# Licensed to the Apache Software Foundation (ASF) under one # or more contributor license agreements. See the NOTICE file # distributed with this work for additional information # regarding copyright ownership. The ASF licenses this file # to you under the Apache License, Version 2.0 (the # "License"); you may not use this file except in compliance # with the License. You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, # software distributed under the License is distributed on an # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY # KIND, either express or implied. See the License for the # specific language governing permissions and limitations # under the License. # ============================================================================= # Apache Schema # ============================================================================= # # +------------------------------+----------------------------------+ # | Apache ObjectClass OID | name | # +------------------------------+----------------------------------+ # | 1.3.6.1.4.1.18060.0.4.1.3.1 | prefNode | # | 1.3.6.1.4.1.18060.0.4.1.3.3 | apacheServiceConfiguration | # | 1.3.6.1.4.1.18060.0.4.1.3.4 | apacheFactoryConfiguration | # | 1.3.6.1.4.1.18060.0.4.1.3.5 | apacheCatalogEntry | # | 1.3.6.1.4.1.18060.0.4.1.3.6 | windowsFile | # | 1.3.6.1.4.1.18060.0.4.1.3.7 | unixFile | # | 1.3.6.1.4.1.18060.0.4.1.3.8 | javaClass | # | 1.3.6.1.4.1.18060.0.4.1.3.9 | apacheSubschema | # | 1.3.6.1.4.1.18060.0.4.1.3.10 | schemaModificationAttributes | # | 1.3.6.1.4.1.18060.0.4.1.3.11 | tlsKeyInfo | # | 1.3.6.1.4.1.18060.0.4.1.3.12 | changeLogEvent | # | 1.3.6.1.4.1.18060.0.4.1.3.13 | tag | # | 1.3.6.1.4.1.18060.0.4.1.5.3 | storedProcUnit | # | 1.3.6.1.4.1.18060.0.4.1.5.5 | javaStoredProcUnit | # | 1.3.6.1.4.1.18060.0.4.1.5.8 | javaxScriptStoredProcUnit | # | 2.5.17.1 | accessControlSubentry | # +------------------------------+----------------------------------+ # # +------------------------------+----------------------------------+ # | Apache AttributeType OID | name | # +------------------------------+----------------------------------+ # | 1.3.6.1.4.1.18060.0.4.1.2.1 | apacheNdn | # | 1.3.6.1.4.1.18060.0.4.1.2.2 | apacheUpdn | # | 1.3.6.1.4.1.18060.0.4.1.2.3 | apacheExistance | # | 1.3.6.1.4.1.18060.0.4.1.2.4 | apacheOneLevel | # | 1.3.6.1.4.1.18060.0.4.1.2.5 | apacheOneAlias | # | 1.3.6.1.4.1.18060.0.4.1.2.6 | apacheSubAlias | # | 1.3.6.1.4.1.18060.0.4.1.2.7 | apacheAlias | # | 1.3.6.1.4.1.18060.0.4.1.2.8 | prefNodeName | # | 1.3.6.1.4.1.18060.0.4.1.2.9 | apacheSamType | # | 1.3.6.1.4.1.18060.0.4.1.2.10 | autonomousAreaSubentry | # | 1.3.6.1.4.1.18060.0.4.1.2.11 | accessControlSubentries | # | 1.3.6.1.4.1.18060.0.4.1.2.43 | apacheSubLevel | # | 1.3.6.1.4.1.18060.0.4.1.2.15 | apacheServicePid | # | 1.3.6.1.4.1.18060.0.4.1.2.16 | apacheServiceFactoryPid | # | 1.3.6.1.4.1.18060.0.4.1.2.17 | apacheCatalogEntryName | # | 1.3.6.1.4.1.18060.0.4.1.2.18 | apacheCatalogEntryBaseDn | # | 1.3.6.1.4.1.18060.0.4.1.2.19 | windowsFilePath | # | 1.3.6.1.4.1.18060.0.4.1.2.20 | unixFilePath | # | 1.3.6.1.4.1.18060.0.4.1.2.21 | fullyQualifiedJavaClassName | # | 1.3.6.1.4.1.18060.0.4.1.2.22 | javaClassByteCode | # | 1.3.6.1.4.1.18060.0.4.1.2.23 | classLoaderDefaultSearchContext | # | 1.3.6.1.4.1.18060.0.4.1.2.25 | prescriptiveTriggerSpecification | # | 1.3.6.1.4.1.18060.0.4.1.2.26 | entryTriggerSpecification | # | 1.3.6.1.4.1.18060.0.4.1.2.27 | triggerExecutionSubentries | # | 1.3.6.1.4.1.18060.0.4.1.2.29 | entryUUID | # | 1.3.6.1.4.1.18060.0.4.1.2.30 | entryCSN | # | 1.3.6.1.4.1.18060.0.4.1.2.31 | entryDeleted | # | 1.3.6.1.4.1.18060.0.4.1.2.32 | comparators | # | 1.3.6.1.4.1.18060.0.4.1.2.33 | normalizers | # | 1.3.6.1.4.1.18060.0.4.1.2.34 | syntaxCheckers | # | 1.3.6.1.4.1.18060.0.4.1.2.35 | schemaModifyTimestamp | # | 1.3.6.1.4.1.18060.0.4.1.2.36 | schemaModifiersName | # | 1.3.6.1.4.1.18060.0.4.1.2.37 | subschemaSubentryName | # | 1.3.6.1.4.1.18060.0.4.1.2.38 | privateKeyFormat | # | 1.3.6.1.4.1.18060.0.4.1.2.39 | keyAlgorithm | # | 1.3.6.1.4.1.18060.0.4.1.2.40 | privateKey | # | 1.3.6.1.4.1.18060.0.4.1.2.41 | publicKeyFormat | # | 1.3.6.1.4.1.18060.0.4.1.2.42 | publicKey | # | 1.3.6.1.4.1.18060.0.4.1.2.44 | revisions | # | 1.3.6.1.4.1.18060.0.4.1.2.45 | changeTime | # | 1.3.6.1.4.1.18060.0.4.1.2.46 | changeType | # | 1.3.6.1.4.1.18060.0.4.1.2.47 | rev, eventId | # | 1.3.6.1.4.1.18060.0.4.1.2.48 | committer | # | 1.3.6.1.4.1.18060.0.4.1.2.49 | changeLogContext | # | 1.3.6.1.4.1.18060.0.4.1.5.1 | storedProcLangId | # | 1.3.6.1.4.1.18060.0.4.1.5.2 | storedProcUnitName | # | 1.3.6.1.4.1.18060.0.4.1.5.4 | javaByteCode | # | 1.3.6.1.4.1.18060.0.4.1.5.6 | javaxScriptLangId | # | 1.3.6.1.4.1.18060.0.4.1.5.7 | javaxScriptCode | # | 2.5.24.4 | prescriptiveACI | # | 2.5.24.5 | entryACI | # | 2.5.24.6 | subentryACI | # +------------------------------+----------------------------------+ # ============================================================================= attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.1 NAME 'apacheNdn' DESC 'Index attribute DN whose values are normalized based on schema' EQUALITY exactDnAsStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.2 NAME 'apacheUpdn' DESC 'Index attribute for DN whose values are NOT normalized in any way' EQUALITY exactDnAsStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.3 NAME 'apacheExistance' DESC 'Index attribute used to track the existence of attributes' SUP name EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.4 NAME 'apacheOneLevel' DESC 'Index attribute used to track one level searches' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.5 NAME 'apacheOneAlias' DESC 'Index attribute used to track single level aliases' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.6 NAME 'apacheSubAlias' DESC 'Index attribute used to track sub level aliases' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.43 NAME 'apacheSubLevel' DESC 'Index attribute used to track sub level searches' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.7 NAME 'apacheAlias' DESC 'asdf' SUP distinguishedName EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.9 NAME 'apacheSamType' DESC 'Single-use Authentication Mechanism type/vendor code' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.8 NAME 'prefNodeName' DESC 'Attribute to describe the name of a Java Preferences API node' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.10 NAME 'autonomousAreaSubentry' DESC 'Used to track a subentry associated with an autonomousArea' SUP distinguishedName EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.11 NAME 'accessControlSubentries' DESC 'Used to track a subentry associated with access control areas' SUP distinguishedName EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 NO-USER-MODIFICATION USAGE directoryOperation ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.1 NAME 'prefNode' SUP top STRUCTURAL MUST prefNodeName ) #attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.12 NAME 'prescriptiveACI' attributetype ( 2.5.24.4 NAME 'prescriptiveACI' DESC 'Access control information that applies to a set of entries' EQUALITY directoryStringFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.1 USAGE directoryOperation ) # was attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.13 NAME 'entryACI' ... attributetype ( 2.5.24.5 NAME 'entryACI' DESC 'Access control information that applies to a single entry' EQUALITY directoryStringFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.1 USAGE directoryOperation ) #attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.14 NAME 'subentryACI' attributetype ( 2.5.24.6 NAME 'subentryACI' DESC 'Access control information that applies to a single subentry' EQUALITY directoryStringFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.1 USAGE directoryOperation ) objectclass ( 2.5.17.1 NAME 'accessControlSubentry' AUXILIARY MUST prescriptiveACI ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.15 NAME 'apacheServicePid' DESC 'A string up to 256 characters in length' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.16 NAME 'apacheServiceFactoryPid' DESC 'A string up to 256 characters in length' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} SINGLE-VALUE ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.3 NAME 'apacheServiceConfiguration' SUP top STRUCTURAL MUST ( cn $ apacheServicePid ) MAY ( apacheServiceFactoryPid ) ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.4 NAME 'apacheFactoryConfiguration' SUP top STRUCTURAL MUST ( cn $ apacheServicePid ) ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.17 NAME 'apacheCatalogEntryName' DESC 'A string up to 256 characters in length' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.18 NAME 'apacheCatalogEntryBaseDn' DESC 'A string up to 256 characters in length' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} SINGLE-VALUE ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.5 NAME 'apacheCatalogEntry' SUP top STRUCTURAL MUST ( cn $ apacheCatalogEntryBaseDn ) MAY ( apacheCatalogEntryName ) ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.19 NAME 'windowsFilePath' DESC 'A windows file path where case does not make a difference' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.20 NAME 'unixFilePath' DESC 'A UNIX file path where case does make a difference' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.6 NAME 'windowsFile' SUP top STRUCTURAL MUST ( windowsFilePath ) ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.7 NAME 'unixFile' SUP top STRUCTURAL MUST ( unixFilePath ) ) # =============== # SP related # =============== attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.21 NAME 'fullyQualifiedJavaClassName' DESC 'The fully qualified name for a (Java) class' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.22 NAME 'javaClassByteCode' DESC 'The actual byte code for a (Java) class' SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 SINGLE-VALUE ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.8 NAME 'javaClass' SUP top STRUCTURAL MUST ( fullyQualifiedJavaClassName $ javaClassByteCode ) ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.23 NAME 'classLoaderDefaultSearchContext' DESC 'The default search context for the Ldap Class Loader' SUP distinguishedName EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) # New SP related schema attributetype ( 1.3.6.1.4.1.18060.0.4.1.5.1 NAME 'storedProcLangId' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.5.2 NAME 'storedProcUnitName' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.5.3 NAME 'storedProcUnit' SUP top ABSTRACT MUST ( storedProcLangId $ storedProcUnitName ) ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.5.4 NAME 'javaByteCode' SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 SINGLE-VALUE ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.5.5 NAME 'javaStoredProcUnit' SUP storedProcUnit STRUCTURAL MUST ( javaByteCode ) ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.5.6 NAME 'javaxScriptLangId' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.5.7 NAME 'javaxScriptCode' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.5.8 NAME 'javaxScriptStoredProcUnit' SUP storedProcUnit STRUCTURAL MUST ( javaxScriptLangId $ javaxScriptCode ) ) # =============== # Trigger related # =============== attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.25 NAME 'prescriptiveTriggerSpecification' DESC 'Trigger specification that applies to a set of entries' EQUALITY directoryStringFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.59 USAGE directoryOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.26 NAME 'entryTriggerSpecification' DESC 'Trigger specification that applies to a single entry' EQUALITY directoryStringFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.59 USAGE directoryOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.27 NAME 'triggerExecutionSubentries' DESC 'Used to track subentries associated with a trigger area which an entry falls under' SUP distinguishedName EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 NO-USER-MODIFICATION USAGE directoryOperation ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.2.28 NAME 'triggerExecutionSubentry' DESC 'Used to track a subentry associated with trigger areas' AUXILIARY MUST prescriptiveTriggerSpecification ) # ====================== # End of Trigger related # ====================== # ====================== # Mitosis Related # ====================== attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.29 NAME 'entryUUID' DESC 'LCUP/LDUP: UUID of the entry' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{64} SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.30 NAME 'entryCSN' DESC 'LCUP/LDUP: change sequence number of the entry' EQUALITY octetStringMatch ORDERING octetStringOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{64} SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.31 NAME 'entryDeleted' DESC 'Whether or not an entry has been deleted.' EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation ) # ====================== # End of Mitosis Related # ====================== # ======================= # Schema Subentry Related # ======================= # | 1.3.6.1.4.1.18060.0.4.1.2.32 | comparators | # | 1.3.6.1.4.1.18060.0.4.1.2.33 | normalizers | # | 1.3.6.1.4.1.18060.0.4.1.2.34 | syntaxCheckers | # # These operational attributes need a syntax! # # --- comparators AttributeType ----------------------------------- attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.32 NAME 'comparators' DESC 'A multivalued comparator description attribute' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 USAGE directoryOperation ) # --- normalizers AttributeType ----------------------------------- attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.33 NAME 'normalizers' DESC 'A multivalued normalizer description attribute' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 USAGE directoryOperation ) # --- syntaxCheckers AttributeType ----------------------------------- attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.34 NAME 'syntaxCheckers' DESC 'A multivalued syntaxCheckers description attribute' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 USAGE directoryOperation ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.9 NAME 'apacheSubschema' DESC 'RFC2252 extension for controlling subschema (sub)entry in ApacheDS' SUP subschema AUXILIARY MAY ( comparators $ normalizers $ syntaxCheckers ) ) # =========================== # END Schema Subentry Related # =========================== # ============================================= # Schema Subentry Modification Attribute Schema # ============================================= # | 1.3.6.1.4.1.18060.0.4.1.2.35 | schemaModifyTimestamp | # | 1.3.6.1.4.1.18060.0.4.1.2.36 | schemaModifiersName | # | 1.3.6.1.4.1.18060.0.4.1.2.37 | subschemaSubentryName | attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.35 NAME 'schemaModifyTimestamp' DESC 'time which schema was modified' SUP modifyTimestamp ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.36 NAME 'schemaModifiersName' DESC 'the DN of the modifier of the schema' SUP modifiersName ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.37 NAME 'subschemaSubentryName' DESC 'the DN of the schema subentry the modification info corresponds to' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{32768} ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.10 NAME 'schemaModificationAttributes' DESC 'a special entry tracking schema modification attributes' SUP top STRUCTURAL MUST ( cn $ subschemaSubentryName $ schemaModifyTimestamp $ schemaModifiersName ) ) # ================================================= # END Schema Subentry Modification Attribute Schema # ================================================= # ============================================= # SSL/TLS Key Management for LDAPS and StartTLS # ============================================= attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.38 NAME 'privateKeyFormat' DESC 'The format of the private key used for TLS' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.41 NAME 'publicKeyFormat' DESC 'The format of the public key used for TLS' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.39 NAME 'keyAlgorithm' DESC 'The algorithm used for the key/pair used by the server for TLS' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.40 NAME 'privateKey' DESC 'The private key material used for TLS' SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 SINGLE-VALUE ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.42 NAME 'publicKey' DESC 'The public key material used for TLS' SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 SINGLE-VALUE ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.11 NAME 'tlsKeyInfo' SUP top AUXILIARY MUST ( privateKeyFormat $ keyAlgorithm $ privateKey $ publicKeyFormat $ publicKey ) ) # ================================================= # END SSL/TLS Key Management for LDAPS and StartTLS # ================================================= # ================================================= # Start Schema for ChangeLog # ================================================= # a special attributetype to hold the revision numbers attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.44 NAME 'revisions' DESC 'Revision numbers used in change log' EQUALITY integerMatch ORDERING integerOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.45 NAME 'changeTime' DESC 'represents the time when the change event occurred' EQUALITY generalizedTimeMatch ORDERING generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.46 NAME 'changeType' DESC 'type of change operation' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.44 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.47 NAME ( 'rev' 'eventId' ) DESC 'the unique sequential id for the event (a.k.a revision number)' EQUALITY integerMatch ORDERING integerOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.48 NAME 'committer' DESC 'the principal committing the change' EQUALITY exactDnAsStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.12 NAME 'changeLogEvent' DESC 'represents change events' STRUCTURAL MUST ( changeTime $ changeType $ rev $ committer ) ) objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.13 NAME 'tag' DESC 'represents a Tag in change log' STRUCTURAL MUST ( rev ) MAY ( description ) ) attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.49 NAME 'changeLogContext' DESC 'tells about the changelog context suffix' SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE USAGE dSAOperation ) # ================================================= # End Schema for ChangeLog # =================================================