Schema fnspeAccount

From NMS
Revision as of 14:15, 16 July 2009 by Vokacpet (Talk | contribs)

Jump to: navigation, search
# LDAP schema for CTU FNSPE
#
# Copyright (c) 2007 JAS
#
# Author: Petr Vokac <vokac at fjfi.cvut.cz>
#
# $Id$
#
#
# OID CTU FNSPE prefix: 1.3.6.1.4.1.4993.16
# .0   Reserved (at any level)
# .1    SNMP
# .2    LDAP Elements
#      .1      Syntaxes
#      .2      Matching Rules
#      .3      Attribute Types
#      .4      Object Classes
#      .5      Supported Feature
#      .9      Protocol Mechanism
#      .10     Control
#      .11     Extended Operaions
#   ...
# OID CTU FNSPE LDAP Attribute Types
# .1           CTU attributes
# .2           CTU FNSPE attributes
# .2.1         CTU FNSPE attributes - Account
# .2.1.1       CTU FNSPE attributes - Account - User
# .2.1.2       CTU FNSPE attributes - Account - Eduroam
# .2.1.3       CTU FNSPE attributes - Account - WiFi
# .2.2 CTU FNSPE attributes - Mail
#
#
# To import this schema you can use command:
#   ldifde -v -i -k -f your_modified_schema_file.ldif -c DC=TARGET_DOMAIN DC=fjfi,DC=cvut,DC=cz
#



#
# CTU attributes (1.3.6.1.4.1.4993.16.2.3.1)
#

dn: CN=ctuPersonalId,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: ctuPersonalId
adminDisplayName: ctuPersonalId
adminDescription: CTU personal Id
attributeId: 1.3.6.1.4.1.4993.16.2.3.1.1
attributeSyntax: 2.5.5.9   # A 32-bit number or enumeration.
omSyntax: 2                # (2 .. number, 10 .. enumeration)
#attributeSyntax: 2.5.5.6  # numeric string, may be it is
#omSyntax: 18              # more close to Usermap exchPersonalId
isSingleValued: TRUE
systemOnly: FALSE
searchFlags: 1
attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==

#dn: CN=ctuGovAssignedNumber,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
#changetype: add
#objectClass: attributeSchema
#ldapDisplayName: ctuGovAssignedNumber
#adminDisplayName: ctuGovAssignedNumber
#adminDescription: Number assigned by the government
#attributeId: 1.3.6.1.4.1.4993.16.2.3.1.2
#attributeSyntax: 2.5.5.5
#omSyntax: 22
#isSingleValued: TRUE
#systemOnly: FALSE
#searchFlags: 1
#attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==

dn: CN=ctuUsername,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: ctuUsername
adminDisplayName: ctuUsername
adminDescription: CTU username (Usermap/KOS username)
attributeId: 1.3.6.1.4.1.4993.16.2.3.1.3
attributeSyntax: 2.5.5.12
omSyntax: 64
isSingleValued: FALSE
systemOnly: FALSE
searchFlags: 1
attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==



#
# CTU FNSPE attributes (1.3.6.1.4.1.4993.16.2.3.2)
#

# Account (1.3.6.1.4.1.4993.16.2.3.2.1)

# User (1.3.6.1.4.1.4993.16.2.3.2.1.1)

dn: CN=fnspeStatus,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeStatus
adminDisplayName: fnspeStatus
adminDescription: FNSPE Account status (new, active, kill, zombie, dead, unknown)
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.1.1
attributeSyntax: 2.5.5.12
omSyntax: 64
isSingleValued: TRUE
systemOnly: FALSE
attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==

dn: CN=fnspeStatusTimestamp,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeStatusTimestamp
adminDisplayName: fnspeStatusTimestamp
adminDescription: Timestamp of last change of status
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.1.2
attributeSyntax: 2.5.5.16
omSyntax: 65
isSingleValued: TRUE
systemOnly: FALSE
attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==

#dn: CN=fnspeForceGroup,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
#changetype: add
#objectClass: attributeSchema
#ldapDisplayName: fnspeForceGroup
#adminDisplayName: fnspeForceGroup
#adminDescription: Force this account to be memberOf all defined groups
#attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.1.3
#attributeSyntax: 2.5.5.12
#omSyntax: 64
#isSingleValued: FALSE
#systemOnly: FALSE
#attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==

# Eduroam (1.3.6.1.4.1.4993.16.2.3.2.1.2)

dn: CN=fnspeEduroamPassword,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeEduroamPassword
adminDisplayName: fnspeEduroamPassword
adminDescription: RFC2256/2307: password of user for eduroam project
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.2.1
attributeSyntax: 2.5.5.10
omSyntax: 4
isSingleValued: TRUE
systemOnly: FALSE
attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==

dn: CN=fnspeEduroamDisabled,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeEduroamDisabled
adminDisplayName: fnspeEduroamDisabled
adminDescription: Flag for disabled FNSPE Eduroam account
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.2.2
attributeSyntax: 2.5.5.8
omSyntax: 1
isSingleValued: TRUE
systemOnly: FALSE
attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==

dn: CN=fnspeEduroamExpire,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeEduroamExpire
adminDisplayName: fnspeEduroamExpire
adminDescription: Date of expiration for this account (empty means never)
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.2.3
attributeSyntax: 2.5.5.16
omSyntax: 65
isSingleValued: TRUE
systemOnly: FALSE
attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==

dn: CN=fnspeEduroamLocal,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeEduroamLocal
adminDisplayName: fnspeEduroamLocal
adminDescription: Flag this account has only access to local realm
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.2.4
attributeSyntax: 2.5.5.8
omSyntax: 1
isSingleValued: TRUE
systemOnly: FALSE
attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==

# WiFi (1.3.6.1.4.1.4993.16.2.3.2.1.3)

dn: CN=fnspeWifiPassword,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeWifiPassword
adminDisplayName: fnspeWifiPassword
adminDescription: RFC2256/2307: password of user for local wifi access
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.3.1
attributeSyntax: 2.5.5.10
omSyntax: 4
isSingleValued: TRUE
systemOnly: FALSE
attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==

dn: CN=fnspeWifiDisabled,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeWifiDisabled
adminDisplayName: fnspeWifiDisabled
adminDescription: Flag for disabled FNSPE Wifi account
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.3.2
attributeSyntax: 2.5.5.8
omSyntax: 1
isSingleValued: TRUE
systemOnly: FALSE
attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==

dn: CN=fnspeWifiExpire,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: attributeSchema
ldapDisplayName: fnspeWifiExpire
adminDisplayName: fnspeWifiExpire
adminDescription: Date of expiration for this account (empty means never)
attributeId: 1.3.6.1.4.1.4993.16.2.3.2.1.3.3
attributeSyntax: 2.5.5.16
omSyntax: 65
isSingleValued: TRUE
systemOnly: FALSE
attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==


# Mail (1.3.6.1.4.1.4993.16.2.3.2.2)

#dn: CN=fnspeMailAddresses,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
#changetype: add
#objectClass: attributeSchema
#ldapDisplayName: fnspeMailAddresses
#adminDisplayName: fnspeMailAddresses
#adminDescription: RFC822 addresses for mail filtering personalization
#attributeId: 1.3.6.1.4.1.4993.16.2.3.2.2.1
#attributeSyntax: 2.5.5.12
#omSyntax: 64
#isSingleValued: FALSE
#systemOnly: FALSE
#searchFlags: 1
#attributeSecurityGUID:: VAGN5Pi80RGHAgDAT7lgUA==



# -----------------------------------------------------------------------
#   Reload the schema cache to pick up altered classes and attributes
# -----------------------------------------------------------------------
dn:
changetype: ntdsSchemaModify
add: schemaUpdateNow
schemaUpdateNow: 1
-



dn: CN=fnspeAccount,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN
changetype: add
objectClass: classSchema
ldapDisplayName: fnspeAccount
adminDisplayName: fnspeAccount
adminDescription: CTU FNSPE user account
governsID: 1.3.6.1.4.1.4993.16.2.4.1
objectClassCategory: 3
rDNAttID: cn
subClassOf: top
mustContain: cn
mayContain: ctuPersonalId
#mayContain: ctuGovAssignedNumber
mayContain: ctuUsername
mayContain: fnspeStatus
mayContain: fnspeStatusTimestamp
#mayContain: fnspeForceGroup
mayContain: fnspeEduroamPassword
mayContain: fnspeEduroamDisabled
mayContain: fnspeEduroamExpire
mayContain: fnspeEduroamLocal
mayContain: fnspeWifiPassword
mayContain: fnspeWifiDisabled
mayContain: fnspeWifiExpire
#mayContain: fnspeMailAddresses
showInAdvancedViewOnly: FALSE
defaultHidingValue: FALSE
systemOnly: FALSE
defaultObjectCategory: CN=fnspeAccount,CN=Schema,CN=Configuration,DC=TARGET_DOMAIN



# -----------------------------------------------------------------------
#   Reload the schema cache to pick up altered classes and attributes
# -----------------------------------------------------------------------
dn:
changetype: ntdsSchemaModify
add: schemaUpdateNow
schemaUpdateNow: 1
-