openldap/servers/slapd/schema/nis.schema

223 lines
7.4 KiB
Plaintext
Raw Normal View History

1999-09-09 06:52:19 +08:00
# $OpenLDAP$
2003-11-29 04:24:54 +08:00
## This work is part of OpenLDAP Software <http://www.openldap.org/>.
##
## Copyright 1998-2003 The OpenLDAP Foundation.
## All rights reserved.
##
## Redistribution and use in source and binary forms, with or without
## modification, are permitted only as authorized by the OpenLDAP
## Public License.
##
## A copy of this license is available in the file LICENSE in the
## top-level directory of the distribution or, alternatively, at
## <http://www.OpenLDAP.org/license.html>.
# Definitions from RFC2307 (Experimental)
# An Approach for Using LDAP as a Network Information Service
1999-06-15 20:40:46 +08:00
2000-09-22 16:53:51 +08:00
# Depends upon core.schema and cosine.schema
1999-06-15 20:40:46 +08:00
# Note: The definitions in RFC2307 are given in syntaxes closely related
# to those in RFC2252, however, some liberties are taken that are not
# supported by RFC2252. This file has been written following RFC2252
# strictly.
# OID Base is iso(1) org(3) dod(6) internet(1) directory(1) nisSchema(1).
# i.e. nisSchema in RFC2307 is 1.3.6.1.1.1
#
# Syntaxes are under 1.3.6.1.1.1.0 (two new syntaxes are defined)
# validaters for these syntaxes are incomplete, they only
# implement printable string validation (which is good as the
# common use of these syntaxes violates the specification).
1999-06-15 20:40:46 +08:00
# Attribute types are under 1.3.6.1.1.1.1
# Object classes are under 1.3.6.1.1.1.2
# Attribute Type Definitions
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.0 NAME 'uidNumber'
1999-06-15 20:40:46 +08:00
DESC 'An integer uniquely identifying a user in an administrative domain'
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.1 NAME 'gidNumber'
1999-06-15 20:40:46 +08:00
DESC 'An integer uniquely identifying a group in an administrative domain'
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.2 NAME 'gecos'
1999-06-15 20:40:46 +08:00
DESC 'The GECOS field; the common name'
EQUALITY caseIgnoreIA5Match
2000-07-01 05:26:43 +08:00
SUBSTR caseIgnoreIA5SubstringsMatch
1999-06-15 20:40:46 +08:00
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.3 NAME 'homeDirectory'
1999-06-15 20:40:46 +08:00
DESC 'The absolute path to the home directory'
EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.4 NAME 'loginShell'
1999-06-15 20:40:46 +08:00
DESC 'The path to the login shell'
EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.5 NAME 'shadowLastChange'
1999-06-15 20:40:46 +08:00
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.6 NAME 'shadowMin'
1999-06-15 20:40:46 +08:00
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.7 NAME 'shadowMax'
1999-06-15 20:40:46 +08:00
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.8 NAME 'shadowWarning'
1999-06-15 20:40:46 +08:00
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.9 NAME 'shadowInactive'
1999-06-15 20:40:46 +08:00
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.10 NAME 'shadowExpire'
1999-06-15 20:40:46 +08:00
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.11 NAME 'shadowFlag'
1999-06-15 20:40:46 +08:00
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.12 NAME 'memberUid'
1999-06-15 20:40:46 +08:00
EQUALITY caseExactIA5Match
2000-07-01 05:26:43 +08:00
SUBSTR caseExactIA5SubstringsMatch
1999-06-15 20:40:46 +08:00
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.13 NAME 'memberNisNetgroup'
1999-06-15 20:40:46 +08:00
EQUALITY caseExactIA5Match
2000-07-01 05:26:43 +08:00
SUBSTR caseExactIA5SubstringsMatch
1999-06-15 20:40:46 +08:00
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.14 NAME 'nisNetgroupTriple'
1999-06-15 20:40:46 +08:00
DESC 'Netgroup triple'
SYNTAX 1.3.6.1.1.1.0.0 )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.15 NAME 'ipServicePort'
1999-06-15 20:40:46 +08:00
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.16 NAME 'ipServiceProtocol'
1999-06-15 20:40:46 +08:00
SUP name )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.17 NAME 'ipProtocolNumber'
1999-06-15 20:40:46 +08:00
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.18 NAME 'oncRpcNumber'
1999-06-15 20:40:46 +08:00
EQUALITY integerMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.19 NAME 'ipHostNumber'
DESC 'IP address'
1999-06-15 20:40:46 +08:00
EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.20 NAME 'ipNetworkNumber'
DESC 'IP network'
1999-06-15 20:40:46 +08:00
EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.21 NAME 'ipNetmaskNumber'
DESC 'IP netmask'
1999-06-15 20:40:46 +08:00
EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SINGLE-VALUE )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.22 NAME 'macAddress'
DESC 'MAC address'
1999-06-15 20:40:46 +08:00
EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.23 NAME 'bootParameter'
1999-06-15 20:40:46 +08:00
DESC 'rpc.bootparamd parameter'
SYNTAX 1.3.6.1.1.1.0.1 )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.24 NAME 'bootFile'
1999-06-15 20:40:46 +08:00
DESC 'Boot image name'
EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.26 NAME 'nisMapName'
1999-06-15 20:40:46 +08:00
SUP name )
1999-10-14 05:57:44 +08:00
attributetype ( 1.3.6.1.1.1.1.27 NAME 'nisMapEntry'
1999-06-15 20:40:46 +08:00
EQUALITY caseExactIA5Match
2000-05-17 02:11:50 +08:00
SUBSTR caseExactIA5SubstringsMatch
1999-06-15 20:40:46 +08:00
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{1024} SINGLE-VALUE )
# Object Class Definitions
objectclass ( 1.3.6.1.1.1.2.0 NAME 'posixAccount' SUP top AUXILIARY
DESC 'Abstraction of an account with POSIX attributes'
MUST ( cn $ uid $ uidNumber $ gidNumber $ homeDirectory )
MAY ( userPassword $ loginShell $ gecos $ description ) )
objectclass ( 1.3.6.1.1.1.2.1 NAME 'shadowAccount' SUP top AUXILIARY
DESC 'Additional attributes for shadow passwords'
MUST uid
MAY ( userPassword $ shadowLastChange $ shadowMin $
shadowMax $ shadowWarning $ shadowInactive $
shadowExpire $ shadowFlag $ description ) )
objectclass ( 1.3.6.1.1.1.2.2 NAME 'posixGroup' SUP top STRUCTURAL
DESC 'Abstraction of a group of accounts'
MUST ( cn $ gidNumber )
MAY ( userPassword $ memberUid $ description ) )
objectclass ( 1.3.6.1.1.1.2.3 NAME 'ipService' SUP top STRUCTURAL
DESC 'Abstraction an Internet Protocol service'
1999-06-15 20:40:46 +08:00
MUST ( cn $ ipServicePort $ ipServiceProtocol )
MAY ( description ) )
objectclass ( 1.3.6.1.1.1.2.4 NAME 'ipProtocol' SUP top STRUCTURAL
DESC 'Abstraction of an IP protocol'
1999-06-15 20:40:46 +08:00
MUST ( cn $ ipProtocolNumber $ description )
MAY description )
objectclass ( 1.3.6.1.1.1.2.5 NAME 'oncRpc' SUP top STRUCTURAL
DESC 'Abstraction of an ONC/RPC binding'
1999-06-15 20:40:46 +08:00
MUST ( cn $ oncRpcNumber $ description )
MAY description )
objectclass ( 1.3.6.1.1.1.2.6 NAME 'ipHost' SUP top AUXILIARY
DESC 'Abstraction of a host, an IP device'
1999-06-15 20:40:46 +08:00
MUST ( cn $ ipHostNumber )
MAY ( l $ description $ manager ) )
objectclass ( 1.3.6.1.1.1.2.7 NAME 'ipNetwork' SUP top STRUCTURAL
DESC 'Abstraction of an IP network'
1999-06-15 20:40:46 +08:00
MUST ( cn $ ipNetworkNumber )
MAY ( ipNetmaskNumber $ l $ description $ manager ) )
objectclass ( 1.3.6.1.1.1.2.8 NAME 'nisNetgroup' SUP top STRUCTURAL
DESC 'Abstraction of a netgroup'
1999-06-15 20:40:46 +08:00
MUST cn
MAY ( nisNetgroupTriple $ memberNisNetgroup $ description ) )
objectclass ( 1.3.6.1.1.1.2.9 NAME 'nisMap' SUP top STRUCTURAL
DESC 'A generic abstraction of a NIS map'
MUST nisMapName
MAY description )
objectclass ( 1.3.6.1.1.1.2.10 NAME 'nisObject' SUP top STRUCTURAL
DESC 'An entry in a NIS map'
MUST ( cn $ nisMapEntry $ nisMapName )
MAY description )
objectclass ( 1.3.6.1.1.1.2.11 NAME 'ieee802Device' SUP top AUXILIARY
DESC 'A device with a MAC address'
1999-06-15 20:40:46 +08:00
MAY macAddress )
objectclass ( 1.3.6.1.1.1.2.12 NAME 'bootableDevice' SUP top AUXILIARY
DESC 'A device with boot parameters'
1999-06-15 20:40:46 +08:00
MAY ( bootFile $ bootParameter ) )