# # BEGIN COPYRIGHT BLOCK # Copyright 2001 Sun Microsystems, Inc. # Portions copyright 1999, 2001-2003 Netscape Communications Corporation. # All rights reserved. # END COPYRIGHT BLOCK # # slapd.oc.conf for Netscape Directory Server 4.1 # # DO NOT MODIFY! # # The ObjectClasses in this file are Standard ObjectClasses and are expected # to be present in Directory Server 4.1 unchanged. Modifing this file may # cause interoperability problems. # # User Defined ObjectClasses should be added by selecting # Schema | Create ObjectClasses from the Admin Server. # # User Defined ObjectClasses are saved in slapd.user_oc.conf # # All ObjectClasses are viewable in the cn=schema entry under objectclasses. # # The format of this file is: # # objectclass ObjectClassName # [ oid ObjectIdentifier ] # [ superior ParentObjectClass ] # [ requires ] # [ allows ] # objectclass top oid 2.5.6.0 requires objectClass allows aci objectclass alias oid 2.5.6.1 superior top requires aliasedObjectName objectclass country oid 2.5.6.2 superior top requires c allows searchGuide, description objectclass locality oid 2.5.6.3 superior top allows description, l, searchGuide, seeAlso, st, street objectclass organization oid 2.5.6.4 superior top requires o allows businessCategory, description, destinationIndicator, facsimileTelephoneNumber, internationaliSDNNumber, l, physicalDeliveryOfficeName, postOfficeBox, postalAddress, postalCode, preferredDeliveryMethod, registeredAddress, searchGuide, seeAlso, st, street, telephoneNumber, teletexTerminalIdentifier, telexNumber, userPassword, x121Address objectclass organizationalUnit oid 2.5.6.5 superior top requires ou allows businessCategory, description, destinationIndicator, facsimileTelephoneNumber, internationaliSDNNumber, l, physicalDeliveryOfficeName, postOfficeBox, postalAddress, postalCode, preferredDeliveryMethod, registeredAddress, searchGuide, seeAlso, st, street, telephoneNumber, teletexTerminalIdentifier, telexNumber, userPassword, x121Address objectclass person oid 2.5.6.6 superior top requires sn, cn allows description, seeAlso, telephoneNumber, userPassword objectclass organizationalPerson oid 2.5.6.7 superior person allows destinationIndicator, facsimileTelephoneNumber, internationaliSDNNumber, l, ou, physicalDeliveryOfficeName, postOfficeBox, postalAddress, postalCode, preferredDeliveryMethod, registeredAddress, st, street, teletexTerminalIdentifier, telexNumber, title, x121Address # The certificate attributes include all subtypes, such as ';binary'. # objectclass inetOrgPerson oid 2.16.840.1.113730.3.2.2 superior organizationalPerson allows audio, businessCategory, carLicense, departmentNumber, displayName, employeeType, employeeNumber, givenName, homePhone, homePostalAddress, initials, jpegPhoto, labeledURI, manager, mobile, pager, photo, preferredLanguage, mail, o, roomNumber, secretary, uid, x500uniqueIdentifier, userCertificate, userSMimeCertificate, userPKCS12 objectclass ntUser oid 2.16.840.1.113730.3.2.8 superior top requires ntUserDomainId allows description, l, ou, seeAlso, ntUserPriv, ntUserHomeDir, ntUserComment, ntUserFlags, ntUserScriptPath, ntUserAuthFlags, ntUserUsrComment, ntUserParms, ntUserWorkstations, ntUserLastLogon, ntUserLastLogoff, ntUserAcctExpires, ntUserMaxStorage, ntUserUnitsPerWeek, ntUserLogonHours, ntUserBadPwCount, ntUserNumLogons, ntUserLogonServer, ntUserCountryCode, ntUserCodePage, ntUserUniqueId, ntUserPrimaryGroupId, ntUserProfile, ntUserHomeDirDrive, ntUserPasswordExpired, ntUserCreateNewAccount, ntUserDeleteAccount objectclass ntGroup oid 2.16.840.1.113730.3.2.9 superior top requires ntGroupDomainId allows description, l, ou, seeAlso, ntGroupId, ntGroupAttributes, ntGroupCreateNewGroup, ntGroupDeleteGroup, ntGroupType objectclass organizationalRole oid 2.5.6.8 superior top requires cn allows description, destinationIndicator, facsimileTelephoneNumber, internationaliSDNNumber, l, ou, physicalDeliveryOfficeName, postOfficeBox, postalAddress, postalCode, preferredDeliveryMethod, registeredAddress, roleOccupant, seeAlso, st, street, telephoneNumber, teletexTerminalIdentifier, telexNumber, x121Address objectclass groupOfNames oid 2.5.6.9 superior top requires cn allows member, businessCategory, description, o, ou, owner, seeAlso objectclass groupOfUniqueNames oid 2.5.6.17 superior top requires cn allows uniqueMember, businessCategory, description, o, ou, owner, seeAlso objectclass groupOfCertificates oid 2.16.840.1.113730.3.2.31 superior top requires cn allows memberCertificateDescription, businessCategory, description, o, ou, owner, seeAlso objectclass groupOfURLs oid 2.16.840.1.113730.3.2.33 superior top requires cn allows memberURL, businessCategory, description, o, ou, owner, seeAlso objectclass residentialPerson oid 2.5.6.10 superior person requires l allows businessCategory, destinationIndicator, facsimileTelephoneNumber, internationaliSDNNumber, l, physicalDeliveryOfficeName, postOfficeBox, postalAddress, postalCode, preferredDeliveryMethod, registeredAddress, st, street, teletexTerminalIdentifier, telexNumber, x121Address objectclass applicationProcess oid 2.5.6.11 superior top requires cn allows description, l, ou, seeAlso objectclass LDAPServer oid 2.16.840.1.113730.3.2.35 superior top requires cn allows description, l, ou, seeAlso, generation, changeLogMaximumAge, changeLogMaximumSize objectclass LDAPReplica oid 2.16.840.1.113730.3.2.36 superior top requires cn allows description, l, ou, seeAlso, replicaRoot, replicaHost, replicaPort, replicaBindDn, replicaCredentials, replicaBindMethod, replicaUseSSL, replicaUpdateSchedule, replicaUpdateReplayed, replicaUpdateFailedAt, replicaBeginORC, replicaNickname, replicaEntryFilter, replicatedAttributeList, replicaCFUpdated, replicaAbandonedChanges, replicaLastRelevantChange objectclass applicationEntity oid 2.5.6.12 superior top requires presentationAddress, cn allows description, l, o, ou, seeAlso, supportedApplicationContext objectclass dSA oid 2.5.6.13 superior applicationEntity allows knowledgeInformation objectclass device oid 2.5.6.14 superior top requires cn allows description, l, o, ou, owner, seeAlso, serialNumber # This userCertificate attribute includes all subtypes, such as ';binary'. objectclass strongAuthenticationUser oid 2.5.6.15 superior top requires userCertificate # These attributes include all subtypes, such as ';binary'. objectclass certificationAuthority oid 2.5.6.16 superior top requires cACertificate allows authorityRevocationList, certificateRevocationList, crossCertificatePair objectclass pilotObject oid 0.9.2342.19200300.100.4.3 superior top allows audio, dITRedirect, info, jpegPhoto, lastModifiedBy, lastModifiedTime, manager, photo, uniqueIdentifier objectclass newPilotPerson oid 0.9.2342.19200300.100.4.4 superior person allows businessCategory, drink, homePhone, homePostalAddress, janetMailbox, mail, mailPreferenceOption, mobile, organizationalStatus, otherMailbox, pager, personalSignature, personalTitle, preferredDeliveryMethod, roomNumber, secretary, textEncodedORAddress, uid, userClass objectclass account oid 0.9.2342.19200300.100.4.5 superior top requires uid allows description, host, l, o, ou, seeAlso objectclass document oid 0.9.2342.19200300.100.4.6 superior pilotObject requires documentIdentifier allows abstract, authorCN, authorSN, cn, description, documentAuthor, documentLocation, documentPublisher, documentStore, documentTitle, documentVersion, keywords, l, o, obsoletedByDocument, obsoletesDocument, ou, seeAlso, subject, updatedByDocument, updatesDocument objectclass room oid 0.9.2342.19200300.100.4.7 superior top requires cn allows description, roomNumber, seeAlso, telephoneNumber objectclass documentSeries oid 0.9.2342.19200300.100.4.9 superior top requires cn allows description, l, o, ou, seeAlso, telephoneNumber objectclass domain oid 0.9.2342.19200300.100.4.13 superior top requires dc allows associatedName, businessCategory, description, destinationIndicator, facsimileTelephoneNumber, internationaliSDNNumber, l, manager, o, physicalDeliveryOfficeName, postOfficeBox, postalAddress, postalCode, preferredDeliveryMethod, registeredAddress, searchGuide, seeAlso, st, street, telephoneNumber, teletexTerminalIdentifier, telexNumber, userPassword, x121Address objectclass RFC822localPart oid 0.9.2342.19200300.100.4.14 superior domain allows cn, sn objectclass DNSDomain oid 0.9.2342.19200300.100.4.15 superior domain allows dNSRecord objectclass domainRelatedObject oid 0.9.2342.19200300.100.4.17 superior top requires associatedDomain objectclass friendlyCountry oid 0.9.2342.19200300.100.4.18 superior country requires co objectclass simpleSecurityObject oid 0.9.2342.19200300.100.4.19 superior top requires userPassword objectclass pilotOrganization oid pilotOrganization-OID superior top requires ou, o allows buildingName, businessCategory, description, destinationIndicator, facsimileTelephoneNumber, internationaliSDNNumber, l, physicalDeliveryOfficeName, postOfficeBox, postalAddress, postalCode, preferredDeliveryMethod, registeredAddress, searchGuide, seeAlso, st, street, telephoneNumber, teletexTerminalIdentifier, telexNumber, userPassword, x121Address objectclass labeledURIObject oid 1.3.6.1.4.1.250.3.15 superior top allows labeledURI objectclass cacheObject oid 1.3.6.1.4.1.250.3.18 superior top allows ttl # objectclasses below added since Netscape Directory Server 1.01 objectclass netscapeServer oid 2.16.840.1.113730.3.2.10 superior top requires cn allows description, serverRoot, serverProductName, serverVersionNumber, installationTimeStamp, administratorContactInfo, userpassword, adminURL, serverHostName objectclass nsLicenseUser oid 2.16.840.1.113730.3.2.7 superior top allows nsLicensedFor, nsLicenseStartTime, nsLicenseEndTime objectclass changeLogEntry oid 2.16.840.1.113730.3.2.1 superior top requires targetdn, changeTime, changenumber, changeType allows changes, newrdn, deleteoldrdn, newsuperior, filterinfo objectclass cirReplicaSource oid 2.16.840.1.113730.3.2.11 requires cn, objectClass allows cirReplicaRoot, cirHost, cirPort, cirBindDN, cirUsePersistentSearch, cirUseSSL, cirBindCredentials, cirLastUpdateApplied, cirUpdateSchedule, cirSyncInterval, cirUpdateFailedAt, cirBeginORC, replicaNickname, replicaEntryFilter, replicatedAttributeList objectclass referral superior top oid 2.16.840.1.113730.3.2.6 allows ref objectclass passwordObject oid 2.16.840.1.113730.3.2.12 requires objectClass allows passwordExpirationTime, passwordExpWarned, passwordRetryCount, retryCountResetTime, accountUnlockTime, passwordHistory, passwordAllowChangeTime objectclass passwordPolicy oid 2.16.840.1.113730.3.2.13 requires objectClass allows passwordMaxAge, passwordExp, passwordMinLength, passwordKeepHistory, passwordInHistory, passwordChange, passwordWarning, passwordLockout, passwordMaxFailure, passwordResetDuration, passwordUnlock, passwordLockoutDuration, passwordCheckSyntax, passwordMustChange, passwordStorageScheme, passwordMinAge, passwordResetFailureCount objectclass glue oid 2.16.840.1.113730.3.2.30 superior top objectclass netscapeMachineData oid 2.16.840.1.113730.3.2.32 superior top objectclass dcObject oid 1.3.6.1.4.1.1466.344 superior top requires dc objectclass subschema oid 2.5.20.1 superior top allows cn, dITStructureRules, nameForms, dITContentRules, objectClasses, attributeTypes, matchingRules, matchingRuleUse objectclass vlvSearch oid 2.16.840.1.113730.3.2.38 superior top requires cn, vlvBase, vlvScope, vlvFilter allows multiLineDescription objectclass nsslapdConfig oid 2.16.840.1.113730.3.2.39 superior top allows cn objectclass directoryServerFeature oid 2.16.840.1.113730.3.2.40 superior top allows oid, cn, multiLineDescription objectclass nsslapdPlugin oid 2.16.840.1.113730.3.2.41 superior top requires cn, nsslapd-pluginPath, nsslapd-pluginInitFunc, nsslapd-pluginType, nsslapd-pluginId, nsslapd-pluginVersion, nsslapd-pluginVendor, nsslapd-pluginDescription, nsslapd-pluginEnabled, nsslapd-backend objectclass vlvIndex oid 2.16.840.1.113730.3.2.42 superior top requires cn, vlvSort allows vlvEnabled, vlvUses objectclass nsSNMP OID 2.16.840.1.113730.3.2.43 superior top requires cn, nsSNMPEnabled allows nsSNMPOrganization, nsSNMPLocation, nsSNMPContact, nsSNMPDescription, nsSNMPMasterHost, nsSNMPMasterPort objectclass nsIndex oid 2.16.840.1.113730.3.2.44 superior top requires cn, nsSystemIndex allows description, nsIndexType, nsMatchingRule # # ojectclass from rfc2307 # # posixAccount is an auxiliary class. You may use account as a structural # class. objectclass posixAccount oid 1.3.6.1.1.1.2.0 superior top requires objectClass, cn, uid, uidNumber, gidNumber, homeDirectory allows userPassword, loginShell, gecos, description # posixAccount is an auxiliary class. You may use account as a structural # class. objectclass shadowAccount oid 1.3.6.1.1.1.2.1 superior top requires objectClass, uid allows userPassword, shadowLastChange, shadowMin, shadowMax, shadowWarning, shadowInactive, shadowExpire, shadowFlag, description objectclass posixGroup oid 1.3.6.1.1.1.2.2 requires objectClass, cn, gidNumber allows userPassword, memberUid, description objectclass ipService oid 1.3.6.1.1.1.2.3 requires objectClass, cn, ipServicePort, ipServiceProtocol allows description objectclass ipProtocol oid 1.3.6.1.1.1.2.4 requires objectClass, cn, ipProtocolNumber allows description objectclass oncRpc oid 1.3.6.1.1.1.2.5 requires objectClass, cn, oncRpcNumber allows description # ipHost is a subclass of device objectclass ipHost oid 1.3.6.1.1.1.2.6 requires objectClass, ipHostNumber, cn allows manager, description, l, o, ou, owner, seeAlso, serialNumber objectclass ipNetwork oid 1.3.6.1.1.1.2.7 requires objectClass, ipNetworkNumber, cn allows ipNetmaskNumber, manager, l, description objectclass nisNetgroup oid 1.3.6.1.1.1.2.8 requires objectClass, cn allows nisNetgroupTriple, memberNisNetgroup, description # the automount class is deprecated. Because cn is case insensitive # on matches, you may need to use another object class to unique # names. objectclass automount oid 1.3.6.1.1.1.2.9 requires objectClass, cn, automountInformation allows description # nisObject represents entries in NIS maps. objectclass nisObject oid 1.3.6.1.1.1.2.10 requires objectClass, cn, nisMapEntry, nisMapName allows description # ieee802Device is a subclass of device objectclass ieee802Device oid 1.3.6.1.1.1.2.11 requires objectClass, cn allows macAddress, description, l, o, ou, owner, seeAlso, serialNumber # bootableDevice is a subclass of device objectclass bootableDevice oid 1.3.6.1.1.1.2.12 requires objectClass, cn allows bootFile, bootParameter, description, l, o, ou, owner, seeAlso, serialNumber # nisMap is a structural class which may be used as a container # for instances of nisObject. objectclass nisMap oid 1.3.6.1.1.1.2.13 requires objectClass, nisMapName allows description