Difference between revisions of "Schema fnspeAccount"

From NMS
Jump to: navigation, search
(New page: # LDAP schema for CTU FNSPE # # Copyright (c) 2007 JAS # # Author: Petr Vokac <vokac@kmlinux.fjfi.cvut.cz> # # $Id$ # # # OID CTU FNSPE prefix: 1.3.6.1.4.1.4993.16 # .0 Reserv...)
 
Line 115: Line 115:
 
  systemOnly: FALSE
 
  systemOnly: FALSE
 
   
 
   
  dn: CN=fnspeForceGroup,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
+
  #dn: CN=fnspeForceGroup,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
  changetype: add
+
  #changetype: add
  objectClass: attributeSchema
+
  #objectClass: attributeSchema
  ldapDisplayName: fnspeForceGroup
+
  #ldapDisplayName: fnspeForceGroup
  adminDisplayName: fnspeForceGroup
+
  #adminDisplayName: fnspeForceGroup
  adminDescription: Force this account to be memberOf all defined groups
+
  #adminDescription: Force this account to be memberOf all defined groups
  attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.1.3
+
  #attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.1.3
  attributeSyntax: 2.5.5.12
+
  #attributeSyntax: 2.5.5.12
  omSyntax: 64
+
  #omSyntax: 64
  isSingleValued: FALSE
+
  #isSingleValued: FALSE
  systemOnly: FALSE
+
  #systemOnly: FALSE
 
   
 
   
 
  # Eduroam (1.3.6.1.4.1.4993.16.2.3.2.1.2)
 
  # Eduroam (1.3.6.1.4.1.4993.16.2.3.2.1.2)
Line 218: Line 218:
 
  mustContain: cn
 
  mustContain: cn
 
  mayContain: ctuPersonalId
 
  mayContain: ctuPersonalId
 +
#mayContain: ctuGovAssignedNumber
 
  mayContain: ctuUsername
 
  mayContain: ctuUsername
 
  mayContain: fnspeStatus
 
  mayContain: fnspeStatus
 
  mayContain: fnspeStatusTimestamp
 
  mayContain: fnspeStatusTimestamp
  mayContain: fnspeForceGroup
+
  #mayContain: fnspeForceGroup
 
  mayContain: fnspeEduroamPassword
 
  mayContain: fnspeEduroamPassword
 
  mayContain: fnspeEduroamDisabled
 
  mayContain: fnspeEduroamDisabled
 
  mayContain: fnspeEduroamLocal
 
  mayContain: fnspeEduroamLocal
 
  mayContain: fnspeEduroamExpire
 
  mayContain: fnspeEduroamExpire
 +
#mayContain: fnspeMailAddresses
 
  showInAdvancedViewOnly: FALSE
 
  showInAdvancedViewOnly: FALSE
 
  defaultHidingValue: FALSE
 
  defaultHidingValue: FALSE

Revision as of 23:30, 15 September 2007

# LDAP schema for CTU FNSPE
#
# Copyright (c) 2007 JAS
#
# Author: Petr Vokac <vokac@kmlinux.fjfi.cvut.cz>
#
# $Id$
#
#
# OID CTU FNSPE prefix: 1.3.6.1.4.1.4993.16
# .0   Reserved (at any level)
# .1    SNMP
# .2    LDAP Elements
#      .1      Syntaxes
#      .2      Matching Rules
#      .3      Attribute Types
#      .4      Object Classes
#      .5      Supported Feature
#      .9      Protocol Mechanism
#      .10     Control
#      .11     Extended Operaions
#   ...
# OID CTU FNSPE LDAP Attribute Types
# .1           CTU attributes
# .2           CTU FNSPE attributes
# .2.1         CTU FNSPE attributes - Account
# .2.1.1       CTU FNSPE attributes - Account - User
# .2.1.2       CTU FNSPE attributes - Account - Eduroam
# .2.2 CTU FNSPE attributes - Mail
#
#
# To import this schema you can use command:
#   ldifde -v -i -k -f your_modified_schema_file.ldif -c DC=TARGET_DOMAIN DC=fjfi,DC=cvut,DC=cz
#



#
# CTU attributes (1.3.6.1.4.1.4993.16.2.3.1)
#

dn: CN=ctuPersonalId,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: ctuPersonalId
adminDisplayName: ctuPersonalId
adminDescription: CTU personal Id
attributeId: 1.3.6.1.4.1.4993.16.2.3.1.1
attributeSyntax: 2.5.5.9
omSyntax: 2
#attributeSyntax: 2.5.5.6  # numeric string, may be it is
#omSyntax: 18              # more close to Usermap exchPersonalId
isSingleValued: TRUE
systemOnly: FALSE
searchFlags: 1

#dn: CN=ctuGovAssignedNumber,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
#changetype: add
#objectClass: attributeSchema
#ldapDisplayName: ctuGovAssignedNumber
#adminDisplayName: ctuGovAssignedNumber
#adminDescription: Number assigned by the government
#attributeId: 1.3.6.1.4.1.4993.16.2.3.1.2
#attributeSyntax: 2.5.5.5
#omSyntax: 22
#isSingleValued: TRUE
#systemOnly: FALSE
#searchFlags: 1

dn: CN=ctuUsername,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: ctuUsername
adminDisplayName: ctuUsername
adminDescription: CTU username (Usermap/KOS username)
attributeId: 1.3.6.1.4.1.4993.16.2.3.1.3
attributeSyntax: 2.5.5.12
omSyntax: 64
isSingleValued: FALSE
systemOnly: FALSE
searchFlags: 1



#
# CTU FNSPE attributes (1.3.6.1.4.1.4993.16.2.3.2)
#

# Account (1.3.6.1.4.1.4993.16.2.3.2.1)

# User (1.3.6.1.4.1.4993.16.2.3.2.1.1)

dn: CN=fnspeStatus,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeStatus
adminDisplayName: fnspeStatus
adminDescription: FNSPE Account status (new, active, kill, zombie, dead, unknown)
attributeId: 1.3.6.1.4.1.4993.16.2.3.1.3
attributeSyntax: 2.5.5.12
omSyntax: 64
isSingleValued: TRUE
systemOnly: FALSE

dn: CN=fnspeStatusTimestamp,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeStatusTimestamp
adminDisplayName: fnspeStatusTimestamp
adminDescription: Timestamp of last change of status
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.1.2
attributeSyntax: 2.5.5.16
omSyntax: 65
isSingleValued: TRUE
systemOnly: FALSE

#dn: CN=fnspeForceGroup,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
#changetype: add
#objectClass: attributeSchema
#ldapDisplayName: fnspeForceGroup
#adminDisplayName: fnspeForceGroup
#adminDescription: Force this account to be memberOf all defined groups
#attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.1.3
#attributeSyntax: 2.5.5.12
#omSyntax: 64
#isSingleValued: FALSE
#systemOnly: FALSE

# Eduroam (1.3.6.1.4.1.4993.16.2.3.2.1.2)

dn: CN=fnspeEduroamPassword,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeEduroamPassword
adminDisplayName: fnspeEduroamPassword
adminDescription: RFC2256/2307: password of user for eduroam project
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.2.1
attributeSyntax: 2.5.5.10
omSyntax: 4
isSingleValued: TRUE
systemOnly: FALSE

dn: CN=fnspeEduroamDisabled,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeEduroamDisabled
adminDisplayName: fnspeEduroamDisabled
adminDescription: Flag for disabled FNSPE Eduroam account
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.2.2
attributeSyntax: 2.5.5.8
omSyntax: 1
isSingleValued: TRUE
systemOnly: FALSE

dn: CN=fnspeEduroamLocal,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeEduroamLocal
adminDisplayName: fnspeEduroamLocal
adminDescription: Flag this account has only access to local realm
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.2.3
attributeSyntax: 2.5.5.8
omSyntax: 1
isSingleValued: TRUE
systemOnly: FALSE

dn: CN=fnspeEduroamExpire,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeEduroamExpire
adminDisplayName: fnspeEduroamExpire
adminDescription: Date of expiration for this account (empty means never)
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.2.4
attributeSyntax: 2.5.5.16
omSyntax: 65
isSingleValued: TRUE
systemOnly: FALSE


# Mail (1.3.6.1.4.1.4993.16.2.3.2.2)

#dn: CN=fnspeMailAddresses,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
#changetype: add
#objectClass: attributeSchema
#ldapDisplayName: fnspeMailAddresses
#adminDisplayName: fnspeMailAddresses
#adminDescription: RFC822 addresses for mail filtering personalization
#attributeId: 1.3.6.1.4.1.4993.16.2.3.2.2.1
#attributeSyntax: 2.5.5.12
#omSyntax: 64
#isSingleValued: FALSE
#systemOnly: FALSE
#searchFlags: 1



# -----------------------------------------------------------------------
#   Reload the schema cache to pick up altered classes and attributes
# -----------------------------------------------------------------------
dn:
changetype: ntdsSchemaModify
add: schemaUpdateNow
schemaUpdateNow: 1
-



dn: CN=fnspeAccount,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: classSchema
ldapDisplayName: fnspeAccount
adminDisplayName: fnspeAccount
adminDescription: CTU FNSPE user account
governsID: 1.3.6.1.4.1.4993.16.2.4.1
objectClassCategory: 3
rDNAttID: cn
subClassOf: top
mustContain: cn
mayContain: ctuPersonalId
#mayContain: ctuGovAssignedNumber
mayContain: ctuUsername
mayContain: fnspeStatus
mayContain: fnspeStatusTimestamp
#mayContain: fnspeForceGroup
mayContain: fnspeEduroamPassword
mayContain: fnspeEduroamDisabled
mayContain: fnspeEduroamLocal
mayContain: fnspeEduroamExpire
#mayContain: fnspeMailAddresses
showInAdvancedViewOnly: FALSE
defaultHidingValue: FALSE
systemOnly: FALSE
defaultObjectCategory: CN=fnspeAccount,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN



# -----------------------------------------------------------------------
#   Reload the schema cache to pick up altered classes and attributes
# -----------------------------------------------------------------------
dn:
changetype: ntdsSchemaModify
add: schemaUpdateNow
schemaUpdateNow: 1
-