Subversion Repositories configs

Rev

Details | Last modification | View Log | RSS feed

Rev Author Line No. Line
9 - 1 
# OpenLDAP X.509 PMI schema
2 
# $OpenLDAP$
3 
## This work is part of OpenLDAP Software <http://www.openldap.org/>.
4 
##
5 
## Copyright 1998-2014 The OpenLDAP Foundation.
6 
## All rights reserved.
7 
##
8 
## Redistribution and use in source and binary forms, with or without
9 
## modification, are permitted only as authorized by the OpenLDAP
10 
## Public License.
11 
##
12 
## A copy of this license is available in the file LICENSE in the
13 
## top-level directory of the distribution or, alternatively, at
14 
## <http://www.OpenLDAP.org/license.html>.
15 
#
16 
## Portions Copyright (C) The Internet Society (1997-2006).
17 
## All Rights Reserved.
18 
#
19 
# Includes LDAPv3 schema items from:
20 
# ITU X.509 (08/2005)
21 
#
22 
# This file was automatically generated from pmi.schema; see that file
23 
# for complete references.
24 
#
25 
dn: cn=pmi,cn=schema,cn=config
26 
objectClass: olcSchemaConfig
27 
cn: pmi
28 
olcObjectIdentifier: {0}id-oc-pmiUser 2.5.6.24
29 
olcObjectIdentifier: {1}id-oc-pmiAA 2.5.6.25
30 
olcObjectIdentifier: {2}id-oc-pmiSOA 2.5.6.26
31 
olcObjectIdentifier: {3}id-oc-attCertCRLDistributionPts 2.5.6.27
32 
olcObjectIdentifier: {4}id-oc-privilegePolicy 2.5.6.32
33 
olcObjectIdentifier: {5}id-oc-pmiDelegationPath 2.5.6.33
34 
olcObjectIdentifier: {6}id-oc-protectedPrivilegePolicy 2.5.6.34
35 
olcObjectIdentifier: {7}id-at-attributeCertificate 2.5.4.58
36 
olcObjectIdentifier: {8}id-at-attributeCertificateRevocationList 2.5.4.59
37 
olcObjectIdentifier: {9}id-at-aACertificate 2.5.4.61
38 
olcObjectIdentifier: {10}id-at-attributeDescriptorCertificate 2.5.4.62
39 
olcObjectIdentifier: {11}id-at-attributeAuthorityRevocationList 2.5.4.63
40 
olcObjectIdentifier: {12}id-at-privPolicy 2.5.4.71
41 
olcObjectIdentifier: {13}id-at-role 2.5.4.72
42 
olcObjectIdentifier: {14}id-at-delegationPath 2.5.4.73
43 
olcObjectIdentifier: {15}id-at-protPrivPolicy 2.5.4.74
44 
olcObjectIdentifier: {16}id-at-xMLPrivilegeInfo 2.5.4.75
45 
olcObjectIdentifier: {17}id-at-xMLPprotPrivPolicy 2.5.4.76
46 
olcObjectIdentifier: {18}id-mr 2.5.13
47 
olcObjectIdentifier: {19}id-mr-attributeCertificateMatch id-mr:42
48 
olcObjectIdentifier: {20}id-mr-attributeCertificateExactMatch id-mr:45
49 
olcObjectIdentifier: {21}id-mr-holderIssuerMatch id-mr:46
50 
olcObjectIdentifier: {22}id-mr-authAttIdMatch id-mr:53
51 
olcObjectIdentifier: {23}id-mr-roleSpecCertIdMatch id-mr:54
52 
olcObjectIdentifier: {24}id-mr-basicAttConstraintsMatch id-mr:55
53 
olcObjectIdentifier: {25}id-mr-delegatedNameConstraintsMatch id-mr:56
54 
olcObjectIdentifier: {26}id-mr-timeSpecMatch id-mr:57
55 
olcObjectIdentifier: {27}id-mr-attDescriptorMatch id-mr:58
56 
olcObjectIdentifier: {28}id-mr-acceptableCertPoliciesMatch id-mr:59
57 
olcObjectIdentifier: {29}id-mr-delegationPathMatch id-mr:61
58 
olcObjectIdentifier: {30}id-mr-sOAIdentifierMatch id-mr:66
59 
olcObjectIdentifier: {31}id-mr-indirectIssuerMatch id-mr:67
60 
olcObjectIdentifier: {32}AttributeCertificate 1.3.6.1.4.1.4203.666.11.10.2.1
61 
olcObjectIdentifier: {33}CertificateList 1.3.6.1.4.1.1466.115.121.1.9
62 
olcObjectIdentifier: {34}AttCertPath 1.3.6.1.4.1.4203.666.11.10.2.4
63 
olcObjectIdentifier: {35}PolicySyntax 1.3.6.1.4.1.4203.666.11.10.2.5
64 
olcObjectIdentifier: {36}RoleSyntax 1.3.6.1.4.1.4203.666.11.10.2.6
65 
olcLdapSyntaxes: {0}( 1.3.6.1.4.1.4203.666.11.10.2.4 DESC 'X.509 PMI attribute
66 
  cartificate path: SEQUENCE OF AttributeCertificate' X-SUBST '1.3.6.1.4.1.146
67 
 6.115.121.1.15' )
68 
olcLdapSyntaxes: {1}( 1.3.6.1.4.1.4203.666.11.10.2.5 DESC 'X.509 PMI policy sy
69 
 ntax' X-SUBST '1.3.6.1.4.1.1466.115.121.1.15' )
70 
olcLdapSyntaxes: {2}( 1.3.6.1.4.1.4203.666.11.10.2.6 DESC 'X.509 PMI role synt
71 
 ax' X-SUBST '1.3.6.1.4.1.1466.115.121.1.15' )
72 
olcAttributeTypes: {0}( id-at-role NAME 'role' DESC 'X.509 Role attribute, use
73 
  ;binary' SYNTAX RoleSyntax )
74 
olcAttributeTypes: {1}( id-at-xMLPrivilegeInfo NAME 'xmlPrivilegeInfo' DESC 'X
75 
 .509 XML privilege information attribute' SYNTAX 1.3.6.1.4.1.1466.115.121.1.1
76 
 5 )
77 
olcAttributeTypes: {2}( id-at-attributeCertificate NAME 'attributeCertificateA
78 
 ttribute' DESC 'X.509 Attribute certificate attribute, use ;binary' EQUALITY
79 
 attributeCertificateExactMatch SYNTAX AttributeCertificate )
80 
olcAttributeTypes: {3}( id-at-aACertificate NAME 'aACertificate' DESC 'X.509 A
81 
 A certificate attribute, use ;binary' EQUALITY attributeCertificateExactMatch
82 
  SYNTAX AttributeCertificate )
83 
olcAttributeTypes: {4}( id-at-attributeDescriptorCertificate NAME 'attributeDe
84 
 scriptorCertificate' DESC 'X.509 Attribute descriptor certificate attribute,
85 
 use ;binary' EQUALITY attributeCertificateExactMatch SYNTAX AttributeCertific
86 
 ate )
87 
olcAttributeTypes: {5}( id-at-attributeCertificateRevocationList NAME 'attribu
88 
 teCertificateRevocationList' DESC 'X.509 Attribute certificate revocation lis
89 
 t attribute, use ;binary' SYNTAX CertificateList X-EQUALITY 'certificateListE
90 
 xactMatch, not implemented yet' )
91 
olcAttributeTypes: {6}( id-at-attributeAuthorityRevocationList NAME 'attribute
92 
 AuthorityRevocationList' DESC 'X.509 AA certificate revocation list attribute
93 
 , use ;binary' SYNTAX CertificateList X-EQUALITY 'certificateListExactMatch,
94 
 not implemented yet' )
95 
olcAttributeTypes: {7}( id-at-delegationPath NAME 'delegationPath' DESC 'X.509
96 
  Delegation path attribute, use ;binary' SYNTAX AttCertPath )
97 
olcAttributeTypes: {8}( id-at-privPolicy NAME 'privPolicy' DESC 'X.509 Privile
98 
 ge policy attribute, use ;binary' SYNTAX PolicySyntax )
99 
olcAttributeTypes: {9}( id-at-protPrivPolicy NAME 'protPrivPolicy' DESC 'X.509
100 
  Protected privilege policy attribute, use ;binary' EQUALITY attributeCertifi
101 
 cateExactMatch SYNTAX AttributeCertificate )
102 
olcAttributeTypes: {10}( id-at-xMLPprotPrivPolicy NAME 'xmlPrivPolicy' DESC 'X
103 
 .509 XML Protected privilege policy attribute' SYNTAX 1.3.6.1.4.1.1466.115.12
104 
 1.1.15 )
105 
olcObjectClasses: {0}( id-oc-pmiUser NAME 'pmiUser' DESC 'X.509 PMI user objec
106 
 t class' SUP top AUXILIARY MAY attributeCertificateAttribute )
107 
olcObjectClasses: {1}( id-oc-pmiAA NAME 'pmiAA' DESC 'X.509 PMI AA object clas
108 
 s' SUP top AUXILIARY MAY ( aACertificate $ attributeCertificateRevocationList
109 
  $ attributeAuthorityRevocationList ) )
110 
olcObjectClasses: {2}( id-oc-pmiSOA NAME 'pmiSOA' DESC 'X.509 PMI SOA object c
111 
 lass' SUP top AUXILIARY MAY ( attributeCertificateRevocationList $ attributeA
112 
 uthorityRevocationList $ attributeDescriptorCertificate ) )
113 
olcObjectClasses: {3}( id-oc-attCertCRLDistributionPts NAME 'attCertCRLDistrib
114 
 utionPt' DESC 'X.509 Attribute certificate CRL distribution point object clas
115 
 s' SUP top AUXILIARY MAY ( attributeCertificateRevocationList $ attributeAuth
116 
 orityRevocationList ) )
117 
olcObjectClasses: {4}( id-oc-pmiDelegationPath NAME 'pmiDelegationPath' DESC '
118 
 X.509 PMI delegation path' SUP top AUXILIARY MAY delegationPath )
119 
olcObjectClasses: {5}( id-oc-privilegePolicy NAME 'privilegePolicy' DESC 'X.50
120 
 9 Privilege policy object class' SUP top AUXILIARY MAY privPolicy )
121 
olcObjectClasses: {6}( id-oc-protectedPrivilegePolicy NAME 'protectedPrivilege
122 
 Policy' DESC 'X.509 Protected privilege policy object class' SUP top AUXILIAR
123 
 Y MAY protPrivPolicy )