Rev 4 | Blame | Compare with Previous | Last modification | View Log | RSS feed
# inetorgperson.schema -- InetOrgPerson (RFC2798)# $OpenLDAP$## This work is part of OpenLDAP Software <http://www.openldap.org/>.#### Copyright 1998-2014 The OpenLDAP Foundation.## All rights reserved.#### Redistribution and use in source and binary forms, with or without## modification, are permitted only as authorized by the OpenLDAP## Public License.#### A copy of this license is available in the file LICENSE in the## top-level directory of the distribution or, alternatively, at## <http://www.OpenLDAP.org/license.html>.## InetOrgPerson (RFC2798)## Depends upon# Definition of an X.500 Attribute Type and an Object Class to Hold# Uniform Resource Identifiers (URIs) [RFC2079]# (core.schema)## A Summary of the X.500(96) User Schema for use with LDAPv3 [RFC2256]# (core.schema)## The COSINE and Internet X.500 Schema [RFC1274] (cosine.schema)# carLicense# This multivalued field is used to record the values of the license or# registration plate associated with an individual.attributetype ( 2.16.840.1.113730.3.1.1NAME 'carLicense'DESC 'RFC2798: vehicle license or registration plate'EQUALITY caseIgnoreMatchSUBSTR caseIgnoreSubstringsMatchSYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )# departmentNumber# Code for department to which a person belongs. This can also be# strictly numeric (e.g., 1234) or alphanumeric (e.g., ABC/123).attributetype ( 2.16.840.1.113730.3.1.2NAME 'departmentNumber'DESC 'RFC2798: identifies a department within an organization'EQUALITY caseIgnoreMatchSUBSTR caseIgnoreSubstringsMatchSYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )# displayName# When displaying an entry, especially within a one-line summary list, it# is useful to be able to identify a name to be used. Since other attri-# bute types such as 'cn' are multivalued, an additional attribute type is# needed. Display name is defined for this purpose.attributetype ( 2.16.840.1.113730.3.1.241NAME 'displayName'DESC 'RFC2798: preferred name to be used when displaying entries'EQUALITY caseIgnoreMatchSUBSTR caseIgnoreSubstringsMatchSYNTAX 1.3.6.1.4.1.1466.115.121.1.15SINGLE-VALUE )# employeeNumber# Numeric or alphanumeric identifier assigned to a person, typically based# on order of hire or association with an organization. Single valued.attributetype ( 2.16.840.1.113730.3.1.3NAME 'employeeNumber'DESC 'RFC2798: numerically identifies an employee within an organization'EQUALITY caseIgnoreMatchSUBSTR caseIgnoreSubstringsMatchSYNTAX 1.3.6.1.4.1.1466.115.121.1.15SINGLE-VALUE )# employeeType# Used to identify the employer to employee relationship. Typical values# used will be "Contractor", "Employee", "Intern", "Temp", "External", and# "Unknown" but any value may be used.attributetype ( 2.16.840.1.113730.3.1.4NAME 'employeeType'DESC 'RFC2798: type of employment for a person'EQUALITY caseIgnoreMatchSUBSTR caseIgnoreSubstringsMatchSYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )# jpegPhoto# Used to store one or more images of a person using the JPEG File# Interchange Format [JFIF].# Note that the jpegPhoto attribute type was defined for use in the# Internet X.500 pilots but no referencable definition for it could be# located.attributetype ( 0.9.2342.19200300.100.1.60NAME 'jpegPhoto'DESC 'RFC2798: a JPEG image'SYNTAX 1.3.6.1.4.1.1466.115.121.1.28 )# preferredLanguage# Used to indicate an individual's preferred written or spoken# language. This is useful for international correspondence or human-# computer interaction. Values for this attribute type MUST conform to# the definition of the Accept-Language header field defined in# [RFC2068] with one exception: the sequence "Accept-Language" ":"# should be omitted. This is a single valued attribute type.attributetype ( 2.16.840.1.113730.3.1.39NAME 'preferredLanguage'DESC 'RFC2798: preferred written or spoken language for a person'EQUALITY caseIgnoreMatchSUBSTR caseIgnoreSubstringsMatchSYNTAX 1.3.6.1.4.1.1466.115.121.1.15SINGLE-VALUE )# userSMIMECertificate# A PKCS#7 [RFC2315] SignedData, where the content that is signed is# ignored by consumers of userSMIMECertificate values. It is# recommended that values have a `contentType' of data with an absent# `content' field. Values of this attribute contain a person's entire# certificate chain and an smimeCapabilities field [RFC2633] that at a# minimum describes their SMIME algorithm capabilities. Values for# this attribute are to be stored and requested in binary form, as# 'userSMIMECertificate;binary'. If available, this attribute is# preferred over the userCertificate attribute for S/MIME applications.## OpenLDAP note: ";binary" transfer should NOT be used as syntax is binaryattributetype ( 2.16.840.1.113730.3.1.40NAME 'userSMIMECertificate'DESC 'RFC2798: PKCS#7 SignedData used to support S/MIME'SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 )# userPKCS12# PKCS #12 [PKCS12] provides a format for exchange of personal identity# information. When such information is stored in a directory service,# the userPKCS12 attribute should be used. This attribute is to be stored# and requested in binary form, as 'userPKCS12;binary'. The attribute# values are PFX PDUs stored as binary data.## OpenLDAP note: ";binary" transfer should NOT be used as syntax is binaryattributetype ( 2.16.840.1.113730.3.1.216NAME 'userPKCS12'DESC 'RFC2798: personal identity information, a PKCS #12 PFX'SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 )# inetOrgPerson# The inetOrgPerson represents people who are associated with an# organization in some way. It is a structural class and is derived# from the organizationalPerson which is defined in X.521 [X521].objectclass ( 2.16.840.1.113730.3.2.2NAME 'inetOrgPerson'DESC 'RFC2798: Internet Organizational Person'SUP organizationalPersonSTRUCTURALMAY (audio $ businessCategory $ carLicense $ departmentNumber $displayName $ employeeNumber $ employeeType $ givenName $homePhone $ homePostalAddress $ initials $ jpegPhoto $labeledURI $ mail $ manager $ mobile $ o $ pager $photo $ roomNumber $ secretary $ uid $ userCertificate $x500uniqueIdentifier $ preferredLanguage $userSMIMECertificate $ userPKCS12 ))