAdminObject
This object class contains information about an object used by Administration Server, such as a task. This object is defined for the Administration Services.
Superior Class
top
OID
nsAdminObject-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| nsClassname | Contains the class name associated with the task or resource editor for the Administration Server. |
| nsJarfilename | Gives the name of the JAR file used by the Administration Server Console to access the object. |
9.62. nsAdminResourceEditorExtension
This object class contains an extension used by the Console Resource Editor. This object is defined for the Administration Services.
Superior Class
nsAdminObject
OID
nsAdminResourceEditorExtension-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| nsAdminAccountInfo | Contains information about the Administration Server account. |
| nsDeleteclassname | Contains the name of a class to be deleted. |
9.63. nsAdminServer
This object class defines the Administration Server instance. This object is defined for the Administration Services.
Superior Class
top
OID
nsAdminServer-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| nsServerID |
Contains the Directory Server ID, such as |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
9.64. nsAIMpresence
nsAIMpresence is an auxiliary object class which defines the status of an AOL instance messaging account. This object is defined for Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.300
| Attribute | Definition |
|---|---|
| nsAIMid | Contains the AIM user ID for the entry. |
| nsAIMStatusGraphic | Contains a pointer to the graphic image which indicates the AIM account’s status. |
| nsAIMStatusText | Contains the text to indicate the AIM account’s status. |
9.65. nsApplication
nsApplication defines an application or server entry. This is defined by Netscape.
Superior Class
top
OID
nsApplication-oid
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| installationTimeStamp | Contains the time that the server instance was installed. |
| nsBuildNumber | Contains the build number for the server instance. |
| nsBuildSecurity | Contains the level of security used to make the build. |
| nsExpirationDate | Contains the date that the license for the application expires. |
| nsInstalledLocation | For servers which are version 7.1 or older, shows the installation directory for the server. |
| nsLdapSchemaVersion | Gives the version of the LDAP schema files used by Directory Server. |
| nsNickName | Gives the nickname for the application. |
| nsProductName | Gives the name of the server product. |
| nsProductVersion | Shows the version number of the server product. |
| nsRevisionNumber | Contains the revision number (minor version) for the product. |
| nsSerialNumber | Gives the serial number assigned to the server product. |
| nsServerMigrationClassname | Gives the class to use to migrate a server instance. |
| nsServerCreationClassname | Gives the class to use to create a server instance. |
| nsVendor | Contains the name of the vendor who designed the server. |
9.66. nsCertificateServer
The nsCertificateServer object class stores information about a Red Hat Certificate System instance. This object is defined in the schema for the Certificate System.
Superior Class
top
OID
nsCertificateServer-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| nsServerID | Contains the server’s name or ID. |
| Attribute | Definition |
|---|---|
| nsCertConfig | Contains configuration settings for a Red Hat Certificate System instance. |
| nsServerPort | Contains the server’s port number. |
| serverHostName | Contains the host name of the server on which Directory Server instance is running. |
9.67. nsComplexRoleDefinition
Any role that is not a simple role is, by definition, a complex role.
This object class is defined by Directory Server.
Superior Class
nsRoleDefinition
OID
2.16.840.1.113730.3.2.95
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| description | Gives a text description of the entry. |
9.68. nsContainer
Some entries do not define any specific entity, but they create a defined space within the directory tree as a parent entry for similar or related child entries. These are container entries, and they are identified by the nsContainer object class.
Superior Class
top
OID
2.16.840.1.113730.3.2.104
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| cn | Gives the common name of the entry. |
9.69. nsCustomView
The nsCustomView object class defines information about custom views of Directory Server data.
Superior Class
nsAdminObject
OID
nsCustomView-oid
| Attribute | Definition |
|---|---|
| nsDisplayName | Contains the name of the custom view setting profile. |
9.70. nsDefaultObjectClasses
nsDefaultObjectClasses sets default object classes to use when creating a new object of a certain type within the directory. This is defined for Administration Services.
Superior Class
top
OID
nsDefaultObjectClasses-oid
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| commonName | Gives the common name of the device. |
| Attribute | Definition |
|---|---|
| nsDefaultObjectClass | Contains an object class to assign by default to an object type. |
9.71. nsDirectoryInfo
nsDirectoryInfo contains information about a directory instance. This is defined for Administration Services.
Superior Class
top
OID
nsDirectoryInfo-oid
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| commonName | Gives the common name of the device. |
| Attribute | Definition |
|---|---|
| nsBindDN | Contains the bind DN defined for the server in its server instance entry. |
| nsBindPassword | Contains the password for the bind identity in the SIE. |
| nsDirectoryFailoverList |
Contains a list of URLs of other Directory Server instances to use for failover support if the instance in |
| nsDirectoryInfoRef | Contains a reference to a distinguished name (DN) in the directory. |
| nsDirectoryURL | Contains a URL to access Directory Server instance. |
9.72. nsDirectoryServer
nsDirectoryServer is the defining object class for a Directory Server instance. This is defined for Directory Server.
Superior Class
top
OID
nsDirectoryServer-oid
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| nsServerID | Contains the server’s name or ID. |
| Attribute | Definition |
|---|---|
| nsBaseDN | Contains the base DN for the server instance. |
| nsBindDN | Contains the bind DN defined for the server in its server instance entry. |
| nsBindPassword | Contains the password for the bind identity in the SIE. |
| nsSecureServerPort | Contains the server’s TLS port number. |
| nsServerPort | Contains the server’s port number. |
| serverHostName | Contains the host name of the server on which the Directory Server instance is running. |
9.73. nsFilteredRoleDefinition
The nsFilteredRoleDefinition object class defines how entries are assigned to the role, depending upon the attributes contained by each entry.
This object class is defined in Directory Server.
Superior Class
nsComplexRoleDefinition
OID
2.16.840.1.113730.3.2.97
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| nsRoleFilter | Specifies the filter used to identify entries in the filtered role. |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| description | Gives a text description of the entry. |
9.74. nsGlobalParameters
The nsGlobalParameters object class contains global preference settings.
This object class is defined in Administrative Services.
Superior Class
top
OID
nsGlobalParameters-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| nsGroupRDNComponent | Defines the default attribute type used in the RDN of the group entry. |
| nsUniqueAttribute | Defines a unique attribute in the preferences. |
| nsUserIDFormat |
Sets the format to generate the user ID from the |
| nsUserRDNComponent | Sets the attribute type to use as the naming component in the user DN. |
| nsNYR | Not used. |
| nsWellKnownJarfiles | Not used. |
9.75. nsHost
The nsHost object class stores information about the server host.
This object class is defined in Administrative Services.
Superior Class
top
OID
nsHost-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| localityName | Gives the city or geographical location of the entry. |
| nsHardwarePlatform |
Identifies the hardware platform for the host on which the Directory Server instance is running. This is the same information as running |
| nsHostLocation | Gives the location of the server host. |
| nsOsVersion | Contains the operating system version of the server host. |
| serverHostName | Contains the host name of the server on which the Directory Server instance is running. |
9.76. nsICQpresence
nsICQpresence is an auxiliary object class which defines the status of an ICQ messaging account. This object is defined for Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.301
| Attribute | Definition |
|---|---|
| nsICQid | Contains the ICQ user ID for the entry. |
| nsICQStatusGraphic | Contains a pointer to the graphic image which indicates the ICQ account’s status. |
| nsICQStatusText | Contains the text to indicate the ICQ account’s status. |
9.77. nsLicenseUser
The nsLicenseUser object class tracks tracks licenses for servers that are licensed on a per-client basis. nsLicenseUser is intended to be used with the inetOrgPerson object class. You can manage the contents of this object class through the Users and Groups area of the Administration Server.
This object class is defined in the Administration Server schema.
Superior Class
top
OID
2.16.840.1.113730.3.2.7
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| nsLicensedFor | Identifies the server that the user is licensed to use. |
| nsLicenseEndTime | Reserved for future use. |
| nsLicenseStartTime | Reserved for future use. |
9.78. nsManagedRoleDefinition
The nsManagedRoleDefinition object class specifies the member assignments of a role to an explicit, enumerated list of members.
This object class is defined in Directory Server.
Superior Class
nsComplexRoleDefinition
OID
2.16.840.1.113730.3.2.96
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| description | Gives a text description of the entry. |
9.79. nsMessagingServerUser
nsICQpresence is an auxiliary object class that describes a messaging server user. This object class is defined for Netscape Messaging Server.
Superior Class
top
OID
2.16.840.113730.3.2.37
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes for the entry. |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| mailAccessDomain | Contains the domain from which the user can access the messaging server. |
| mailAlternateAddress | Contains secondary email addresses for the group. |
| mailAutoReplyMode | Specifies whether autoreply mode for the account is enabled. |
| mailAutoReplyText | Contains the text use for automatic reply emails. |
| mailDeliveryOption | Specifies the mail delivery mechanism to be used for the mail user. |
| mailForwardingAddress | Specifies the mail delivery mechanism to use for the mail user. |
| mailMessageStore | Specifies the location of the user’s mail box. |
| mailProgramDeliveryInfo | Specifies the commands used for programmed mail delivery. |
| mailQuota | Specifies the disk space allowed for the user’s mail box. |
| nsmsgDisallowAccess | Sets limits on the mail protocols available to the user. |
| nsmsgNumMsgQuota | Specifies the number of messages allowed for the user’s mail box. |
| nswmExtendedUserPrefs | Stores the extended preferences for the user. |
| vacationEndDate | Contains the end date for a vacation period. |
| vacationStartDate | Contains the start date for a vacation period. |
9.80. nsMSNpresence
nsMSNpresence is an auxiliary object class which defines the status of an MSN instance messaging account. This object is defined for Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.303
| Attribute | Definition |
|---|---|
| nsMSNid | Contains the MSN user ID for the entry. |
9.81. nsNestedRoleDefinition
The nsNestedRoleDefinition object class specifies one or more roles, of any type, are included as members within the role.
This object class is defined in Directory Server.
Superior Class
nsComplexRoleDefinition
OID
2.16.840.1.113730.3.2.98
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| nsRoleDn | Specifies the roles assigned to an entry. |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| description | Gives a text description of the entry. |
9.82. nsResourceRef
The nsNestedRoleDefinition object class configures a resource reference.
This object class is defined in the Administration Services.
Superior Class
top
OID
nsResourceRef-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| seeAlso | Contains a URL to another entry or site with related information. |
9.83. nsRoleDefinition
All role definition object classes inherit from the nsRoleDefinition object class.
This object class is defined by Directory Server.
Superior Class
LDAPsubentry
OID
2.16.840.1.113730.3.2.93
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| description | Gives a text description of the entry. |
9.84. nsSimpleRoleDefinition
Roles containing this object class are called simple roles because they have a deliberately limited flexibility, which makes it easy to:
- Enumerate the members of a role.
- Determine whether a given entry possesses a particular role.
- Enumerate all the roles possessed by a given entry.
- Assign a particular role to a given entry.
- Remove a particular role from a given entry.
This object class is defined by Directory Server.
Superior Class
nsRoleDefinition
OID
2.16.840.1.113730.3.2.94
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| description | Gives a text description of the entry. |
9.85. nsSNMP
This object class defines the configuration for the SNMP plug-in object used by Directory Server.
This object class is defined in Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.41
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| nsSNMPEnabled | Sets whether SNMP is enabled for the Directory Server instance. |
| Attribute | Definition |
|---|---|
| nsSNMPContact | Contains the contact information provided by the SNMP agent. |
| nsSNMPDescription | Contains a text description of the SNMP setup. |
| nsSNMPLocation | Contains the location information or configuration for the SNMP agent. |
| nsSNMPMasterHost | Contains the host name for the server where the SNMP master agent is located. |
| nsSNMPMasterPort | Contains the port to access the SNMP subagent. |
| nsSNMPOrganization | Contains the organization name or information provided by the SNMP service. |
9.86. nsTask
This object class defines the configuration for tasks performed by Directory Server.
This object class is defined for the Administrative Services.
Superior Class
top
OID
nsTask-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| nsExecRef | Contains a reference to the program which will perform the task. |
| nsHelpRef | Contains a reference to an online (HTML) help file associated with the task window. |
| nsLogSuppress | Sets whether to suppress logging for the task. |
| nsTaskLabel | Contains a label associated with the task in the Console. |
9.87. nsTaskGroup
This object class defines the information for a group of tasks in the Console.
This object class is defined for the Administrative Services.
Superior Class
top
OID
nsTaskGroup-oid
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| nsTaskLabel | Contains a label associated with the task in the Console. |
9.88. nsTopologyCustomView
This object class configures the topology views used for the profile in the Console.
This object class is defined for the Administrative Services.
Superior Class
nsCustomView
OID
nsTopologyCustomView-oid
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| nsViewConfiguration | Contains the view configuration to use in the Console. |
9.89. nsTopologyPlugin
This object class configures the topology plug-in used to set views in the Console.
This object class is defined for the Administrative Services.
Superior Class
nsAdminObject
OID
nsTopologyPlugin-oid
9.90. nsValueItem
This object class defines a value item object configuration, which is used to specify information that is dependent on the value type of an entry. A value item relates to the allowed attribute value syntax for an entry attribute, such as binary or case-sensitive string.
This object class is defined in Netscape Servers - Value Item.
Superior Class
top
OID
2.16.840.1.113730.3.2.45
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| nsValueBin | Contains information or operations related to the binary value type. |
| nsValueCES | Contains information or operations related to the case-exact string (CES) value type. |
| nsValueCIS | Contains information or operations related to the case-insensitive (CIS) value type. |
| nsValueDefault | Sets the default value type to use for an attribute or configuration parameter. |
| nsValueDescription | Gives a text description of the value item setting. |
| nsValueDN | Contains information or operations related to the DN value type. |
| nsValueFlags | Sets flags for the value item object. |
| nsValueHelpURL | Contains a reference to an online (HTML) help file associated with the value item object. |
| nsValueInt | Contains information or operations related to the integer value type. |
| nsValueSyntax | Defines the syntax to use for the value item object. |
| nsValueTel | Contains information or operations related to the telephone string value type. |
| nsValueType | Sets which value type to apply. |
9.91. nsView
This object class is used for a view entry in the directory tree.
This object class is defined in Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.304
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| nsViewFilter | Identifies the filter used by the view plug-in. |
9.92. nsYIMpresence
nsYIMpresence is an auxiliary object class which defines the status of a Yahoo instance messaging account. This object is defined for Directory Server.
Superior Class
top
OID
2.16.840.1.113730.3.2.302
| Attribute | Definition |
|---|---|
| nsYIMid | Contains the Yahoo user ID for the entry. |
| nsYIMStatusGraphic | Contains a pointer to the graphic image which indicates the Yahoo account’s status. |
| nsYIMStatusText | Contains the text to indicate the Yahoo account’s status. |
9.93. ntGroup
The ntGroup object class holds data for a group entry stored in a Windows Active Directory server. Several Directory Server attributes correspond directly to or are mapped to match Windows group attributes. When you create a new group in Directory Server that is to be synchronized with a Windows server group, Directory Server attributes are assigned to the Windows entry. These attributes may then be added, modified, or deleted in the entry through either directory service.
This object class is defined in Netscape NT Synchronization.
Superior Class
top
OID
2.16.840.1.113730.3.2.9
| Object Class | Definition |
|---|---|
| mailGroup |
Allows the |
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| ntUserDomainId | Contains the Windows domain login ID for the group account. |
| Attribute | Definition |
|---|---|
| commonName |
Gives the common name of the entry; this corresponds to the Windows |
| description |
Gives a text description of the entry; corresponds to the Windows |
| localityName | Gives the city or geographical location of the entry. |
| member | Specifies the members of the group. |
| ntGroupCreateNewGroup | Specifies whether a Windows account should be created when an entry is created in Directory Server. |
| ntGroupDeleteGroup | Specifies whether a Windows account should be deleted when an entry is deleted in Directory Server. |
| ntGroupDomainId | Gives the domain ID string for the group. |
| ntGroupType | Defines what kind of Windows domain group the entry is. |
| ntUniqueId | Contains a generated ID number used by the server for operations and identification. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| seeAlso | Contains a URL to another entry or site with related information. |
9.94. ntUser
The ntUser entry holds data for a user entry stored in a Windows Active Directory server. Several Directory Server attributes correspond directly to or are mapped to match Windows user account fields. When you create a new person entry in Directory Server that is to be synchronized with a Windows server, Directory Server attributes are assigned to Windows user account fields. These attributes may then be added, modified, or deleted in the entry through either directory service.
This object class is defined in Netscape NT Synchronization.
Superior Class
top
OID
2.16.840.1.113730.3.2.8
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName |
Gives the common name of the entry; this corresponds to the Windows |
| ntUserDomainId | Contains the Windows domain login ID for the user account. |
| Attribute | Definition |
|---|---|
| description |
Gives a text description of the entry; corresponds to the Windows |
| destinationIndicator | Gives the country and city associated with the entry; this was once required to provide public telegram service. |
| facsimileTelephoneNumber | Gives the fax number for the user. |
| givenName | Contains the person’s first name. |
| homeTelephoneNumber | Gives the person’s home phone number. |
| homePostalAddress | Gives the person’s home mailing address. |
| initials | Gives the person’s initials. |
| localityName | Gives the city or geographical location of the entry. |
| | Contains the person’s email address. |
| manager | Contains the DN (distinguished name) of the direct supervisor of the person entry. |
| mobile | Gives the person’s mobile phone number. |
| ntUserAcctExpires | Identifies when the user’s Windows account will expire. |
| ntUserCodePage | Gives the user’s code page. |
| ntUserCreateNewAccount | Specifies whether a Windows account should be created when this entry is created in Directory Server. |
| ntUserDeleteAccount | Specifies whether a Windows account should be deleted when this entry is deleted in Directory Server. |
| ntUserHomeDir | Gives the path to the user’s home directory. |
| ntUserLastLogoff | Gives the time of the user’s last logoff from the Windows server. |
| ntUserLastLogon | Gives the time of the user’s last logon to the Windows server. |
| ntUserMaxStorage | Shows the maximum disk space available to the user in the Windows server. |
| ntUserParms | Contains a Unicode string reserved for use by applications. |
| ntUserProfile | Contains the path to the user’s Windows profile. |
| ntUserScriptPath | Contains the path to the user’s Windows login script. |
| ntUserWorkstations | Contains a list of Windows workstations from which the user is allowed to log into the Windows domain. |
| organizationName | Gives the organization to which the entry belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| pagerTelephoneNumber | Gives the person’s pager number. |
| postalAddress | Contains the mailing address for the entry. |
| postalCode | Gives the postal code for the entry, such as the zip code in the United States. |
| postOfficeBox | Gives the post office box number for the entry. |
| General_Atttribute_registeredAddress | Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. |
| seeAlso | Contains a URL to another entry or site with related information. |
| surname | Gives the person’s family name or last name. |
| stateOrProvinceName | Gives the state or province where the person is located. |
| streetaddress | Gives the street name and address number for the person’s physical location. |
| telephoneNumber | Gives the telephone number for the entry. |
| teletexTerminalIdentifier | Gives the identifier for the person’s teletex terminal. |
| telexNumber | Gives the telex number associated with the entry. |
| title | Shows the person’s job title. |
| userCertificate | Stores a user’s certificate in cleartext (not used). |
| x121Address | Gives the X.121 address for the entry. |
9.95. oncRpc
The oncRpc object class defines an abstraction of an Open Network Computing Remote Procedure Call (ONC RPC). This object class is defined in RFC 2307.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.5
| Attribute | Definition |
|---|---|
| objectClass | Defines the object classes for the entry. |
| commonName | Gives the common name of the entry. |
| oncRpcNumber | Contains part of the RPC map and stores the RPC number for UNIX RPCs. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
9.96. organization
The organization attributes defines entries that represent organizations. An organization is generally assumed to be a large, relatively static grouping within a larger corporation or enterprise.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.4
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| organizationName | Gives the organization to which the entry belongs. |
| Attribute | Definition |
|---|---|
| businessCategory | Gives the type of business in which the entry is engaged. |
| description | Gives a text description of the entry. |
| destinationIndicator | Gives the country and city associated with the entry; this was once required to provide public telegram service. |
| facsimileTelephoneNumber | Contains the fax number for the entry. |
| internationalISDNNumber | Contains the ISDN number for the entry. |
| localityName | Gives the city or geographical location of the entry. |
| physicalDeliveryOfficeName | Gives a location where physical deliveries can be made. |
| postalAddress | Contains the mailing address for the entry. |
| postalCode | Gives the postal code for the entry, such as the zip code in the United States. |
| postOfficeBox | Gives the post office box number for the entry. |
| preferredDeliveryMethod | Shows the preferred method of contact or message delivery for the entry. |
| General_Atttribute_registeredAddress | Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. |
| searchGuide | Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. |
| seeAlso | Contains a URL to another entry or site with related information. |
| stateOrProvinceName | Gives the state or province where the person is located. |
| streetaddress | Gives the street name and number for the person’s physical location. |
| telephoneNumber | Gives the telephone number of the person responsible for the organization. |
| teletexTerminalIdentifier | Gives the ID for an entry’s teletex terminal. |
| telexNumber | Gives the telex number associated with the entry. |
| userPassword | Gives the password with which the entry can bind to the directory. |
| x121Address | Gives the X.121 address for the entry. |
9.97. organizationalPerson
The organizationalPerson object class defines entries for people employed or affiliated with the organization. This object class inherits the commonName and surname attributes from the person object class.
This object class is defined in RFC 2256.
Superior Class
person
OID
2.5.6.7
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| surname | Gives the person’s family name or last name. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| destinationIndicator | Gives the country and city associated with the entry; this was once required to provide public telegram service. |
| facsimileTelephoneNumber | Contains the fax number for the entry. |
| internationalISDNNumber | Contains the ISDN number for the entry. |
| localityName | Gives the city or geographical location of the entry. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| physicalDeliveryOfficeName | Gives a location where physical deliveries can be made. |
| postalAddress | Contains the mailing address for the entry. |
| postalCode | Gives the postal code for the entry, such as the zip code in the United States. |
| postOfficeBox | Gives the post office box number for the entry. |
| preferredDeliveryMethod | Shows the person’s preferred method of contact or message delivery. |
| General_Atttribute_registeredAddress | Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. |
| seeAlso | Contains a URL to another entry or site with related information. |
| stateOrProvinceName | Gives the state or province where the person is located. |
| streetaddress | Gives the street name and number for the person’s physical location. |
| telephoneNumber | Gives the telephone number for the entry. |
| teletexTerminalIdentifier | Gives the ID for an entry’s teletex terminal. |
| telexNumber | Gives the telex number associated with the entry. |
| title | Shows the person’s job title. |
| userPassword | Stores the password with which the entry can bind to the directory. |
| x121Address | Gives the X.121 address for the entry. |
9.98. organizationalRole
The organizationalRole object class is used to define entries for roles held by people within an organization.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.8
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| destinationIndicator | Gives the country and city associated with the entry; this was once required to provide public telegram service. |
| facsimileTelephoneNumber | Contains the fax number for the entry. |
| internationalISDNNumber | Contains the ISDN number for the entry. |
| localityName | Gives the city or geographical location of the entry. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| physicalDeliveryOfficeName | Gives a location where physical deliveries can be made. |
| postalAddress | Contains the mailing address for the entry. |
| postalCode | Gives the postal code for the entry, such as the zip code in the United States. |
| postOfficeBox | Gives the post office box number for the entry. |
| preferredDeliveryMethod | Shows the role’s preferred method of contact or message delivery. |
| General_Atttribute_registeredAddress | Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. |
| roleOccupant | Contains the DN (distinguished name) of the person in the role. |
| seeAlso | Contains a URL to another entry or site with related information. |
| stateOrProvinceName | Gives the state or province where the entry is located. |
| streetaddress | Gives the street name and number for the role’s physical location. |
| telephoneNumber | Gives the telephone number for the entry. |
| teletexTerminalIdentifier | Gives the ID for an entry’s teletex terminal. |
| telexNumber | Gives the telex number associated with the entry. |
| x121Address | Gives the X.121 address for the entry. |
9.99. organizationalUnit
The organizationalUnit object class defines entries that represent organizational units, generally understood to be a relatively static grouping within a larger organization.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.5
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| Attribute | Definition |
|---|---|
| businessCategory | Gives the type of business in which the entry is engaged. |
| description | Gives a text description of the entry. |
| destinationIndicator | Gives the country and city associated with the entry; this was once required to provide public telegram service. |
| facsimileTelephoneNumber | Contains the fax number for the entry. |
| internationalISDNNumber | Contains the ISDN number for the entry. |
| localityName | Gives the city or geographical location of the entry. |
| physicalDeliveryOfficeName | Gives a location where physical deliveries can be made. |
| postalAddress | Contains the mailing address for the entry. |
| postalCode | Gives the postal code for the entry, such as the zip code in the United States. |
| postOfficeBox | Gives the post office box number for the entry. |
| preferredDeliveryMethod | Gives the preferred method of being contacted. |
| General_Atttribute_registeredAddress | Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. |
| searchGuide | Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. |
| seeAlso | Contains a URL to another entry or site with related information. |
| stateOrProvinceName | Gives the state or province where the person is located. |
| streetaddress | Gives the street name and number for the role’s physical location. |
| telephoneNumber | Gives the telephone number for the entry. |
| teletexTerminalIdentifier | Gives the ID for an entry’s teletex terminal. |
| telexNumber | Gives the telex number associated with the entry. |
| userPassword | Stores the password with which the entry can bind to the directory. |
| x121Address | Gives the X.121 address for the entry. |
9.100. person
The person object class represents entries for generic people. This is the base object class for the organizationalPerson object class.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.6
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| surname | Gives the person’s family name or last name. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| seeAlso | Contains a URL to another entry or site with related information. |
| telephoneNumber | Gives the telephone number for the entry. |
| userPassword | Stores the password with which the entry can bind to the directory. |
9.101. pilotObject
The pilotObject is a subclass to allow additional attributes to be assigned to entries of all other object classes.
This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.3
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| audio | Stores a sound file in a binary format. |
| dITRedirect | Contains the DN (distinguished name) of the entry to use as a redirect for the entry. |
| info | Contains information about the entry. |
| jpegPhoto | Stores a JPG image. |
| lastModifiedBy | Gives the DN (distinguished name) of the last user which modified the document entry. |
| lastModifiedTime | Gives the time the object was most recently modified. |
| manager | Gives the DN (distinguished name) of the entry’s manager. |
| photo | Stores a photo of the document in binary format. |
| uniqueIdentifier | Distinguishes between two entries when a distinguished name has been reused. |
9.102. pilotOrganization
The pilotOrganization object class is a subclass used to add attributes to organization and organizationalUnit object class entries.
This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.20
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| organizationName | Gives the organization to which the entry belongs. |
| organizationalUnitName | Gives the organizational unit or division to which the entry belongs. |
| Attribute | Definition |
|---|---|
| buildingName | Gives the name of the building where the entry is located. |
| businessCategory | Gives the type of business in which the entry is engaged. |
| description | Gives a text description of the entry. |
| destinationIndicator | Gives the country and city associated with the entry; this was once required to provide public telegram service. |
| facsimileTelephoneNumber | Contains the fax number for the entry. |
| internationalISDNNumber | Contains the ISDN number for the entry. |
| localityName | Gives the city or geographical location of the entry. |
| physicalDeliveryOfficeName | Gives a location where physical deliveries can be made. |
| postalAddress | Contains the mailing address for the entry. |
| postalCode | Gives the postal code for the entry, such as the zip code in the United States. |
| postOfficeBox | Gives the post office box number for the entry. |
| preferredDeliveryMethod | Gives the preferred method of being contacted. |
| General_Atttribute_registeredAddress | Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. |
| searchGuide | Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. |
| seeAlso | Contains a URL to another entry or site with related information. |
| stateOrProvinceName | Gives the state or province where the person is located. |
| streetaddress | Gives the street name and address number for the person’s physical location. |
| telephoneNumber | Gives the telephone number for the entry. |
| teletexTerminalIdentifier | Gives the ID for an entry’s teletex terminal. |
| telexNumber | Gives the telex number associated with the entry. |
| userPassword | Stores the password with which the entry can bind to the directory. |
| x121Address | Gives the X.121 address for the entry. |
9.103. pkiCA
The pkiCA auxiliary object class contains required or available certificates that are configured for a certificate authority. This object class is defined in RFC 4523, which defines object classes and attributes for LDAP to use to manage X.509 certificates and related certificate services.
Superior Class
top
OID
2.5.6.22
| Attribute | Definition |
|---|---|
| authorityRevocationList | Contains a list of revoked CA certificates. |
| cACertificate | Contains a CA certificate. |
| certificateRevocationList | Contains a list of certificates that have been revoked. |
| crossCertificatePair | Contains a pair of certificates that are used to cross-certify a pair of CAs in a FBCA-style bridge CA configuration. |
9.104. pkiUser
The pkiUser auxiliary object class contains required certificates for a user or client that connects to a certificate authority or element in the public key infrastructure. This object class is defined in RFC 4523, which defines object classes and attributes for LDAP to use to manage X.509 certificates and related certificate services.
Superior Class
top
OID
2.5.6.21
| Attribute | Definition |
|---|---|
| userCertificate | Stores a user’s certificate, usually in binary form. |
9.105. posixAccount
The posixAccount object class defines network accounts which use POSIX attributes. This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.0
| Attribute | Definition |
|---|---|
| commonName | Gives the common name of the entry. |
| gidNumber | Contains a unique numeric identifier for a group entry or to identify the group for a user entry, analogous to the group number in Unix. |
| homeDirectory | Contains the path to the user’s home directory. |
| objectClass | Gives the object classes assigned to the entry. |
| userID | Gives the defined account’s user ID. |
| uidNumber | Contains a unique numeric identifier for a user entry, analogous to the user number in Unix. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| gecos | Used to determine the GECOS field for the user; this is based on a common name, with additional information embedded. |
| loginShell | Contains the path to a script that is launched automatically when a user logs into the domain. |
| userPassword | Stores the password with which the entry can bind to the directory. |
9.106. posixGroup
The posixGroup object class defines a group of network accounts which use POSIX attributes. This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
Superior Class
top
OID
1.3.6.1.1.1.2.2
| Attribute | Definition |
|---|---|
| gidNumber | Contains the path to a script that is launched automatically when a user logs into the domain. |
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| memberUID | Gives the login name of the group member; this possibly may not be the same as the member’s DN. |
| userPassword | Contains the login name of the member of a group. |
9.107. referral
The referral object class defines an object which supports LDAPv3 smart referrals. This object class is defined in LDAPv3 referrals Internet Draft.
Superior Class
top
OID
2.16.840.1.113730.3.2.6
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| Attribute | Definition |
|---|---|
| ref | Contains information for an LDAPv3 smart referral. |
9.108. residentialPerson
The residentialPerson object class manages a person’s residential information.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.10
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| localityName | Gives the city or geographical location of the entry. |
| surname | Gives the person’s family name or last name. |
| Attribute | Definition |
|---|---|
| businessCategory | Gives the type of business in which the entry is engaged. |
| description | Gives a text description of the entry. |
| destinationIndicator | Gives the country and city associated with the entry; this was once required to provide public telegram service. |
| facsimileTelephoneNumber | Contains the fax number for the entry. |
| internationalISDNNumber | Contains the ISDN number for the entry. |
| physicalDeliveryOfficeName | Gives a location where physical deliveries can be made. |
| postalAddress | Contains the mailing address for the entry. |
| postalCode | Gives the postal code for the entry, such as the zip code in the United States. |
| postOfficeBox | Gives the post office box number for the entry. |
| preferredDeliveryMethod | Shows the person’s preferred method of contact or message delivery. |
| General_Atttribute_registeredAddress | Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. |
| seeAlso | Contains a URL to another entry or site with related information. |
| stateOrProvinceName | Gives the state or province where the person is located. |
| streetaddress | Gives the street name and address number for the person’s physical location. |
| telephoneNumber | Gives the telephone number for the entry. |
| teletexTerminalIdentifier | Gives the ID for an entry’s teletex terminal. |
| telexNumber | Gives the telex number associated with the entry. |
| userPassword | Stores the password with which the entry can bind to the directory. |
| x121Address | Gives the X.121 address for the entry. |
9.109. RFC822LocalPart
The RFC822LocalPart object class defines entries that represent the local part of RFC 822 mail addresses. The directory treats this part of an RFC822 address as a domain.
This object class is defined by the Internet Directory Pilot.
Superior Class
domain
OID
0.9.2342.19200300.100.4.14
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| dc | Contains one component of a domain name. |
| Attribute | Definition |
|---|---|
| associatedName | Gives the name of an entry within the organizational directory tree which is associated with a DNS domain. |
| businessCategory | Gives the type of business in which the entry is engaged. |
| commonName | Gives the common name of the entry. |
| description | Gives a text description of the entry. |
| destinationIndicator | Gives the country and city associated with the entry; this was once required to provide public telegram service. |
| facsimileTelephoneNumber | Contains the fax number for the entry. |
| internationalISDNNumber | Contains the ISDN number for the entry. |
| localityName | Gives the city or geographical location of the entry. |
| organizationName | Gives the organization to which the account belongs. |
| physicalDeliveryOfficeName | Gives a location where physical deliveries can be made. |
| postalAddress | Contains the mailing address for the entry. |
| postalCode | Gives the postal code for the entry, such as the zip code in the United States. |
| postOfficeBox | Gives the post office box number for the entry. |
| preferredDeliveryMethod | Shows the person’s preferred method of contact or message delivery. |
| General_Atttribute_registeredAddress | Gives a postal address suitable to receive expedited documents when the recipient must verify delivery. |
| searchGuide | Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search. |
| seeAlso | Contains a URL to another entry or site with related information. |
| surname | Gives the person’s family name or last name. |
| stateOrProvinceName | Gives the state or province where the person is located. |
| streetaddress | Gives the street name and address number for the person’s physical location. |
| telephoneNumber | Gives the telephone number for the entry. |
| teletexTerminalIdentifier | Gives the identifier for the person’s teletex terminal. |
| telexNumber | Gives the telex number associated with the entry. |
| userPassword | Stores the password with which the entry can bind to the directory. |
| x121Address | Gives the X.121 address for the entry. |
9.110. room
The room object class stores information in the directory about rooms.
Superior Class
top
OID
0.9.2342.19200300.100.4.7
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| commonName | Gives the common name of the entry. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the room. |
| roomNumber | Contains the room’s number. |
| seeAlso | Contains a URL to another entry or site with related information. |
| telephoneNumber | Gives the telephone number for the entry. |
9.111. shadowAccount
The shadowAccount object class allows the LDAP directory to be used as a shadow password service. Shadow password services relocate the password files on a host to a shadow file with tightly restricted access.
This object class is defined in RFC 2307, which defines object classes and attributes to use LDAP as a network information service.
This object class is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance/schema directory.
Superior Class
top
OID
1.3.6.1.1.1.2.1
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| userID | Gives the defined account’s user ID. |
| Attribute | Definition |
|---|---|
| description | Gives a text description of the entry. |
| shadowExpire | Contains the date that the shadow account expires. |
| shadowFlag | Identifies what area in the shadow map stores the flag values. |
| shadowInactive | Sets how long the shadow account can be inactive. |
| shadowLastChange | Contains the time and date of the last modification to the shadow account. |
| shadowMax | Sets the maximum number of days that a shadow password is valid. |
| shadowMin | Sets the minimum number of days that must pass between changing the shadow password. |
| shadowWarning | Sets how may days in advance of password expiration to send a warning to the user. |
| userPassword | Stores the password with which the entry can bind to the directory. |
9.112. simpleSecurityObject
The simpleSecurityObject object class allow an entry to contain the userPassword attribute when an entry’s principal object classes do not allow a password attribute. Reserved for future use.
This object class is defined in RFC 1274.
Superior Class
top
OID
0.9.2342.19200300.100.4.19
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| userPassword | Stores the password with which the entry can bind to the directory. |
9.113. strongAuthenticationUser
The strongAuthenticationUser object class stores a user’s certificate in the directory.
This object class is defined in RFC 2256.
Superior Class
top
OID
2.5.6.15
| Attribute | Definition |
|---|---|
| objectClass | Gives the object classes assigned to the entry. |
| userCertificate | Stores a user’s certificate, usually in binary form. |
