| 9 |
- |
1 |
# $OpenLDAP$
|
|
|
2 |
## This work is part of OpenLDAP Software <http://www.openldap.org/>.
|
|
|
3 |
##
|
|
|
4 |
## Copyright 1998-2014 The OpenLDAP Foundation.
|
|
|
5 |
## All rights reserved.
|
|
|
6 |
##
|
|
|
7 |
## Redistribution and use in source and binary forms, with or without
|
|
|
8 |
## modification, are permitted only as authorized by the OpenLDAP
|
|
|
9 |
## Public License.
|
|
|
10 |
##
|
|
|
11 |
## A copy of this license is available in the file LICENSE in the
|
|
|
12 |
## top-level directory of the distribution or, alternatively, at
|
|
|
13 |
## <http://www.OpenLDAP.org/license.html>.
|
|
|
14 |
#
|
|
|
15 |
# DUA schema from draft-joslin-config-schema (a work in progress)
|
|
|
16 |
#
|
|
|
17 |
# This file was automatically generated from duaconf.schema; see that file
|
|
|
18 |
# for complete references.
|
|
|
19 |
#
|
|
|
20 |
dn: cn=duaconf,cn=schema,cn=config
|
|
|
21 |
objectClass: olcSchemaConfig
|
|
|
22 |
cn: duaconf
|
|
|
23 |
olcObjectIdentifier: {0}DUAConfSchemaOID 1.3.6.1.4.1.11.1.3.1
|
|
|
24 |
olcAttributeTypes: {0}( DUAConfSchemaOID:1.0 NAME 'defaultServerList' DESC 'De
|
|
|
25 |
fault LDAP server host address used by a DUA' EQUALITY caseIgnoreMatch SYNTAX
|
|
|
26 |
1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
|
|
|
27 |
olcAttributeTypes: {1}( DUAConfSchemaOID:1.1 NAME 'defaultSearchBase' DESC 'De
|
|
|
28 |
fault LDAP base DN used by a DUA' EQUALITY distinguishedNameMatch SYNTAX 1.3.
|
|
|
29 |
6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )
|
|
|
30 |
olcAttributeTypes: {2}( DUAConfSchemaOID:1.2 NAME 'preferredServerList' DESC '
|
|
|
31 |
Preferred LDAP server host addresses to be used by a DUA' EQUALITY
|
|
|
32 |
caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
|
|
|
33 |
olcAttributeTypes: {3}( DUAConfSchemaOID:1.3 NAME 'searchTimeLimit' DESC 'Maxi
|
|
|
34 |
mum time in seconds a DUA should allow for a search to complete' E
|
|
|
35 |
QUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
|
|
|
36 |
olcAttributeTypes: {4}( DUAConfSchemaOID:1.4 NAME 'bindTimeLimit' DESC 'Maximu
|
|
|
37 |
m time in seconds a DUA should allow for the bind operation to com
|
|
|
38 |
plete' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALU
|
|
|
39 |
E )
|
|
|
40 |
olcAttributeTypes: {5}( DUAConfSchemaOID:1.5 NAME 'followReferrals' DESC 'Tell
|
|
|
41 |
s DUA if it should follow referrals returned by a DSA search resul
|
|
|
42 |
t' EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )
|
|
|
43 |
olcAttributeTypes: {6}( DUAConfSchemaOID:1.16 NAME 'dereferenceAliases' DESC '
|
|
|
44 |
Tells DUA if it should dereference aliases' EQUALITY booleanMatch SYNTAX 1.3.
|
|
|
45 |
6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )
|
|
|
46 |
olcAttributeTypes: {7}( DUAConfSchemaOID:1.6 NAME 'authenticationMethod' DESC
|
|
|
47 |
'A keystring which identifies the type of authentication method us
|
|
|
48 |
ed to contact the DSA' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.1
|
|
|
49 |
21.1.15 SINGLE-VALUE )
|
|
|
50 |
olcAttributeTypes: {8}( DUAConfSchemaOID:1.7 NAME 'profileTTL' DESC 'Time to l
|
|
|
51 |
ive, in seconds, before a client DUA should re-read this configura
|
|
|
52 |
tion profile' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SING
|
|
|
53 |
LE-VALUE )
|
|
|
54 |
olcAttributeTypes: {9}( DUAConfSchemaOID:1.14 NAME 'serviceSearchDescriptor' D
|
|
|
55 |
ESC 'LDAP search descriptor list used by a DUA' EQUALITY caseExactMatch SYNTA
|
|
|
56 |
X 1.3.6.1.4.1.1466.115.121.1.15 )
|
|
|
57 |
olcAttributeTypes: {10}( DUAConfSchemaOID:1.9 NAME 'attributeMap' DESC 'Attrib
|
|
|
58 |
ute mappings used by a DUA' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.14
|
|
|
59 |
66.115.121.1.26 )
|
|
|
60 |
olcAttributeTypes: {11}( DUAConfSchemaOID:1.10 NAME 'credentialLevel' DESC 'Id
|
|
|
61 |
entifies type of credentials a DUA should use when binding to the
|
|
|
62 |
LDAP server' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
|
|
|
63 |
SINGLE-VALUE )
|
|
|
64 |
olcAttributeTypes: {12}( DUAConfSchemaOID:1.11 NAME 'objectclassMap' DESC 'Obj
|
|
|
65 |
ectclass mappings used by a DUA' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4
|
|
|
66 |
.1.1466.115.121.1.26 )
|
|
|
67 |
olcAttributeTypes: {13}( DUAConfSchemaOID:1.12 NAME 'defaultSearchScope' DESC
|
|
|
68 |
'Default search scope used by a DUA' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6
|
|
|
69 |
.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
|
|
|
70 |
olcAttributeTypes: {14}( DUAConfSchemaOID:1.13 NAME 'serviceCredentialLevel' D
|
|
|
71 |
ESC 'Identifies type of credentials a DUA should use when binding
|
|
|
72 |
to the LDAP server for a specific service' EQUALITY caseIgnoreIA5M
|
|
|
73 |
atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
|
|
|
74 |
olcAttributeTypes: {15}( DUAConfSchemaOID:1.15 NAME 'serviceAuthenticationMeth
|
|
|
75 |
od' DESC 'Authentication method used by a service of the DUA' EQUALITY caseIg
|
|
|
76 |
noreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
|
|
|
77 |
olcObjectClasses: {0}( DUAConfSchemaOID:2.5 NAME 'DUAConfigProfile' DESC 'Abst
|
|
|
78 |
raction of a base configuration for a DUA' SUP top STRUCTURAL MUST cn MAY ( d
|
|
|
79 |
efaultServerList $ preferredServerList $ defaultSearchBase $ defaultSearchSco
|
|
|
80 |
pe $ searchTimeLimit $ bindTimeLimit $ credentialLevel $ authenticationMethod
|
|
|
81 |
$ followReferrals $ dereferenceAliases $ serviceSearchDescriptor $ serviceCr
|
|
|
82 |
edentialLevel $ serviceAuthenticationMethod $ objectclassMap $ attributeMap $
|
|
|
83 |
profileTTL ) )
|