cannot change to directory '/root/{# ldap_config_path #}/certs':

AAROC / DevOps

DevOps code to deploy eScience services

Other

19 stars 40 forks source link

name: Create and sign the the new certificate sudo: yes shell: openssl req -new -x509 -subj '/C={{ server_country }}/ST={{ server_state }}/L={{ server_location }}/O={{ server_organization }}/CN={{ ansible_hostname }}/' -days 3650 -key my.key -out cert.crt -extensions v3_ca chdir={{ ldap_config_path }}/certs/ creates={{ ldap_config_path }}/certs/cert.crt

root@ansible:~/DevOps/Ansible# git diff diff --git a/Ansible/bootstrap.yml b/Ansible/bootstrap.yml index e69de29..a788414 100644 --- a/Ansible/bootstrap.yml +++ b/Ansible/bootstrap.yml @@ -0,0 +1,6 @@ +--- +- name: Bootstrap the identity machines + hosts: all + remote_user: root + roles: + - bootstrap diff --git a/Ansible/idp-ldap.yml b/Ansible/idp-ldap.yml index b8bfc4d..c1d2476 100644 --- a/Ansible/idp-ldap.yml +++ b/Ansible/idp-ldap.yml @@ -1,16 +1,16 @@ --- - name: Configure the LDAP machine hosts: ldap-servers - remote_user: ansible + remote_user: root sudo: true roles: - ldap -- name: Prepare the identity machine common environment - hosts: shibboleth-idps - remote_user: ansible - sudo: true - roles: - - fmarco76.tomcat - - shibboleth-idp - - fmarco76.IDPPublic +#- name: Prepare the identity machine common environment +# hosts: shibboleth-idps +# remote_user: ansible +# sudo: true +# roles: +# - fmarco76.tomcat +# - shibboleth-idp +# - fmarco76.IDPPublic diff --git a/Ansible/roles/ldap/vars/main.yml b/Ansible/roles/ldap/vars/main.yml index eef1abb..92b2d32 100644 --- a/Ansible/roles/ldap/vars/main.yml +++ b/Ansible/roles/ldap/vars/main.yml @@ -6,19 +6,20 @@ Administrator: Administrator idp_group: idp # The first test user -user_cn: test -user_sn: test -user_given: Test -user_initials: t -user_email: test@test.com +user_cn: Pathe +user_sn: Seck +user_given: Pathe +user_initials: PS +user_email: seckpa@ugb.edu.sn # This *MUST* be different to the primary email -user_secondary_email: test1@test.com -user_org: 'Test Institute' -user_country: NA -user_registered_address: test@test.com -user_pass: choose_a_good_pass -useradmin_password: choose_a_good_pass +user_secondary_email: seckpa@ugb.sn +user_org: 'UGB' +user_country: SN +user_registered_address: seckpa@ugb.edu.sn + +user_pass: ***** +useradmin_password: ***** # Passwords -# root_password_clear: -# root_password: '{SSHA}YN4DR1KHnl7cSEFiG0ISc1oUOVxCYqzA' +root_password_clear: ******

root@ansible:~/DevOps/Ansible# ansible-playbook -i inventories/inventory.ugb.sn idp-ldap.yml -vv

PLAY [Configure the LDAP machine] *****

GATHERING FACTS ***

REMOTE_MODULE setup ok: [ldap.ugb.sn] TASK: [fmarco76.firewall | Retrieve iptables rules] **************************\* REMOTE_MODULE command iptables -t filter -L -n ok: [ldap.ugb.sn] => {"changed": false, "cmd": ["iptables", "-t", "filter", "-L", "-n"], "delta": "0:00:00.002007", "end": "2015-01-21 15:31:16.703975", "rc": 0, "start": "2015-01-21 15:31:16.701968", "stderr": "", "stdout": "Chain INPUT (policy ACCEPT)\ntarget prot opt source destination \nACCEPT all -- 0.0.0.0/0 0.0.0.0/0 \nACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED \nACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 \nACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 \nACCEPT tcp -- 196.1.99.0/27 0.0.0.0/0 state NEW tcp dpt:636 \nACCEPT tcp -- 196.1.99.0/27 0.0.0.0/0 state NEW tcp dpt:389 \nREJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-admin-prohibited \n\nChain FORWARD (policy ACCEPT)\ntarget prot opt source destination \nREJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-admin-prohibited \n\nChain OUTPUT (policy ACCEPT)\ntarget prot opt source destination ", "stdout_lines": ["Chain INPUT (policy ACCEPT)", "target prot opt source destination ", "ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ", "ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ", "ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 ", "ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 ", "ACCEPT tcp -- 196.1.99.0/27 0.0.0.0/0 state NEW tcp dpt:636 ", "ACCEPT tcp -- 196.1.99.0/27 0.0.0.0/0 state NEW tcp dpt:389 ", "REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-admin-prohibited ", "", "Chain FORWARD (policy ACCEPT)", "target prot opt source destination ", "REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-admin-prohibited ", "", "Chain OUTPUT (policy ACCEPT)", "target prot opt source destination "]} TASK: [fmarco76.firewall | Count iptables rules] *****************************\* ok: [ldap.ugb.sn] => {"changed": false, "rc": 0, "stderr": "", "stdout": "7", "stdout_lines": ["7"]} TASK: [fmarco76.firewall | Apply rules for the local network] ****************\* skipping: [ldap.ugb.sn] => (item=389) skipping: [ldap.ugb.sn] => (item=636) TASK: [fmarco76.firewall | Apply rules for the defined network] **************\* skipping: [ldap.ugb.sn] => (item=389) skipping: [ldap.ugb.sn] => (item=636) TASK: [fmarco76.firewall | Apply nat rules] **********************************\* skipping: [ldap.ugb.sn] => (item=389) skipping: [ldap.ugb.sn] => (item=636) TASK: [fmarco76.firewall | Save iptable rules] *******************************\* skipping: [ldap.ugb.sn] TASK: [fmarco76.firewall | Save iptable rules] *******************************\* skipping: [ldap.ugb.sn] TASK: [ldap | what are we installing?] ***************************************\* ok: [ldap.ugb.sn] => { "msg": "['slapd', 'ldap-utils'] will be installed in /etc/ldap" } TASK: [ldap | Install the openldap and required Packages for RedHat] *********\* skipping: [ldap.ugb.sn] TASK: [ldap | Install the openldap and required Packages for Debian] *********\* REMOTE_MODULE apt name=slapd,ldap-utils state=installed update_cache=yes ok: [ldap.ugb.sn] => (item=slapd,ldap-utils) => {"changed": false, "item": "slapd,ldap-utils"} TASK: [ldap | Start ldap server] *********************************************\* REMOTE_MODULE service name=slapd state=started enabled=yes ok: [ldap.ugb.sn] => {"changed": false, "enabled": true, "name": "slapd", "state": "started"} TASK: [ldap | Retrieve ldap server configuration] ****************************\* REMOTE_MODULE command ldapsearch -Y EXTERNAL -H ldapi:/// -b cn=config ok: [ldap.ugb.sn] => {"changed": false, "cmd": ["ldapsearch", "-Y", "EXTERNAL", "-H", "ldapi:///", "-b", "cn=config"], "delta": "0:00:00.005782", "end": "2015-01-21 15:33:20.830574", "rc": 0, "start": "2015-01-21 15:33:20.824792", "stderr": "SASL/EXTERNAL authentication started\nSASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth\nSASL SSF: 0", "stdout": "# extended LDIF\n#\n# LDAPv3\n# base with scope subtree\n# filter: (objectclass=_)\n# requesting: ALL\n#\n\n# config\ndn: cn=config\nobjectClass: olcGlobal\ncn: config\nolcArgsFile: /var/run/slapd/slapd.args\nolcLogLevel: none\nolcPidFile: /var/run/slapd/slapd.pid\nolcToolThreads: 1\n\n# module{0}, config\ndn: cn=module{0},cn=config\nobjectClass: olcModuleList\ncn: module{0}\nolcModulePath: /usr/lib/ldap\nolcModuleLoad: {0}back_hdb\nolcModuleLoad: {1}memberof\nolcModuleLoad: {2}ppolicy\n\n# schema, config\ndn: cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: schema\nolcObjectIdentifier: OLcfg 1.3.6.1.4.1.4203.1.12.2\nolcObjectIdentifier: OLcfgAt OLcfg:3\nolcObjectIdentifier: OLcfgGlAt OLcfgAt:0\nolcObjectIdentifier: OLcfgBkAt OLcfgAt:1\nolcObjectIdentifier: OLcfgDbAt OLcfgAt:2\nolcObjectIdentifier: OLcfgOvAt OLcfgAt:3\nolcObjectIdentifier: OLcfgCtAt OLcfgAt:4\nolcObjectIdentifier: OLcfgOc OLcfg:4\nolcObjectIdentifier: OLcfgGlOc OLcfgOc:0\nolcObjectIdentifier: OLcfgBkOc OLcfgOc:1\nolcObjectIdentifier: OLcfgDbOc OLcfgOc:2\nolcObjectIdentifier: OLcfgOvOc OLcfgOc:3\nolcObjectIdentifier: OLcfgCtOc OLcfgOc:4\nolcObjectIdentifier: OMsyn 1.3.6.1.4.1.1466.115.121.1\nolcObjectIdentifier: OMsBoolean OMsyn:7\nolcObjectIdentifier: OMsDN OMsyn:12\nolcObjectIdentifier: OMsDirectoryString OMsyn:15\nolcObjectIdentifier: OMsIA5String OMsyn:26\nolcObjectIdentifier: OMsInteger OMsyn:27\nolcObjectIdentifier: OMsOID OMsyn:38\nolcObjectIdentifier: OMsOctetString OMsyn:40\nolcAttributeTypes: ( 2.5.4.0 NAME 'objectClass' DESC 'RFC4512: object classes \n of the entity' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121\n .1.38 )\nolcAttributeTypes: ( 2.5.21.9 NAME 'structuralObjectClass' DESC 'RFC4512: stru\n ctural object class of entry' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4\n .1.1466.115.121.1.38 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperati\n on )\nolcAttributeTypes: ( 2.5.18.1 NAME 'createTimestamp' DESC 'RFC4512: time which\n object was created' EQUALITY generalizedTimeMatch ORDERING generalizedTimeOr\n deringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE NO-USER-MODIFIC\n ATION USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.2 NAME 'modifyTimestamp' DESC 'RFC4512: time which\n object was last modified' EQUALITY generalizedTimeMatch ORDERING generalized\n TimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE NO-USER-M\n ODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.3 NAME 'creatorsName' DESC 'RFC4512: name of creat\n or' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SING\n LE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.4 NAME 'modifiersName' DESC 'RFC4512: name of last\n modifier' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 12 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.9 NAME 'hasSubordinates' DESC 'X.501: entry has ch\n ildren' EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALU\n E NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.10 NAME 'subschemaSubentry' DESC 'RFC4512: name of\n controlling subschema entry' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.\n 4.1.1466.115.121.1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperat\n ion )\nolcAttributeTypes: ( 1.3.6.1.1.20 NAME 'entryDN' DESC 'DN of the entry' EQUALI\n TY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE N\n O-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.1.16.4 NAME 'entryUUID' DESC 'UUID of the entry' \n EQUALITY UUIDMatch ORDERING UUIDOrderingMatch SYNTAX 1.3.6.1.1.16.1 SINGLE-VA\n LUE NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.7 NAME 'entryCSN' DESC 'change seq\n uence number of the entry content' EQUALITY CSNMatch ORDERING CSNOrderingMatc\n h SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} SINGLE-VALUE NO-USER-MODIFICATION US\n AGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.13 NAME 'namingCSN' DESC 'change s\n equence number of the entry naming (RDN)' EQUALITY CSNMatch ORDERING CSNOrder\n ingMatch SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} SINGLE-VALUE NO-USER-MODIFICA\n TION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.23 NAME 'syncreplCookie' DESC 'syn\n crepl Cookie for shadow copy' EQUALITY octetStringMatch ORDERING octetStringO\n rderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE NO-USER-MODIFI\n CATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.25 NAME 'contextCSN' DESC 'the lar\n gest committed CSN of a context' EQUALITY CSNMatch ORDERING CSNOrderingMatch \n SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} NO-USER-MODIFICATION USAGE dSAOperatio\n n )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.6 NAME 'altServer' DESC 'RFC4512\n : alternative servers' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 USAGE dSAOperatio\n n )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.5 NAME 'namingContexts' DESC 'RF\n C4512: naming contexts' SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 USAGE dSAOperati\n on )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.13 NAME 'supportedControl' DESC \n 'RFC4512: supported controls' SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAO\n peration )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.7 NAME 'supportedExtension' DESC\n 'RFC4512: supported extended operations' SYNTAX 1.3.6.1.4.1.1466.115.121.1.3\n 8 USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.15 NAME 'supportedLDAPVersion' D\n ESC 'RFC4512: supported LDAP versions' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 U\n SAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.14 NAME 'supportedSASLMechanisms\n ' DESC 'RFC4512: supported SASL mechanisms' SYNTAX 1.3.6.1.4.1.1466.115.121.1\n .15 USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.5 NAME 'supportedFeatures' DESC 'RFC\n 4512: features supported by the server' EQUALITY objectIdentifierMatch SYNTAX\n 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.10 NAME 'monitorContext' DESC 'mon\n itor context' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121\n .1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.1.12.2.1 NAME 'configContext' DESC 'conf\n ig context' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1\n .12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.1.4 NAME 'vendorName' DESC 'RFC3045: name of impl\n ementation vendor' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 15 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.1.5 NAME 'vendorVersion' DESC 'RFC3045: version o\n f implementation' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.1\n 5 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 2.5.18.5 NAME 'administrativeRole' DESC 'RFC3672: adminis\n trative role' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121.\n 1.38 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.6 NAME 'subtreeSpecification' DESC 'RFC3672: subtr\n ee specification' SYNTAX 1.3.6.1.4.1.1466.115.121.1.45 SINGLE-VALUE USAGE dir\n ectoryOperation )\nolcAttributeTypes: ( 2.5.21.1 NAME 'dITStructureRules' DESC 'RFC4512: DIT stru\n cture rules' EQUALITY integerFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.\n 121.1.17 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.2 NAME 'dITContentRules' DESC 'RFC4512: DIT conten\n t rules' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466\n .115.121.1.16 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.4 NAME 'matchingRules' DESC 'RFC4512: matching rul\n es' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.\n 121.1.30 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.5 NAME 'attributeTypes' DESC 'RFC4512: attribute t\n ypes' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.11\n 5.121.1.3 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.6 NAME 'objectClasses' DESC 'RFC4512: object class\n es' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.\n 121.1.37 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.7 NAME 'nameForms' DESC 'RFC4512: name forms ' EQU\n ALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.3\n 5 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.8 NAME 'matchingRuleUse' DESC 'RFC4512: matching r\n ule uses' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.146\n 6.115.121.1.31 USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.16 NAME 'ldapSyntaxes' DESC 'RFC\n 4512: LDAP syntaxes' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.\n 6.1.4.1.1466.115.121.1.54 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.4.1 NAME ( 'aliasedObjectName' 'aliasedEntryName' ) D\n ESC 'RFC4512: name of aliased object' EQUALITY distinguishedNameMatch SYNTAX \n 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )\nolcAttributeTypes: ( 2.16.840.1.113730.3.1.34 NAME 'ref' DESC 'RFC3296: subord\n inate referral URL' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1\n .15 USAGE distributedOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.1 NAME 'entry' DESC 'OpenLDAP ACL en\n try pseudo-attribute' SYNTAX 1.3.6.1.4.1.4203.1.1.1 SINGLE-VALUE NO-USER-MODI\n FICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.2 NAME 'children' DESC 'OpenLDAP ACL\n children pseudo-attribute' SYNTAX 1.3.6.1.4.1.4203.1.1.1 SINGLE-VALUE NO-USE\n R-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.8 NAME ( 'authzTo' 'saslAuthzTo' )\n DESC 'proxy authorization targets' EQUALITY authzMatch SYNTAX 1.3.6.1.4.1.42\n 03.666.2.7 USAGE distributedOperation X-ORDERED 'VALUES' )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.9 NAME ( 'authzFrom' 'saslAuthzFro\n m' ) DESC 'proxy authorization sources' EQUALITY authzMatch SYNTAX 1.3.6.1.4.\n 1.4203.666.2.7 USAGE distributedOperation X-ORDERED 'VALUES' )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.119.3 NAME 'entryTtl' DESC 'RFC2589:\n entry time-to-live' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE NO-USE\n R-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.119.4 NAME 'dynamicSubtrees' DESC 'R\n FC2589: dynamic subtrees' SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 NO-USER-MODIFI\n CATION USAGE dSAOperation )\nolcAttributeTypes: ( 2.5.4.49 NAME 'distinguishedName' DESC 'RFC4519: common s\n upertype of DN attributes' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1\n .1466.115.121.1.12 )\nolcAttributeTypes: ( 2.5.4.41 NAME 'name' DESC 'RFC4519: common supertype of n\n ame attributes' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYN\n TAX 1.3.6.1.4.1.1466.115.121.1.15{32768} )\nolcAttributeTypes: ( 2.5.4.3 NAME ( 'cn' 'commonName' ) DESC 'RFC4519: common \n name(s) for which the entity is known by' SUP name )\nolcAttributeTypes: ( 0.9.2342.19200300.100.1.1 NAME ( 'uid' 'userid' ) DESC 'R\n FC4519: user identifier' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstrings\n Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: ( 1.3.6.1.1.1.1.0 NAME 'uidNumber' DESC 'RFC2307: An intege\n r uniquely identifying a user in an administrative domain' EQUALITY integerMa\n tch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: ( 1.3.6.1.1.1.1.1 NAME 'gidNumber' DESC 'RFC2307: An intege\n r uniquely identifying a group in an administrative domain' EQUALITY integerM\n atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: ( 2.5.4.35 NAME 'userPassword' DESC 'RFC4519/2307: password\n of user' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128}\n )\nolcAttributeTypes: ( 1.3.6.1.4.1.250.1.57 NAME 'labeledURI' DESC 'RFC2079: Uni\n form Resource Identifier with optional label' EQUALITY caseExactMatch SYNTAX \n 1.3.6.1.4.1.1466.115.121.1.15 )\nolcAttributeTypes: ( 2.5.4.13 NAME 'description' DESC 'RFC4519: descriptive in\n formation' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1\n .3.6.1.4.1.1466.115.121.1.15{1024} )\nolcAttributeTypes: ( 2.5.4.34 NAME 'seeAlso' DESC 'RFC4519: DN of related obje\n ct' SUP distinguishedName )\nolcAttributeTypes: ( OLcfgGlAt:78 NAME 'olcConfigFile' DESC 'File for slapd co\n nfiguration directives' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SI\n NGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:79 NAME 'olcConfigDir' DESC 'Directory for slap\n d configuration backend' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString S\n INGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:1 NAME 'olcAccess' DESC 'Access Control List' E\n QUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:86 NAME 'olcAddContentAcl' DESC 'Check ACLs aga\n inst content of Add ops' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:2 NAME 'olcAllows' DESC 'Allowed set of depreca\n ted features' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:3 NAME 'olcArgsFile' DESC 'File for slapd comma\n nd line options' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VA\n LUE )\nolcAttributeTypes: ( OLcfgGlAt:5 NAME 'olcAttributeOptions' EQUALITY caseIgnor\n eMatch SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:4 NAME 'olcAttributeTypes' DESC 'OpenLDAP attri\n buteTypes' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALU\n ES' )\nolcAttributeTypes: ( OLcfgGlAt:6 NAME 'olcAuthIDRewrite' EQUALITY caseIgnoreMa\n tch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:7 NAME 'olcAuthzPolicy' EQUALITY caseIgnoreMatc\n h SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:8 NAME 'olcAuthzRegexp' EQUALITY caseIgnoreMatc\n h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:9 NAME 'olcBackend' DESC 'A type of backend' EQ\n UALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VALUE X-ORDERED 'SIBL\n INGS' )\nolcAttributeTypes: ( OLcfgGlAt:10 NAME 'olcConcurrency' SYNTAX OMsInteger SING\n LE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:11 NAME 'olcConnMaxPending' SYNTAX OMsInteger S\n INGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:12 NAME 'olcConnMaxPendingAuth' SYNTAX OMsInteg\n er SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:13 NAME 'olcDatabase' DESC 'The backend type fo\n r a database instance' SUP olcBackend SINGLE-VALUE X-ORDERED 'SIBLINGS' )\nolcAttributeTypes: ( OLcfgGlAt:14 NAME 'olcDefaultSearchBase' SYNTAX OMsDN SIN\n GLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:15 NAME 'olcDisallows' EQUALITY caseIgnoreMatch\n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:16 NAME 'olcDitContentRules' DESC 'OpenLDAP DIT\n content rules' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED \n 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:17 NAME 'olcGentleHUP' SYNTAX OMsBoolean SINGLE\n -VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.17 NAME 'olcHidden' SYNTAX OMsBoolean SINGLE-\n VALUE )\nolcAttributeTypes: ( OLcfgGlAt:18 NAME 'olcIdleTimeout' SYNTAX OMsInteger SING\n LE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:19 NAME 'olcInclude' SUP labeledURI )\nolcAttributeTypes: ( OLcfgGlAt:20 NAME 'olcIndexSubstrIfMinLen' SYNTAX OMsInte\n ger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:21 NAME 'olcIndexSubstrIfMaxLen' SYNTAX OMsInte\n ger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:22 NAME 'olcIndexSubstrAnyLen' SYNTAX OMsIntege\n r SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:23 NAME 'olcIndexSubstrAnyStep' SYNTAX OMsInteg\n er SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:84 NAME 'olcIndexIntLen' SYNTAX OMsInteger SING\n LE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.4 NAME 'olcLastMod' SYNTAX OMsBoolean SINGLE-\n VALUE )\nolcAttributeTypes: ( OLcfgGlAt:85 NAME 'olcLdapSyntaxes' DESC 'OpenLDAP ldapSy\n ntax' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgDbAt:0.5 NAME 'olcLimits' EQUALITY caseIgnoreMatch S\n YNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:26 NAME 'olcLocalSSF' SYNTAX OMsInteger SINGLE-\n VALUE )\nolcAttributeTypes: ( OLcfgGlAt:27 NAME 'olcLogFile' SYNTAX OMsDirectoryString \n SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:28 NAME 'olcLogLevel' EQUALITY caseIgnoreMatch \n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgDbAt:0.6 NAME 'olcMaxDerefDepth' SYNTAX OMsInteger S\n INGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.16 NAME 'olcMirrorMode' SYNTAX OMsBoolean SIN\n GLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:30 NAME 'olcModuleLoad' EQUALITY caseIgnoreMatc\n h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:31 NAME 'olcModulePath' SYNTAX OMsDirectoryStri\n ng SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.18 NAME 'olcMonitoring' SYNTAX OMsBoolean SIN\n GLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:32 NAME 'olcObjectClasses' DESC 'OpenLDAP objec\n t classes' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALU\n ES' )\nolcAttributeTypes: ( OLcfgGlAt:33 NAME 'olcObjectIdentifier' EQUALITY caseIgno\n reMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:34 NAME 'olcOverlay' SUP olcDatabase SINGLE-VAL\n UE X-ORDERED 'SIBLINGS' )\nolcAttributeTypes: ( OLcfgGlAt:35 NAME 'olcPasswordCryptSaltFormat' SYNTAX OMs\n DirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:36 NAME 'olcPasswordHash' EQUALITY caseIgnoreMa\n tch SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:37 NAME 'olcPidFile' SYNTAX OMsDirectoryString \n SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:38 NAME 'olcPlugin' EQUALITY caseIgnoreMatch SY\n NTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:39 NAME 'olcPluginLogFile' SYNTAX OMsDirectoryS\n tring SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:40 NAME 'olcReadOnly' SYNTAX OMsBoolean SINGLE-\n VALUE )\nolcAttributeTypes: ( OLcfgGlAt:41 NAME 'olcReferral' SUP labeledURI SINGLE-VAL\n UE )\nolcAttributeTypes: ( OLcfgDbAt:0.7 NAME 'olcReplica' SUP labeledURI EQUALITY c\n aseIgnoreMatch X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:43 NAME 'olcReplicaArgsFile' SYNTAX OMsDirector\n yString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:44 NAME 'olcReplicaPidFile' SYNTAX OMsDirectory\n String SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:45 NAME 'olcReplicationInterval' SYNTAX OMsInte\n ger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:46 NAME 'olcReplogFile' SYNTAX OMsDirectoryStri\n ng SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:47 NAME 'olcRequires' EQUALITY caseIgnoreMatch \n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:48 NAME 'olcRestrict' EQUALITY caseIgnoreMatch \n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:49 NAME 'olcReverseLookup' SYNTAX OMsBoolean SI\n NGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.8 NAME 'olcRootDN' EQUALITY distinguishedName\n Match SYNTAX OMsDN SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:51 NAME 'olcRootDSE' EQUALITY caseIgnoreMatch S\n YNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgDbAt:0.9 NAME 'olcRootPW' SYNTAX OMsDirectoryString \n SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:89 NAME 'olcSaslAuxprops' SYNTAX OMsDirectorySt\n ring SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:53 NAME 'olcSaslHost' SYNTAX OMsDirectoryString\n SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:54 NAME 'olcSaslRealm' SYNTAX OMsDirectoryStrin\n g SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:56 NAME 'olcSaslSecProps' SYNTAX OMsDirectorySt\n ring SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:58 NAME 'olcSchemaDN' EQUALITY distinguishedNam\n eMatch SYNTAX OMsDN SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:59 NAME 'olcSecurity' EQUALITY caseIgnoreMatch \n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:81 NAME 'olcServerID' EQUALITY caseIgnoreMatch \n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:60 NAME 'olcSizeLimit' SYNTAX OMsDirectoryStrin\n g SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:61 NAME 'olcSockbufMaxIncoming' SYNTAX OMsInteg\n er SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:62 NAME 'olcSockbufMaxIncomingAuth' SYNTAX OMsI\n nteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:83 NAME 'olcSortVals' DESC 'Attributes whose va\n lues will always be sorted' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryStrin\n g )\nolcAttributeTypes: ( OLcfgDbAt:0.15 NAME 'olcSubordinate' SYNTAX OMsDirectoryS\n tring SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.10 NAME 'olcSuffix' EQUALITY distinguishedNam\n eMatch SYNTAX OMsDN )\nolcAttributeTypes: ( OLcfgDbAt:0.19 NAME 'olcSyncUseSubentry' DESC 'Store sync\n context in a subentry' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.11 NAME 'olcSyncrepl' EQUALITY caseIgnoreMatc\n h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:90 NAME 'olcTCPBuffer' DESC 'Custom TCP buffer \n size' SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:66 NAME 'olcThreads' SYNTAX OMsInteger SINGLE-V\n ALUE )\nolcAttributeTypes: ( OLcfgGlAt:67 NAME 'olcTimeLimit' SYNTAX OMsDirectoryStrin\n g )\nolcAttributeTypes: ( OLcfgGlAt:68 NAME 'olcTLSCACertificateFile' SYNTAX OMsDir\n ectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:69 NAME 'olcTLSCACertificatePath' SYNTAX OMsDir\n ectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:70 NAME 'olcTLSCertificateFile' SYNTAX OMsDirec\n toryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:71 NAME 'olcTLSCertificateKeyFile' SYNTAX OMsDi\n rectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:72 NAME 'olcTLSCipherSuite' SYNTAX OMsDirectory\n String SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:73 NAME 'olcTLSCRLCheck' SYNTAX OMsDirectoryStr\n ing SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:82 NAME 'olcTLSCRLFile' SYNTAX OMsDirectoryStri\n ng SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:74 NAME 'olcTLSRandFile' SYNTAX OMsDirectoryStr\n ing SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:75 NAME 'olcTLSVerifyClient' SYNTAX OMsDirector\n yString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:77 NAME 'olcTLSDHParamFile' SYNTAX OMsDirectory\n String SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:87 NAME 'olcTLSProtocolMin' SYNTAX OMsDirectory\n String SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:80 NAME 'olcToolThreads' SYNTAX OMsInteger SING\n LE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.12 NAME 'olcUpdateDN' SYNTAX OMsDN SINGLE-VAL\n UE )\nolcAttributeTypes: ( OLcfgDbAt:0.13 NAME 'olcUpdateRef' SUP labeledURI EQUALIT\n Y caseIgnoreMatch )\nolcAttributeTypes: ( OLcfgGlAt:88 NAME 'olcWriteTimeout' SYNTAX OMsInteger SIN\n GLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.1 NAME 'olcDbDirectory' DESC 'Directory for d\n atabase content' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VA\n LUE )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.5 NAME 'OpenLDAPaci' DESC 'OpenLDA\n P access control information (experimental)' EQUALITY OpenLDAPaciMatch SYNTAX\n 1.3.6.1.4.1.4203.666.2.1 USAGE directoryOperation )\nolcAttributeTypes: ( OLcfgDbAt:1.11 NAME 'olcDbCacheFree' DESC 'Number of extr\n a entries to free when max is reached' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.1 NAME 'olcDbCacheSize' DESC 'Entry cache siz\n e in entries' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.2 NAME 'olcDbCheckpoint' DESC 'Database check\n point interval in kbytes and minutes' SYNTAX OMsDirectoryString SINGLE-VALUE \n )\nolcAttributeTypes: ( OLcfgDbAt:1.16 NAME 'olcDbChecksum' DESC 'Enable database\n checksum validation' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.13 NAME 'olcDbCryptFile' DESC 'Pathname of fi\n le containing the DB encryption key' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.14 NAME 'olcDbCryptKey' DESC 'DB encryption k\n ey' SYNTAX OMsOctetString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.3 NAME 'olcDbConfig' DESC 'BerkeleyDB DB_CONF\n IG configuration directives' SYNTAX OMsIA5String X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgDbAt:1.4 NAME 'olcDbNoSync' DESC 'Disable synchronou\n s database writes' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.15 NAME 'olcDbPageSize' DESC 'Page size of sp\n ecified DB, in Kbytes' EQUALITY caseExactMatch SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgDbAt:1.5 NAME 'olcDbDirtyRead' DESC 'Allow reads of \n uncommitted data' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.12 NAME 'olcDbDNcacheSize' DESC 'DN cache siz\n e' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.6 NAME 'olcDbIDLcacheSize' DESC 'IDL cache si\n ze in IDLs' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.2 NAME 'olcDbIndex' DESC 'Attribute index par\n ameters' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgDbAt:1.7 NAME 'olcDbLinearIndex' DESC 'Index attribu\n tes one at a time' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.8 NAME 'olcDbLockDetect' DESC 'Deadlock detec\n tion algorithm' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.3 NAME 'olcDbMode' DESC 'Unix permissions of \n database files' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.9 NAME 'olcDbSearchStack' DESC 'Depth of sear\n ch stack in IDLs' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.10 NAME 'olcDbShmKey' DESC 'Key for shared me\n mory region' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( 1.2.840.113556.1.2.102 NAME 'memberOf' DESC 'Group that t\n he entry belongs to' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.\n 115.121.1.12 USAGE dSAOperation X-ORIGIN 'iPlanet Delegated Administrator' )\nolcAttributeTypes: ( OLcfgOvAt:18.0 NAME 'olcMemberOfDN' DESC 'DN to be used a\n s modifiersName' SYNTAX OMsDN SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.1 NAME 'olcMemberOfDangling' DESC 'Behavior \n with respect to dangling members, constrained to ignore, drop, error' SYNTAX \n OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.2 NAME 'olcMemberOfRefInt' DESC 'Take care o\n f referential integrity' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.3 NAME 'olcMemberOfGroupOC' DESC 'Group obje\n ctClass' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.4 NAME 'olcMemberOfMemberAD' DESC 'member at\n tribute' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.5 NAME 'olcMemberOfMemberOfAD' DESC 'memberO\n f attribute' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.7 NAME 'olcMemberOfDanglingError' DESC 'Erro\n r code returned in case of dangling back reference' SYNTAX OMsDirectoryString\n SINGLE-VALUE )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.16 NAME 'pwdChangedTime' DESC 'Th\n e time the password was last changed' EQUALITY generalizedTimeMatch ORDERING \n generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALU\n E NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.17 NAME 'pwdAccountLockedTime' DE\n SC 'The time an user account was locked' EQUALITY generalizedTimeMatch ORDERI\n NG generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-V\n ALUE USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.19 NAME 'pwdFailureTime' DESC 'Th\n e timestamps of the last consecutive authentication failures' EQUALITY genera\n lizedTimeMatch ORDERING generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.\n 115.121.1.24 NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.20 NAME 'pwdHistory' DESC 'The hi\n story of users passwords' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.1\n 15.121.1.40 NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.21 NAME 'pwdGraceUseTime' DESC 'T\n he timestamps of the grace login once the password has expired' EQUALITY gene\n ralizedTimeMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 NO-USER-MODIFICATION US\n AGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.22 NAME 'pwdReset' DESC 'The indi\n cation that the password has been reset' EQUALITY booleanMatch SYNTAX 1.3.6.1\n .4.1.1466.115.121.1.7 SINGLE-VALUE USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.23 NAME 'pwdPolicySubentry' DESC \n 'The pwdPolicy subentry in effect for this object' EQUALITY distinguishedName\n Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE USAGE directoryOperat\n ion )\nolcAttributeTypes: ( OLcfgOvAt:12.1 NAME 'olcPPolicyDefault' DESC 'DN of a pwd\n Policy object for uncustomized objects' SYNTAX OMsDN SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:12.2 NAME 'olcPPolicyHashCleartext' DESC 'Hash \n passwords on add or modify' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:12.4 NAME 'olcPPolicyForwardUpdates' DESC 'Allo\n w policy state updates to be forwarded via updateref' SYNTAX OMsBoolean SINGL\n E-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:12.3 NAME 'olcPPolicyUseLockout' DESC 'Warn cli\n ents with AccountLocked' SYNTAX OMsBoolean SINGLE-VALUE )\nolcObjectClasses: ( 2.5.6.0 NAME 'top' DESC 'top of the superclass chain' ABST\n RACT MUST objectClass )\nolcObjectClasses: ( 1.3.6.1.4.1.1466.101.120.111 NAME 'extensibleObject' DESC \n 'RFC4512: extensible object' SUP top AUXILIARY )\nolcObjectClasses: ( 2.5.6.1 NAME 'alias' DESC 'RFC4512: an alias' SUP top STRU\n CTURAL MUST aliasedObjectName )\nolcObjectClasses: ( 2.16.840.1.113730.3.2.6 NAME 'referral' DESC 'namedref: na\n med subordinate referral' SUP top STRUCTURAL MUST ref )\nolcObjectClasses: ( 1.3.6.1.4.1.4203.1.4.1 NAME ( 'OpenLDAProotDSE' 'LDAProotD\n SE' ) DESC 'OpenLDAP Root DSE object' SUP top STRUCTURAL MAY cn )\nolcObjectClasses: ( 2.5.17.0 NAME 'subentry' DESC 'RFC3672: subentry' SUP top \n STRUCTURAL MUST ( cn $ subtreeSpecification ) )\nolcObjectClasses: ( 2.5.20.1 NAME 'subschema' DESC 'RFC4512: controlling subsc\n hema (sub)entry' AUXILIARY MAY ( dITStructureRules $ nameForms $ dITContentRu\n les $ objectClasses $ attributeTypes $ matchingRules $ matchingRuleUse ) )\nolcObjectClasses: ( 1.3.6.1.4.1.1466.101.119.2 NAME 'dynamicObject' DESC 'RFC2\n 589: Dynamic Object' SUP top AUXILIARY )\nolcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.4 NAME 'glue' DESC 'Glue Entry' SUP\n top STRUCTURAL )\nolcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.5 NAME 'syncConsumerSubentry' DESC \n 'Persistent Info for SyncRepl Consumer' AUXILIARY MAY syncreplCookie )\nolcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.6 NAME 'syncProviderSubentry' DESC \n 'Persistent Info for SyncRepl Producer' AUXILIARY MAY contextCSN )\nolcObjectClasses: ( OLcfgGlOc:0 NAME 'olcConfig' DESC 'OpenLDAP configuration \n object' SUP top ABSTRACT )\nolcObjectClasses: ( OLcfgGlOc:1 NAME 'olcGlobal' DESC 'OpenLDAP Global configu\n ration options' SUP olcConfig STRUCTURAL MAY ( cn $ olcConfigFile $ olcConfig\n Dir $ olcAllows $ olcArgsFile $ olcAttributeOptions $ olcAuthIDRewrite $ olcA\n uthzPolicy $ olcAuthzRegexp $ olcConcurrency $ olcConnMaxPending $ olcConnMax\n PendingAuth $ olcDisallows $ olcGentleHUP $ olcIdleTimeout $ olcIndexSubstrIf\n MaxLen $ olcIndexSubstrIfMinLen $ olcIndexSubstrAnyLen $ olcIndexSubstrAnySte\n p $ olcIndexIntLen $ olcLocalSSF $ olcLogFile $ olcLogLevel $ olcPasswordCryp\n tSaltFormat $ olcPasswordHash $ olcPidFile $ olcPluginLogFile $ olcReadOnly $\n olcReferral $ olcReplogFile $ olcRequires $ olcRestrict $ olcReverseLookup $\n olcRootDSE $ olcSaslAuxprops $ olcSaslHost $ olcSaslRealm $ olcSaslSecProps \n $ olcSecurity $ olcServerID $ olcSizeLimit $ olcSockbufMaxIncoming $ olcSockb\n ufMaxIncomingAuth $ olcTCPBuffer $ olcThreads $ olcTimeLimit $ olcTLSCACertif\n icateFile $ olcTLSCACertificatePath $ olcTLSCertificateFile $ olcTLSCertifica\n teKeyFile $ olcTLSCipherSuite $ olcTLSCRLCheck $ olcTLSRandFile $ olcTLSVerif\n yClient $ olcTLSDHParamFile $ olcTLSCRLFile $ olcToolThreads $ olcWriteTimeou\n t $ olcObjectIdentifier $ olcAttributeTypes $ olcObjectClasses $ olcDitConten\n tRules $ olcLdapSyntaxes ) )\nolcObjectClasses: ( OLcfgGlOc:2 NAME 'olcSchemaConfig' DESC 'OpenLDAP schema o\n bject' SUP olcConfig STRUCTURAL MAY ( cn $ olcObjectIdentifier $ olcAttribute\n Types $ olcObjectClasses $ olcDitContentRules $ olcLdapSyntaxes ) )\nolcObjectClasses: ( OLcfgGlOc:3 NAME 'olcBackendConfig' DESC 'OpenLDAP Backend\n -specific options' SUP olcConfig STRUCTURAL MUST olcBackend )\nolcObjectClasses: ( OLcfgGlOc:4 NAME 'olcDatabaseConfig' DESC 'OpenLDAP Databa\n se-specific options' SUP olcConfig STRUCTURAL MUST olcDatabase MAY ( olcHidde\n n $ olcSuffix $ olcSubordinate $ olcAccess $ olcAddContentAcl $ olcLastMod $ \n olcLimits $ olcMaxDerefDepth $ olcPlugin $ olcReadOnly $ olcReplica $ olcRepl\n icaArgsFile $ olcReplicaPidFile $ olcReplicationInterval $ olcReplogFile $ ol\n cRequires $ olcRestrict $ olcRootDN $ olcRootPW $ olcSchemaDN $ olcSecurity $\n olcSizeLimit $ olcSyncUseSubentry $ olcSyncrepl $ olcTimeLimit $ olcUpdateDN\n $ olcUpdateRef $ olcMirrorMode $ olcMonitoring ) )\nolcObjectClasses: ( OLcfgGlOc:5 NAME 'olcOverlayConfig' DESC 'OpenLDAP Overlay\n -specific options' SUP olcConfig STRUCTURAL MUST olcOverlay )\nolcObjectClasses: ( OLcfgGlOc:6 NAME 'olcIncludeFile' DESC 'OpenLDAP configura\n tion include file' SUP olcConfig STRUCTURAL MUST olcInclude MAY ( cn $ olcRoo\n tDSE ) )\nolcObjectClasses: ( OLcfgGlOc:7 NAME 'olcFrontendConfig' DESC 'OpenLDAP fronte\n nd configuration' AUXILIARY MAY ( olcDefaultSearchBase $ olcPasswordHash $ ol\n cSortVals ) )\nolcObjectClasses: ( OLcfgGlOc:8 NAME 'olcModuleList' DESC 'OpenLDAP dynamic mo\n dule info' SUP olcConfig STRUCTURAL MAY ( cn $ olcModulePath $ olcModuleLoad \n ) )\nolcObjectClasses: ( OLcfgDbOc:2.1 NAME 'olcLdifConfig' DESC 'LDIF backend conf\n iguration' SUP olcDatabaseConfig STRUCTURAL MUST olcDbDirectory )\nolcObjectClasses: ( OLcfgDbOc:1.2 NAME 'olcHdbConfig' DESC 'HDB backend config\n uration' SUP olcDatabaseConfig STRUCTURAL MUST olcDbDirectory MAY ( olcDbCach\n eSize $ olcDbCheckpoint $ olcDbConfig $ olcDbCryptFile $ olcDbCryptKey $ olcD\n bNoSync $ olcDbDirtyRead $ olcDbIDLcacheSize $ olcDbIndex $ olcDbLinearIndex \n $ olcDbLockDetect $ olcDbMode $ olcDbSearchStack $ olcDbShmKey $ olcDbCacheFr\n ee $ olcDbDNcacheSize $ olcDbPageSize ) )\nolcObjectClasses: ( OLcfgOvOc:18.1 NAME 'olcMemberOf' DESC 'Member-of configur\n ation' SUP olcOverlayConfig STRUCTURAL MAY ( olcMemberOfDN $ olcMemberOfDangl\n ing $ olcMemberOfDanglingError $ olcMemberOfRefInt $ olcMemberOfGroupOC $ olc\n MemberOfMemberAD $ olcMemberOfMemberOfAD ) )\nolcObjectClasses: ( OLcfgOvOc:12.1 NAME 'olcPPolicyConfig' DESC 'Password Poli\n cy configuration' SUP olcOverlayConfig STRUCTURAL MAY ( olcPPolicyDefault $ o\n lcPPolicyHashCleartext $ olcPPolicyUseLockout $ olcPPolicyForwardUpdates ) )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.1 DESC 'ACI Item' X-BINARY-TRANS\n FER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.2 DESC 'Access Point' X-NOT-HUMA\n N-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.3 DESC 'Attribute Type Descripti\n on' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.4 DESC 'Audio' X-NOT-HUMAN-READA\n BLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.5 DESC 'Binary' X-NOT-HUMAN-READ\n ABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.6 DESC 'Bit String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.7 DESC 'Boolean' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.8 DESC 'Certificate' X-BINARY-TR\n ANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.9 DESC 'Certificate List' X-BINA\n RY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.10 DESC 'Certificate Pair' X-BIN\n ARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.1 DESC 'X.509 AttributeCertifi\n cate' X-BINARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.12 DESC 'Distinguished Name' )\nolcLdapSyntaxes: ( 1.2.36.79672281.1.5.0 DESC 'RDN' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.13 DESC 'Data Quality' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.14 DESC 'Delivery Method' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.15 DESC 'Directory String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.16 DESC 'DIT Content Rule Descri\n ption' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.17 DESC 'DIT Structure Rule Desc\n ription' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.19 DESC 'DSA Quality' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.20 DESC 'DSE Type' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.21 DESC 'Enhanced Guide' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.22 DESC 'Facsimile Telephone Num\n ber' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.23 DESC 'Fax' X-NOT-HUMAN-READAB\n LE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.24 DESC 'Generalized Time' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.25 DESC 'Guide' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.26 DESC 'IA5 String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.27 DESC 'Integer' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.28 DESC 'JPEG' X-NOT-HUMAN-READA\n BLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.29 DESC 'Master And Shadow Acces\n s Points' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.30 DESC 'Matching Rule Descripti\n on' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.31 DESC 'Matching Rule Use Descr\n iption' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.32 DESC 'Mail Preference' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.33 DESC 'MHS OR Address' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.34 DESC 'Name And Optional UID' \n )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.35 DESC 'Name Form Description' \n )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.36 DESC 'Numeric String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.37 DESC 'Object Class Descriptio\n n' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.38 DESC 'OID' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.39 DESC 'Other Mailbox' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.40 DESC 'Octet String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.41 DESC 'Postal Address' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.42 DESC 'Protocol Information' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.43 DESC 'Presentation Address' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.44 DESC 'Printable String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.11 DESC 'Country String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.45 DESC 'SubtreeSpecification' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.49 DESC 'Supported Algorithm' X-\n BINARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.50 DESC 'Telephone Number' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.51 DESC 'Teletex Terminal Identi\n fier' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.52 DESC 'Telex Number' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.54 DESC 'LDAP Syntax Description\n ' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.55 DESC 'Modify Rights' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.56 DESC 'LDAP Schema Definition'\n )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.57 DESC 'LDAP Schema Description\n ' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.58 DESC 'Substring Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.1.0.0 DESC 'RFC2307 NIS Netgroup Triple' )\nolcLdapSyntaxes: ( 1.3.6.1.1.1.0.1 DESC 'RFC2307 Boot Parameter' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.1 DESC 'Certificate Exact Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.2 DESC 'Certificate Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.3 DESC 'Certificate Pair Exact Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.4 DESC 'Certificate Pair Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.5 DESC 'Certificate List Exact Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.6 DESC 'Certificate List Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.7 DESC 'Algorithm Identifier' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.2 DESC 'AttributeCertificate E\n xact Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.3 DESC 'AttributeCertificate A\n ssertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.16.1 DESC 'UUID' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.2.1 DESC 'CSN' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.2.4 DESC 'CSN SID' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.1.1.1 DESC 'OpenLDAP void' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.2.7 DESC 'OpenLDAP authz' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.2.1 DESC 'OpenLDAP Experimental ACI' )\n\n# {0}core, schema, config\ndn: cn={0}core,cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: {0}core\nolcAttributeTypes: {0}( 2.5.4.2 NAME 'knowledgeInformation' DESC 'RFC2256: kno\n wledge information' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.\n 1.15{32768} )\nolcAttributeTypes: {1}( 2.5.4.4 NAME ( 'sn' 'surname' ) DESC 'RFC2256: last (f\n amily) name(s) for which the entity is known by' SUP name )\nolcAttributeTypes: {2}( 2.5.4.5 NAME 'serialNumber' DESC 'RFC2256: serial numb\n er of the entity' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch S\n YNTAX 1.3.6.1.4.1.1466.115.121.1.44{64} )\nolcAttributeTypes: {3}( 2.5.4.6 NAME ( 'c' 'countryName' ) DESC 'RFC2256: ISO-\n 3166 country 2-letter code' SUP name SINGLE-VALUE )\nolcAttributeTypes: {4}( 2.5.4.7 NAME ( 'l' 'localityName' ) DESC 'RFC2256: loc\n ality which this object resides in' SUP name )\nolcAttributeTypes: {5}( 2.5.4.8 NAME ( 'st' 'stateOrProvinceName' ) DESC 'RFC2\n 256: state or province which this object resides in' SUP name )\nolcAttributeTypes: {6}( 2.5.4.9 NAME ( 'street' 'streetAddress' ) DESC 'RFC225\n 6: street address of this object' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreS\n ubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )\nolcAttributeTypes: {7}( 2.5.4.10 NAME ( 'o' 'organizationName' ) DESC 'RFC2256\n : organization this object belongs to' SUP name )\nolcAttributeTypes: {8}( 2.5.4.11 NAME ( 'ou' 'organizationalUnitName' ) DESC '\n RFC2256: organizational unit this object belongs to' SUP name )\nolcAttributeTypes: {9}( 2.5.4.12 NAME 'title' DESC 'RFC2256: title associated \n with the entity' SUP name )\nolcAttributeTypes: {10}( 2.5.4.14 NAME 'searchGuide' DESC 'RFC2256: search gui\n de, deprecated by enhancedSearchGuide' SYNTAX 1.3.6.1.4.1.1466.115.121.1.25 )\nolcAttributeTypes: {11}( 2.5.4.15 NAME 'businessCategory' DESC 'RFC2256: busin\n ess category' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTA\n X 1.3.6.1.4.1.1466.115.121.1.15{128} )\nolcAttributeTypes: {12}( 2.5.4.16 NAME 'postalAddress' DESC 'RFC2256: postal a\n ddress' EQUALITY caseIgnoreListMatch SUBSTR caseIgnoreListSubstringsMatch SYN\n TAX 1.3.6.1.4.1.1466.115.121.1.41 )\nolcAttributeTypes: {13}( 2.5.4.17 NAME 'postalCode' DESC 'RFC2256: postal code\n ' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.\n 1.1466.115.121.1.15{40} )\nolcAttributeTypes: {14}( 2.5.4.18 NAME 'postOfficeBox' DESC 'RFC2256: Post Off\n ice Box' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3\n .6.1.4.1.1466.115.121.1.15{40} )\nolcAttributeTypes: {15}( 2.5.4.19 NAME 'physicalDeliveryOfficeName' DESC 'RFC2\n 256: Physical Delivery Office Name' EQUALITY caseIgnoreMatch SUBSTR caseIgnor\n eSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )\nolcAttributeTypes: {16}( 2.5.4.20 NAME 'telephoneNumber' DESC 'RFC2256: Teleph\n one Number' EQUALITY telephoneNumberMatch SUBSTR telephoneNumberSubstringsMat\n ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.50{32} )\nolcAttributeTypes: {17}( 2.5.4.21 NAME 'telexNumber' DESC 'RFC2256: Telex Numb\n er' SYNTAX 1.3.6.1.4.1.1466.115.121.1.52 )\nolcAttributeTypes: {18}( 2.5.4.22 NAME 'teletexTerminalIdentifier' DESC 'RFC22\n 56: Teletex Terminal Identifier' SYNTAX 1.3.6.1.4.1.1466.115.121.1.51 )\nolcAttributeTypes: {19}( 2.5.4.23 NAME ( 'facsimileTelephoneNumber' 'fax' ) DE\n SC 'RFC2256: Facsimile (Fax) Telephone Number' SYNTAX 1.3.6.1.4.1.1466.115.12\n 1.1.22 )\nolcAttributeTypes: {20}( 2.5.4.24 NAME 'x121Address' DESC 'RFC2256: X.121 Addr\n ess' EQUALITY numericStringMatch SUBSTR numericStringSubstringsMatch SYNTAX 1\n .3.6.1.4.1.1466.115.121.1.36{15} )\nolcAttributeTypes: {21}( 2.5.4.25 NAME 'internationaliSDNNumber' DESC 'RFC2256\n : international ISDN number' EQUALITY numericStringMatch SUBSTR numericString\n SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.36{16} )\nolcAttributeTypes: {22}( 2.5.4.26 NAME 'registeredAddress' DESC 'RFC2256: regi\n stered postal address' SUP postalAddress SYNTAX 1.3.6.1.4.1.1466.115.121.1.41\n )\nolcAttributeTypes: {23}( 2.5.4.27 NAME 'destinationIndicator' DESC 'RFC2256: d\n estination indicator' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMat\n ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.44{128} )\nolcAttributeTypes: {24}( 2.5.4.28 NAME 'preferredDeliveryMethod' DESC 'RFC2256\n : preferred delivery method' SYNTAX 1.3.6.1.4.1.1466.115.121.1.14 SINGLE-VALU\n E )\nolcAttributeTypes: {25}( 2.5.4.29 NAME 'presentationAddress' DESC 'RFC2256: pr\n esentation address' EQUALITY presentationAddressMatch SYNTAX 1.3.6.1.4.1.1466\n .115.121.1.43 SINGLE-VALUE )\nolcAttributeTypes: {26}( 2.5.4.30 NAME 'supportedApplicationContext' DESC 'RFC\n 2256: supported application context' EQUALITY objectIdentifierMatch SYNTAX 1.\n 3.6.1.4.1.1466.115.121.1.38 )\nolcAttributeTypes: {27}( 2.5.4.31 NAME 'member' DESC 'RFC2256: member of a gro\n up' SUP distinguishedName )\nolcAttributeTypes: {28}( 2.5.4.32 NAME 'owner' DESC 'RFC2256: owner (of the ob\n ject)' SUP distinguishedName )\nolcAttributeTypes: {29}( 2.5.4.33 NAME 'roleOccupant' DESC 'RFC2256: occupant \n of role' SUP distinguishedName )\nolcAttributeTypes: {30}( 2.5.4.36 NAME 'userCertificate' DESC 'RFC2256: X.509 \n user certificate, use ;binary' EQUALITY certificateExactMatch SYNTAX 1.3.6.1.\n 4.1.1466.115.121.1.8 )\nolcAttributeTypes: {31}( 2.5.4.37 NAME 'cACertificate' DESC 'RFC2256: X.509 CA\n certificate, use ;binary' EQUALITY certificateExactMatch SYNTAX 1.3.6.1.4.1.\n 1466.115.121.1.8 )\nolcAttributeTypes: {32}( 2.5.4.38 NAME 'authorityRevocationList' DESC 'RFC2256\n : X.509 authority revocation list, use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.1\n 21.1.9 )\nolcAttributeTypes: {33}( 2.5.4.39 NAME 'certificateRevocationList' DESC 'RFC22\n 56: X.509 certificate revocation list, use ;binary' SYNTAX 1.3.6.1.4.1.1466.1\n 15.121.1.9 )\nolcAttributeTypes: {34}( 2.5.4.40 NAME 'crossCertificatePair' DESC 'RFC2256: X\n .509 cross certificate pair, use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.121.1.1\n 0 )\nolcAttributeTypes: {35}( 2.5.4.42 NAME ( 'givenName' 'gn' ) DESC 'RFC2256: fir\n st name(s) for which the entity is known by' SUP name )\nolcAttributeTypes: {36}( 2.5.4.43 NAME 'initials' DESC 'RFC2256: initials of s\n ome or all of names, but not the surname(s).' SUP name )\nolcAttributeTypes: {37}( 2.5.4.44 NAME 'generationQualifier' DESC 'RFC2256: na\n me qualifier indicating a generation' SUP name )\nolcAttributeTypes: {38}( 2.5.4.45 NAME 'x500UniqueIdentifier' DESC 'RFC2256: X\n .500 unique identifier' EQUALITY bitStringMatch SYNTAX 1.3.6.1.4.1.1466.115.1\n 21.1.6 )\nolcAttributeTypes: {39}( 2.5.4.46 NAME 'dnQualifier' DESC 'RFC2256: DN qualifi\n er' EQUALITY caseIgnoreMatch ORDERING caseIgnoreOrderingMatch SUBSTR caseIgno\n reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.44 )\nolcAttributeTypes: {40}( 2.5.4.47 NAME 'enhancedSearchGuide' DESC 'RFC2256: en\n hanced search guide' SYNTAX 1.3.6.1.4.1.1466.115.121.1.21 )\nolcAttributeTypes: {41}( 2.5.4.48 NAME 'protocolInformation' DESC 'RFC2256: pr\n otocol information' EQUALITY protocolInformationMatch SYNTAX 1.3.6.1.4.1.1466\n .115.121.1.42 )\nolcAttributeTypes: {42}( 2.5.4.50 NAME 'uniqueMember' DESC 'RFC2256: unique me\n mber of a group' EQUALITY uniqueMemberMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1\n .34 )\nolcAttributeTypes: {43}( 2.5.4.51 NAME 'houseIdentifier' DESC 'RFC2256: house \n identifier' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX \n 1.3.6.1.4.1.1466.115.121.1.15{32768} )\nolcAttributeTypes: {44}( 2.5.4.52 NAME 'supportedAlgorithms' DESC 'RFC2256: su\n pported algorithms' SYNTAX 1.3.6.1.4.1.1466.115.121.1.49 )\nolcAttributeTypes: {45}( 2.5.4.53 NAME 'deltaRevocationList' DESC 'RFC2256: de\n lta revocation list; use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.121.1.9 )\nolcAttributeTypes: {46}( 2.5.4.54 NAME 'dmdName' DESC 'RFC2256: name of DMD' S\n UP name )\nolcAttributeTypes: {47}( 2.5.4.65 NAME 'pseudonym' DESC 'X.520(4th): pseudonym\n for the object' SUP name )\nolcAttributeTypes: {48}( 0.9.2342.19200300.100.1.3 NAME ( 'mail' 'rfc822Mailbo\n x' ) DESC 'RFC1274: RFC822 Mailbox' EQUALITY caseIgnoreIA5Match SUBSTR ca\n seIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )\nolcAttributeTypes: {49}( 0.9.2342.19200300.100.1.25 NAME ( 'dc' 'domainCompone\n nt' ) DESC 'RFC1274/2247: domain component' EQUALITY caseIgnoreIA5Match SUBST\n R caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VA\n LUE )\nolcAttributeTypes: {50}( 0.9.2342.19200300.100.1.37 NAME 'associatedDomain' DE\n SC 'RFC1274: domain associated with object' EQUALITY caseIgnoreIA5Match SUBST\n R caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {51}( 1.2.840.113549.1.9.1 NAME ( 'email' 'emailAddress' 'p\n kcs9email' ) DESC 'RFC3280: legacy attribute for email addresses in DNs' EQUA\n LITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.\n 1.1466.115.121.1.26{128} )\nolcObjectClasses: {0}( 2.5.6.2 NAME 'country' DESC 'RFC2256: a country' SUP to\n p STRUCTURAL MUST c MAY ( searchGuide $ description ) )\nolcObjectClasses: {1}( 2.5.6.3 NAME 'locality' DESC 'RFC2256: a locality' SUP \n top STRUCTURAL MAY ( street $ seeAlso $ searchGuide $ st $ l $ description ) \n )\nolcObjectClasses: {2}( 2.5.6.4 NAME 'organization' DESC 'RFC2256: an organizat\n ion' SUP top STRUCTURAL MUST o MAY ( userPassword $ searchGuide $ seeAlso $ b\n usinessCategory $ x121Address $ registeredAddress $ destinationIndicator $ pr\n eferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier $ telephoneNu\n mber $ internationaliSDNNumber $ facsimileTelephoneNumber $ street $ postOff\n iceBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ st $ l $ d\n escription ) )\nolcObjectClasses: {3}( 2.5.6.5 NAME 'organizationalUnit' DESC 'RFC2256: an org\n anizational unit' SUP top STRUCTURAL MUST ou MAY ( userPassword $ searchGuide\n $ seeAlso $ businessCategory $ x121Address $ registeredAddress $ destination\n Indicator $ preferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier\n $ telephoneNumber $ internationaliSDNNumber $ facsimileTelephoneNumber $ str\n eet $ postOfficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName\n $ st $ l $ description ) )\nolcObjectClasses: {4}( 2.5.6.6 NAME 'person' DESC 'RFC2256: a person' SUP top \n STRUCTURAL MUST ( sn $ cn ) MAY ( userPassword $ telephoneNumber $ seeAlso $ \n description ) )\nolcObjectClasses: {5}( 2.5.6.7 NAME 'organizationalPerson' DESC 'RFC2256: an o\n rganizational person' SUP person STRUCTURAL MAY ( title $ x121Address $ regis\n teredAddress $ destinationIndicator $ preferredDeliveryMethod $ telexNumber $\n teletexTerminalIdentifier $ telephoneNumber $ internationaliSDNNumber $ fac\n simileTelephoneNumber $ street $ postOfficeBox $ postalCode $ postalAddress $\n physicalDeliveryOfficeName $ ou $ st $ l ) )\nolcObjectClasses: {6}( 2.5.6.8 NAME 'organizationalRole' DESC 'RFC2256: an org\n anizational role' SUP top STRUCTURAL MUST cn MAY ( x121Address $ registeredAd\n dress $ destinationIndicator $ preferredDeliveryMethod $ telexNumber $ telete\n xTerminalIdentifier $ telephoneNumber $ internationaliSDNNumber $ facsimileTe\n lephoneNumber $ seeAlso $ roleOccupant $ preferredDeliveryMethod $ street $ p\n ostOfficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ ou $\n st $ l $ description ) )\nolcObjectClasses: {7}( 2.5.6.9 NAME 'groupOfNames' DESC 'RFC2256: a group of n\n ames (DNs)' SUP top STRUCTURAL MUST ( member $ cn ) MAY ( businessCategory $ \n seeAlso $ owner $ ou $ o $ description ) )\nolcObjectClasses: {8}( 2.5.6.10 NAME 'residentialPerson' DESC 'RFC2256: an res\n idential person' SUP person STRUCTURAL MUST l MAY ( businessCategory $ x121Ad\n dress $ registeredAddress $ destinationIndicator $ preferredDeliveryMethod $ \n telexNumber $ teletexTerminalIdentifier $ telephoneNumber $ internationaliSDN\n Number $ facsimileTelephoneNumber $ preferredDeliveryMethod $ street $ postOf\n ficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ st $ l ) \n )\nolcObjectClasses: {9}( 2.5.6.11 NAME 'applicationProcess' DESC 'RFC2256: an ap\n plication process' SUP top STRUCTURAL MUST cn MAY ( seeAlso $ ou $ l $ descri\n ption ) )\nolcObjectClasses: {10}( 2.5.6.12 NAME 'applicationEntity' DESC 'RFC2256: an ap\n plication entity' SUP top STRUCTURAL MUST ( presentationAddress $ cn ) MAY ( \n supportedApplicationContext $ seeAlso $ ou $ o $ l $ description ) )\nolcObjectClasses: {11}( 2.5.6.13 NAME 'dSA' DESC 'RFC2256: a directory system \n agent (a server)' SUP applicationEntity STRUCTURAL MAY knowledgeInformation )\nolcObjectClasses: {12}( 2.5.6.14 NAME 'device' DESC 'RFC2256: a device' SUP to\n p STRUCTURAL MUST cn MAY ( serialNumber $ seeAlso $ owner $ ou $ o $ l $ desc\n ription ) )\nolcObjectClasses: {13}( 2.5.6.15 NAME 'strongAuthenticationUser' DESC 'RFC2256\n : a strong authentication user' SUP top AUXILIARY MUST userCertificate )\nolcObjectClasses: {14}( 2.5.6.16 NAME 'certificationAuthority' DESC 'RFC2256: \n a certificate authority' SUP top AUXILIARY MUST ( authorityRevocationList $ c\n ertificateRevocationList $ cACertificate ) MAY crossCertificatePair )\nolcObjectClasses: {15}( 2.5.6.17 NAME 'groupOfUniqueNames' DESC 'RFC2256: a gr\n oup of unique names (DN and Unique Identifier)' SUP top STRUCTURAL MUST ( uni\n queMember $ cn ) MAY ( businessCategory $ seeAlso $ owner $ ou $ o $ descript\n ion ) )\nolcObjectClasses: {16}( 2.5.6.18 NAME 'userSecurityInformation' DESC 'RFC2256:\n a user security information' SUP top AUXILIARY MAY ( supportedAlgorithms ) )\nolcObjectClasses: {17}( 2.5.6.16.2 NAME 'certificationAuthority-V2' SUP certif\n icationAuthority AUXILIARY MAY ( deltaRevocationList ) )\nolcObjectClasses: {18}( 2.5.6.19 NAME 'cRLDistributionPoint' SUP top STRUCTURA\n L MUST ( cn ) MAY ( certificateRevocationList $ authorityRevocationList $ del\n taRevocationList ) )\nolcObjectClasses: {19}( 2.5.6.20 NAME 'dmd' SUP top STRUCTURAL MUST ( dmdName \n ) MAY ( userPassword $ searchGuide $ seeAlso $ businessCategory $ x121Address\n $ registeredAddress $ destinationIndicator $ preferredDeliveryMethod $ telex\n Number $ teletexTerminalIdentifier $ telephoneNumber $ internationaliSDNNumbe\n r $ facsimileTelephoneNumber $ street $ postOfficeBox $ postalCode $ postalAd\n dress $ physicalDeliveryOfficeName $ st $ l $ description ) )\nolcObjectClasses: {20}( 2.5.6.21 NAME 'pkiUser' DESC 'RFC2587: a PKI user' SUP\n top AUXILIARY MAY userCertificate )\nolcObjectClasses: {21}( 2.5.6.22 NAME 'pkiCA' DESC 'RFC2587: PKI certificate a\n uthority' SUP top AUXILIARY MAY ( authorityRevocationList $ certificateRevoca\n tionList $ cACertificate $ crossCertificatePair ) )\nolcObjectClasses: {22}( 2.5.6.23 NAME 'deltaCRL' DESC 'RFC2587: PKI user' SUP \n top AUXILIARY MAY deltaRevocationList )\nolcObjectClasses: {23}( 1.3.6.1.4.1.250.3.15 NAME 'labeledURIObject' DESC 'RFC\n 2079: object that contains the URI attribute type' MAY ( labeledURI ) SUP top\n AUXILIARY )\nolcObjectClasses: {24}( 0.9.2342.19200300.100.4.19 NAME 'simpleSecurityObject'\n DESC 'RFC1274: simple security object' SUP top AUXILIARY MUST userPassword )\nolcObjectClasses: {25}( 1.3.6.1.4.1.1466.344 NAME 'dcObject' DESC 'RFC2247: do\n main component object' SUP top AUXILIARY MUST dc )\nolcObjectClasses: {26}( 1.3.6.1.1.3.1 NAME 'uidObject' DESC 'RFC2377: uid obje\n ct' SUP top AUXILIARY MUST uid )\n\n# {1}cosine, schema, config\ndn: cn={1}cosine,cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: {1}cosine\nolcAttributeTypes: {0}( 0.9.2342.19200300.100.1.2 NAME 'textEncodedORAddress' \n EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.\n 1466.115.121.1.15{256} )\nolcAttributeTypes: {1}( 0.9.2342.19200300.100.1.4 NAME 'info' DESC 'RFC1274: g\n eneral information' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch\n SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{2048} )\nolcAttributeTypes: {2}( 0.9.2342.19200300.100.1.5 NAME ( 'drink' 'favouriteDri\n nk' ) DESC 'RFC1274: favorite drink' EQUALITY caseIgnoreMatch SUBSTR caseIgno\n reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {3}( 0.9.2342.19200300.100.1.6 NAME 'roomNumber' DESC 'RFC1\n 274: room number' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch S\n YNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {4}( 0.9.2342.19200300.100.1.7 NAME 'photo' DESC 'RFC1274: \n photo (G3 fax)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.23{25000} )\nolcAttributeTypes: {5}( 0.9.2342.19200300.100.1.8 NAME 'userClass' DESC 'RFC12\n 74: category of user' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMat\n ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {6}( 0.9.2342.19200300.100.1.9 NAME 'host' DESC 'RFC1274: h\n ost computer' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTA\n X 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {7}( 0.9.2342.19200300.100.1.10 NAME 'manager' DESC 'RFC127\n 4: DN of manager' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115\n .121.1.12 )\nolcAttributeTypes: {8}( 0.9.2342.19200300.100.1.11 NAME 'documentIdentifier' D\n ESC 'RFC1274: unique identifier of document' EQUALITY caseIgnoreMatch SUBSTR \n caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {9}( 0.9.2342.19200300.100.1.12 NAME 'documentTitle' DESC '\n RFC1274: title of document' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstri\n ngsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {10}( 0.9.2342.19200300.100.1.13 NAME 'documentVersion' DES\n C 'RFC1274: version of document' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSu\n bstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {11}( 0.9.2342.19200300.100.1.14 NAME 'documentAuthor' DESC\n 'RFC1274: DN of author of document' EQUALITY distinguishedNameMatch SYNTAX 1\n .3.6.1.4.1.1466.115.121.1.12 )\nolcAttributeTypes: {12}( 0.9.2342.19200300.100.1.15 NAME 'documentLocation' DE\n SC 'RFC1274: location of document original' EQUALITY caseIgnoreMatch SUBSTR c\n aseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {13}( 0.9.2342.19200300.100.1.20 NAME ( 'homePhone' 'homeTe\n lephoneNumber' ) DESC 'RFC1274: home telephone number' EQUALITY telephoneNumb\n erMatch SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121\n .1.50 )\nolcAttributeTypes: {14}( 0.9.2342.19200300.100.1.21 NAME 'secretary' DESC 'RFC\n 1274: DN of secretary' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.146\n 6.115.121.1.12 )\nolcAttributeTypes: {15}( 0.9.2342.19200300.100.1.22 NAME 'otherMailbox' SYNTAX\n 1.3.6.1.4.1.1466.115.121.1.39 )\nolcAttributeTypes: {16}( 0.9.2342.19200300.100.1.26 NAME 'aRecord' EQUALITY ca\n seIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {17}( 0.9.2342.19200300.100.1.27 NAME 'mDRecord' EQUALITY c\n aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {18}( 0.9.2342.19200300.100.1.28 NAME 'mXRecord' EQUALITY c\n aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {19}( 0.9.2342.19200300.100.1.29 NAME 'nSRecord' EQUALITY c\n aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {20}( 0.9.2342.19200300.100.1.30 NAME 'sOARecord' EQUALITY \n caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {21}( 0.9.2342.19200300.100.1.31 NAME 'cNAMERecord' EQUALIT\n Y caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {22}( 0.9.2342.19200300.100.1.38 NAME 'associatedName' DESC\n 'RFC1274: DN of entry associated with domain' EQUALITY distinguishedNameMatc\n h SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )\nolcAttributeTypes: {23}( 0.9.2342.19200300.100.1.39 NAME 'homePostalAddress' D\n ESC 'RFC1274: home postal address' EQUALITY caseIgnoreListMatch SUBSTR caseIg\n noreListSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.41 )\nolcAttributeTypes: {24}( 0.9.2342.19200300.100.1.40 NAME 'personalTitle' DESC \n 'RFC1274: personal title' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstring\n sMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {25}( 0.9.2342.19200300.100.1.41 NAME ( 'mobile' 'mobileTel\n ephoneNumber' ) DESC 'RFC1274: mobile telephone number' EQUALITY telephoneNum\n berMatch SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.12\n 1.1.50 )\nolcAttributeTypes: {26}( 0.9.2342.19200300.100.1.42 NAME ( 'pager' 'pagerTelep\n honeNumber' ) DESC 'RFC1274: pager telephone number' EQUALITY telephoneNumber\n Match SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1\n .50 )\nolcAttributeTypes: {27}( 0.9.2342.19200300.100.1.43 NAME ( 'co' 'friendlyCount\n ryName' ) DESC 'RFC1274: friendly country name' EQUALITY caseIgnoreMatch SUBS\n TR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )\nolcAttributeTypes: {28}( 0.9.2342.19200300.100.1.44 NAME 'uniqueIdentifier' DE\n SC 'RFC1274: unique identifer' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.14\n 66.115.121.1.15{256} )\nolcAttributeTypes: {29}( 0.9.2342.19200300.100.1.45 NAME 'organizationalStatus\n ' DESC 'RFC1274: organizational status' EQUALITY caseIgnoreMatch SUBSTR caseI\n gnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {30}( 0.9.2342.19200300.100.1.46 NAME 'janetMailbox' DESC '\n RFC1274: Janet mailbox' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5Subst\n ringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )\nolcAttributeTypes: {31}( 0.9.2342.19200300.100.1.47 NAME 'mailPreferenceOption\n ' DESC 'RFC1274: mail preference option' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27\n )\nolcAttributeTypes: {32}( 0.9.2342.19200300.100.1.48 NAME 'buildingName' DESC '\n RFC1274: name of building' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstrin\n gsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {33}( 0.9.2342.19200300.100.1.49 NAME 'dSAQuality' DESC 'RF\n C1274: DSA Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.19 SINGLE-VALUE )\nolcAttributeTypes: {34}( 0.9.2342.19200300.100.1.50 NAME 'singleLevelQuality' \n DESC 'RFC1274: Single Level Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.13 SIN\n GLE-VALUE )\nolcAttributeTypes: {35}( 0.9.2342.19200300.100.1.51 NAME 'subtreeMinimumQualit\n y' DESC 'RFC1274: Subtree Mininum Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 13 SINGLE-VALUE )\nolcAttributeTypes: {36}( 0.9.2342.19200300.100.1.52 NAME 'subtreeMaximumQualit\n y' DESC 'RFC1274: Subtree Maximun Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 13 SINGLE-VALUE )\nolcAttributeTypes: {37}( 0.9.2342.19200300.100.1.53 NAME 'personalSignature' D\n ESC 'RFC1274: Personal Signature (G3 fax)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 23 )\nolcAttributeTypes: {38}( 0.9.2342.19200300.100.1.54 NAME 'dITRedirect' DESC 'R\n FC1274: DIT Redirect' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466\n .115.121.1.12 )\nolcAttributeTypes: {39}( 0.9.2342.19200300.100.1.55 NAME 'audio' DESC 'RFC1274\n : audio (u-law)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.4{25000} )\nolcAttributeTypes: {40}( 0.9.2342.19200300.100.1.56 NAME 'documentPublisher' D\n ESC 'RFC1274: publisher of document' EQUALITY caseIgnoreMatch SUBSTR caseIgno\n reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )\nolcObjectClasses: {0}( 0.9.2342.19200300.100.4.4 NAME ( 'pilotPerson' 'newPilo\n tPerson' ) SUP person STRUCTURAL MAY ( userid $ textEncodedORAddress $ rfc822\n Mailbox $ favouriteDrink $ roomNumber $ userClass $ homeTelephoneNumber $ hom\n ePostalAddress $ secretary $ personalTitle $ preferredDeliveryMethod $ busine\n ssCategory $ janetMailbox $ otherMailbox $ mobileTelephoneNumber $ pagerTelep\n honeNumber $ organizationalStatus $ mailPreferenceOption $ personalSignature \n ) )\nolcObjectClasses: {1}( 0.9.2342.19200300.100.4.5 NAME 'account' SUP top STRUCT\n URAL MUST userid MAY ( description $ seeAlso $ localityName $ organizationNam\n e $ organizationalUnitName $ host ) )\nolcObjectClasses: {2}( 0.9.2342.19200300.100.4.6 NAME 'document' SUP top STRUC\n TURAL MUST documentIdentifier MAY ( commonName $ description $ seeAlso $ loca\n lityName $ organizationName $ organizationalUnitName $ documentTitle $ docume\n ntVersion $ documentAuthor $ documentLocation $ documentPublisher ) )\nolcObjectClasses: {3}( 0.9.2342.19200300.100.4.7 NAME 'room' SUP top STRUCTURA\n L MUST commonName MAY ( roomNumber $ description $ seeAlso $ telephoneNumber \n ) )\nolcObjectClasses: {4}( 0.9.2342.19200300.100.4.9 NAME 'documentSeries' SUP top\n STRUCTURAL MUST commonName MAY ( description $ seeAlso $ telephonenumber $ l\n ocalityName $ organizationName $ organizationalUnitName ) )\nolcObjectClasses: {5}( 0.9.2342.19200300.100.4.13 NAME 'domain' SUP top STRUCT\n URAL MUST domainComponent MAY ( associatedName $ organizationName $ descripti\n on $ businessCategory $ seeAlso $ searchGuide $ userPassword $ localityName $\n stateOrProvinceName $ streetAddress $ physicalDeliveryOfficeName $ postalAdd\n ress $ postalCode $ postOfficeBox $ streetAddress $ facsimileTelephoneNumber \n $ internationalISDNNumber $ telephoneNumber $ teletexTerminalIdentifier $ tel\n exNumber $ preferredDeliveryMethod $ destinationIndicator $ registeredAddress\n $ x121Address ) )\nolcObjectClasses: {6}( 0.9.2342.19200300.100.4.14 NAME 'RFC822localPart' SUP d\n omain STRUCTURAL MAY ( commonName $ surname $ description $ seeAlso $ telepho\n neNumber $ physicalDeliveryOfficeName $ postalAddress $ postalCode $ postOffi\n ceBox $ streetAddress $ facsimileTelephoneNumber $ internationalISDNNumber $ \n telephoneNumber $ teletexTerminalIdentifier $ telexNumber $ preferredDelivery\n Method $ destinationIndicator $ registeredAddress $ x121Address ) )\nolcObjectClasses: {7}( 0.9.2342.19200300.100.4.15 NAME 'dNSDomain' SUP domain \n STRUCTURAL MAY ( ARecord $ MDRecord $ MXRecord $ NSRecord $ SOARecord $ CNAME\n Record ) )\nolcObjectClasses: {8}( 0.9.2342.19200300.100.4.17 NAME 'domainRelatedObject' D\n ESC 'RFC1274: an object related to an domain' SUP top AUXILIARY MUST associat\n edDomain )\nolcObjectClasses: {9}( 0.9.2342.19200300.100.4.18 NAME 'friendlyCountry' SUP c\n ountry STRUCTURAL MUST friendlyCountryName )\nolcObjectClasses: {10}( 0.9.2342.19200300.100.4.20 NAME 'pilotOrganization' SU\n P ( organization $ organizationalUnit ) STRUCTURAL MAY buildingName )\nolcObjectClasses: {11}( 0.9.2342.19200300.100.4.21 NAME 'pilotDSA' SUP dsa STR\n UCTURAL MAY dSAQuality )\nolcObjectClasses: {12}( 0.9.2342.19200300.100.4.22 NAME 'qualityLabelledData' \n SUP top AUXILIARY MUST dsaQuality MAY ( subtreeMinimumQuality $ subtreeMaximu\n mQuality ) )\n\n# {2}nis, schema, config\ndn: cn={2}nis,cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: {2}nis\nolcAttributeTypes: {0}( 1.3.6.1.1.1.1.2 NAME 'gecos' DESC 'The GECOS field; th\n e common name' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatc\n h SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )\nolcAttributeTypes: {1}( 1.3.6.1.1.1.1.3 NAME 'homeDirectory' DESC 'The absolut\n e path to the home directory' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1\n 466.115.121.1.26 SINGLE-VALUE )\nolcAttributeTypes: {2}( 1.3.6.1.1.1.1.4 NAME 'loginShell' DESC 'The path to th\n e login shell' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.2\n 6 SINGLE-VALUE )\nolcAttributeTypes: {3}( 1.3.6.1.1.1.1.5 NAME 'shadowLastChange' EQUALITY integ\n erMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {4}( 1.3.6.1.1.1.1.6 NAME 'shadowMin' EQUALITY integerMatch\n SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {5}( 1.3.6.1.1.1.1.7 NAME 'shadowMax' EQUALITY integerMatch\n SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {6}( 1.3.6.1.1.1.1.8 NAME 'shadowWarning' EQUALITY integerM\n atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {7}( 1.3.6.1.1.1.1.9 NAME 'shadowInactive' EQUALITY integer\n Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {8}( 1.3.6.1.1.1.1.10 NAME 'shadowExpire' EQUALITY integerM\n atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {9}( 1.3.6.1.1.1.1.11 NAME 'shadowFlag' EQUALITY integerMat\n ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {10}( 1.3.6.1.1.1.1.12 NAME 'memberUid' EQUALITY caseExactI\n A5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 26 )\nolcAttributeTypes: {11}( 1.3.6.1.1.1.1.13 NAME 'memberNisNetgroup' EQUALITY ca\n seExactIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.11\n 5.121.1.26 )\nolcAttributeTypes: {12}( 1.3.6.1.1.1.1.14 NAME 'nisNetgroupTriple' DESC 'Netgr\n oup triple' SYNTAX 1.3.6.1.1.1.0.0 )\nolcAttributeTypes: {13}( 1.3.6.1.1.1.1.15 NAME 'ipServicePort' EQUALITY intege\n rMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {14}( 1.3.6.1.1.1.1.16 NAME 'ipServiceProtocol' SUP name )\nolcAttributeTypes: {15}( 1.3.6.1.1.1.1.17 NAME 'ipProtocolNumber' EQUALITY int\n egerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {16}( 1.3.6.1.1.1.1.18 NAME 'oncRpcNumber' EQUALITY integer\n Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {17}( 1.3.6.1.1.1.1.19 NAME 'ipHostNumber' DESC 'IP address\n ' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )\nolcAttributeTypes: {18}( 1.3.6.1.1.1.1.20 NAME 'ipNetworkNumber' DESC 'IP netw\n ork' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SI\n NGLE-VALUE )\nolcAttributeTypes: {19}( 1.3.6.1.1.1.1.21 NAME 'ipNetmaskNumber' DESC 'IP netm\n ask' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SI\n NGLE-VALUE )\nolcAttributeTypes: {20}( 1.3.6.1.1.1.1.22 NAME 'macAddress' DESC 'MAC address'\n EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )\nolcAttributeTypes: {21}( 1.3.6.1.1.1.1.23 NAME 'bootParameter' DESC 'rpc.bootp\n aramd parameter' SYNTAX 1.3.6.1.1.1.0.1 )\nolcAttributeTypes: {22}( 1.3.6.1.1.1.1.24 NAME 'bootFile' DESC 'Boot image nam\n e' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {23}( 1.3.6.1.1.1.1.26 NAME 'nisMapName' SUP name )\nolcAttributeTypes: {24}( 1.3.6.1.1.1.1.27 NAME 'nisMapEntry' EQUALITY caseExac\n tIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.\n 1.26{1024} SINGLE-VALUE )\nolcObjectClasses: {0}( 1.3.6.1.1.1.2.0 NAME 'posixAccount' DESC 'Abstraction o\n f an account with POSIX attributes' SUP top AUXILIARY MUST ( cn $ uid $ uidNu\n mber $ gidNumber $ homeDirectory ) MAY ( userPassword $ loginShell $ gecos $ \n description ) )\nolcObjectClasses: {1}( 1.3.6.1.1.1.2.1 NAME 'shadowAccount' DESC 'Additional a\n ttributes for shadow passwords' SUP top AUXILIARY MUST uid MAY ( userPassword\n $ shadowLastChange $ shadowMin $ shadowMax $ shadowWarning $ shadowInactive \n $ shadowExpire $ shadowFlag $ description ) )\nolcObjectClasses: {2}( 1.3.6.1.1.1.2.2 NAME 'posixGroup' DESC 'Abstraction of \n a group of accounts' SUP top STRUCTURAL MUST ( cn $ gidNumber ) MAY ( userPas\n sword $ memberUid $ description ) )\nolcObjectClasses: {3}( 1.3.6.1.1.1.2.3 NAME 'ipService' DESC 'Abstraction an I\n nternet Protocol service' SUP top STRUCTURAL MUST ( cn $ ipServicePort $ ipSe\n rviceProtocol ) MAY description )\nolcObjectClasses: {4}( 1.3.6.1.1.1.2.4 NAME 'ipProtocol' DESC 'Abstraction of \n an IP protocol' SUP top STRUCTURAL MUST ( cn $ ipProtocolNumber $ description\n ) MAY description )\nolcObjectClasses: {5}( 1.3.6.1.1.1.2.5 NAME 'oncRpc' DESC 'Abstraction of an O\n NC/RPC binding' SUP top STRUCTURAL MUST ( cn $ oncRpcNumber $ description ) M\n AY description )\nolcObjectClasses: {6}( 1.3.6.1.1.1.2.6 NAME 'ipHost' DESC 'Abstraction of a ho\n st, an IP device' SUP top AUXILIARY MUST ( cn $ ipHostNumber ) MAY ( l $ desc\n ription $ manager ) )\nolcObjectClasses: {7}( 1.3.6.1.1.1.2.7 NAME 'ipNetwork' DESC 'Abstraction of a\n n IP network' SUP top STRUCTURAL MUST ( cn $ ipNetworkNumber ) MAY ( ipNetmas\n kNumber $ l $ description $ manager ) )\nolcObjectClasses: {8}( 1.3.6.1.1.1.2.8 NAME 'nisNetgroup' DESC 'Abstraction of\n a netgroup' SUP top STRUCTURAL MUST cn MAY ( nisNetgroupTriple $ memberNisNe\n tgroup $ description ) )\nolcObjectClasses: {9}( 1.3.6.1.1.1.2.9 NAME 'nisMap' DESC 'A generic abstracti\n on of a NIS map' SUP top STRUCTURAL MUST nisMapName MAY description )\nolcObjectClasses: {10}( 1.3.6.1.1.1.2.10 NAME 'nisObject' DESC 'An entry in a \n NIS map' SUP top STRUCTURAL MUST ( cn $ nisMapEntry $ nisMapName ) MAY descri\n ption )\nolcObjectClasses: {11}( 1.3.6.1.1.1.2.11 NAME 'ieee802Device' DESC 'A device w\n ith a MAC address' SUP top AUXILIARY MAY macAddress )\nolcObjectClasses: {12}( 1.3.6.1.1.1.2.12 NAME 'bootableDevice' DESC 'A device \n with boot parameters' SUP top AUXILIARY MAY ( bootFile $ bootParameter ) )\n\n# {3}inetorgperson, schema, config\ndn: cn={3}inetorgperson,cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: {3}inetorgperson\nolcAttributeTypes: {0}( 2.16.840.1.113730.3.1.1 NAME 'carLicense' DESC 'RFC279\n 8: vehicle license or registration plate' EQUALITY caseIgnoreMatch SUBSTR cas\n eIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )\nolcAttributeTypes: {1}( 2.16.840.1.113730.3.1.2 NAME 'departmentNumber' DESC '\n RFC2798: identifies a department within an organization' EQUALITY caseIgnoreM\n atch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )\nolcAttributeTypes: {2}( 2.16.840.1.113730.3.1.241 NAME 'displayName' DESC 'RFC\n 2798: preferred name to be used when displaying entries' EQUALITY caseIgnoreM\n atch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SI\n NGLE-VALUE )\nolcAttributeTypes: {3}( 2.16.840.1.113730.3.1.3 NAME 'employeeNumber' DESC 'RF\n C2798: numerically identifies an employee within an organization' EQUALITY ca\n seIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.12\n 1.1.15 SINGLE-VALUE )\nolcAttributeTypes: {4}( 2.16.840.1.113730.3.1.4 NAME 'employeeType' DESC 'RFC2\n 798: type of employment for a person' EQUALITY caseIgnoreMatch SUBSTR caseIgn\n oreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )\nolcAttributeTypes: {5}( 0.9.2342.19200300.100.1.60 NAME 'jpegPhoto' DESC 'RFC2\n 798: a JPEG image' SYNTAX 1.3.6.1.4.1.1466.115.121.1.28 )\nolcAttributeTypes: {6}( 2.16.840.1.113730.3.1.39 NAME 'preferredLanguage' DESC\n 'RFC2798: preferred written or spoken language for a person' EQUALITY caseIg\n noreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 15 SINGLE-VALUE )\nolcAttributeTypes: {7}( 2.16.840.1.113730.3.1.40 NAME 'userSMIMECertificate' D\n ESC 'RFC2798: PKCS#7 SignedData used to support S/MIME' SYNTAX 1.3.6.1.4.1.14\n 66.115.121.1.5 )\nolcAttributeTypes: {8}( 2.16.840.1.113730.3.1.216 NAME 'userPKCS12' DESC 'RFC2\n 798: personal identity information, a PKCS #12 PFX' SYNTAX 1.3.6.1.4.1.1466.1\n 15.121.1.5 )\nolcObjectClasses: {0}( 2.16.840.1.113730.3.2.2 NAME 'inetOrgPerson' DESC 'RFC2\n 798: Internet Organizational Person' SUP organizationalPerson STRUCTURAL MAY \n ( audio $ businessCategory $ carLicense $ departmentNumber $ displayName $ em\n ployeeNumber $ employeeType $ givenName $ homePhone $ homePostalAddress $ ini\n tials $ jpegPhoto $ labeledURI $ mail $ manager $ mobile $ o $ pager $ photo \n $ roomNumber $ secretary $ uid $ userCertificate $ x500uniqueIdentifier $ pre\n ferredLanguage $ userSMIMECertificate $ userPKCS12 ) )\n\n# {4}ppolicy, schema, config\ndn: cn={4}ppolicy,cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: {4}ppolicy\nolcAttributeTypes: {0}( 1.3.6.1.4.1.42.2.27.8.1.1 NAME 'pwdAttribute' EQUALITY\n objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )\nolcAttributeTypes: {1}( 1.3.6.1.4.1.42.2.27.8.1.2 NAME 'pwdMinAge' EQUALITY in\n tegerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {2}( 1.3.6.1.4.1.42.2.27.8.1.3 NAME 'pwdMaxAge' EQUALITY in\n tegerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {3}( 1.3.6.1.4.1.42.2.27.8.1.4 NAME 'pwdInHistory' EQUALITY\n integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {4}( 1.3.6.1.4.1.42.2.27.8.1.5 NAME 'pwdCheckQuality' EQUAL\n ITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {5}( 1.3.6.1.4.1.42.2.27.8.1.6 NAME 'pwdMinLength' EQUALITY\n integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {6}( 1.3.6.1.4.1.42.2.27.8.1.7 NAME 'pwdExpireWarning' EQUA\n LITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {7}( 1.3.6.1.4.1.42.2.27.8.1.8 NAME 'pwdGraceAuthNLimit' EQ\n UALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {8}( 1.3.6.1.4.1.42.2.27.8.1.9 NAME 'pwdLockout' EQUALITY b\n ooleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )\nolcAttributeTypes: {9}( 1.3.6.1.4.1.42.2.27.8.1.10 NAME 'pwdLockoutDuration' E\n QUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {10}( 1.3.6.1.4.1.42.2.27.8.1.11 NAME 'pwdMaxFailure' EQUAL\n ITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {11}( 1.3.6.1.4.1.42.2.27.8.1.12 NAME 'pwdFailureCountInter\n val' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE \n )\nolcAttributeTypes: {12}( 1.3.6.1.4.1.42.2.27.8.1.13 NAME 'pwdMustChange' EQUAL\n ITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )\nolcAttributeTypes: {13}( 1.3.6.1.4.1.42.2.27.8.1.14 NAME 'pwdAllowUserChange' \n EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )\nolcAttributeTypes: {14}( 1.3.6.1.4.1.42.2.27.8.1.15 NAME 'pwdSafeModify' EQUAL\n ITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )\nolcAttributeTypes: {15}( 1.3.6.1.4.1.4754.1.99.1 NAME 'pwdCheckModule' DESC 'L\n oadable module that instantiates \"check_password() function' EQUALITY caseExa\n ctIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )\nolcObjectClasses: {0}( 1.3.6.1.4.1.4754.2.99.1 NAME 'pwdPolicyChecker' SUP top\n AUXILIARY MAY pwdCheckModule )\nolcObjectClasses: {1}( 1.3.6.1.4.1.42.2.27.8.2.1 NAME 'pwdPolicy' SUP top AUXI\n LIARY MUST pwdAttribute MAY ( pwdMinAge $ pwdMaxAge $ pwdInHistory $ pwdCheck\n Quality $ pwdMinLength $ pwdExpireWarning $ pwdGraceAuthNLimit $ pwdLockout $\n pwdLockoutDuration $ pwdMaxFailure $ pwdFailureCountInterval $ pwdMustChange\n $ pwdAllowUserChange $ pwdSafeModify ) )\n\n# {0}hdb, config\ndn: olcBackend={0}hdb,cn=config\nobjectClass: olcBackendConfig\nolcBackend: {0}hdb\n\n# {-1}frontend, config\ndn: olcDatabase={-1}frontend,cn=config\nobjectClass: olcDatabaseConfig\nobjectClass: olcFrontendConfig\nolcDatabase: {-1}frontend\nolcAccess: {0}to \* by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external\n ,cn=auth manage by \* break\nolcAccess: {1}to dn.exact=\"\" by \* read\nolcAccess: {2}to dn.base=\"cn=Subschema\" by \* read\nolcSizeLimit: 500\n\n# {0}config, config\ndn: olcDatabase={0}config,cn=config\nobjectClass: olcDatabaseConfig\nolcDatabase: {0}config\nolcAccess: {0}to \* by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external\n ,cn=auth manage by \* break\nolcRootDN: cn=admin,cn=config\n\n# {1}hdb, config\ndn: olcDatabase={1}hdb,cn=config\nobjectClass: olcDatabaseConfig\nobjectClass: olcHdbConfig\nolcDatabase: {1}hdb\nolcDbDirectory: /var/lib/ldap\nolcLastMod: TRUE\nolcDbCheckpoint: 512 30\nolcDbConfig: {0}set_cachesize 0 2097152 0\nolcDbConfig: {1}set_lk_max_objects 1500\nolcDbConfig: {2}set_lk_max_locks 1500\nolcDbConfig: {3}set_lk_max_lockers 1500\nolcDbIndex: objectClass eq\nolcAccess: {0}to attrs=userPassword,shadowLastChange by self write by anonymou\n s auth by dn=\"cn=admin,dc=local\" write by group/groupOfUniqueNames/uniqueMemb\n er=\"cn=Administrator,ou=Group,dc=idp,ou=Services,dc=local\" write by \* none\nolcAccess: {1}to dn.base=\"\" by \* read\nolcAccess: {2}to \* by self write by dn=\"cn=admin,dc=local\" write by group/grou\n pOfUniqueNames/uniqueMember=\"cn=Administrator,ou=Group,dc=idp,ou=Services,dc=\n local\" write by \* read\nolcSuffix: dc=local\nolcRootDN: cn=admin,dc=local\nolcRootPW: {SSHA}jmCpKQYSdLhShP0FnvFHjd9dYc9z73PX\n\n# {0}ppolicy, {1}hdb, config\ndn: olcOverlay={0}ppolicy,olcDatabase={1}hdb,cn=config\nobjectClass: top\nobjectClass: olcConfig\nobjectClass: olcOverlayConfig\nobjectClass: olcPPolicyConfig\nolcOverlay: {0}ppolicy\nolcPPolicyDefault: cn=default,ou=policies,dc=local\nolcPPolicyHashCleartext: TRUE\n\n# {1}memberof, {1}hdb, config\ndn: olcOverlay={1}memberof,olcDatabase={1}hdb,cn=config\nobjectClass: top\nobjectClass: olcConfig\nobjectClass: olcOverlayConfig\nobjectClass: olcMemberOf\nolcOverlay: {1}memberof\nolcMemberOfDangling: drop\nolcMemberOfRefInt: TRUE\nolcMemberOfGroupOC: groupOfUniqueNames\nolcMemberOfMemberAD: uniqueMember\n\n# search result\nsearch: 2\nresult: 0 Success\n\n# numResponses: 15\n# numEntries: 14", "stdout_lines": ["# extended LDIF", "#", "# LDAPv3", "# base with scope subtree", "# filter: (objectclass=_)", "# requesting: ALL", "#", "", "# config", "dn: cn=config", "objectClass: olcGlobal", "cn: config", "olcArgsFile: /var/run/slapd/slapd.args", "olcLogLevel: none", "olcPidFile: /var/run/slapd/slapd.pid", "olcToolThreads: 1", "", "# module{0}, config", "dn: cn=module{0},cn=config", "objectClass: olcModuleList", "cn: module{0}", "olcModulePath: /usr/lib/ldap", "olcModuleLoad: {0}back_hdb", "olcModuleLoad: {1}memberof", "olcModuleLoad: {2}ppolicy", "", "# schema, config", "dn: cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: schema", "olcObjectIdentifier: OLcfg 1.3.6.1.4.1.4203.1.12.2", "olcObjectIdentifier: OLcfgAt OLcfg:3", "olcObjectIdentifier: OLcfgGlAt OLcfgAt:0", "olcObjectIdentifier: OLcfgBkAt OLcfgAt:1", "olcObjectIdentifier: OLcfgDbAt OLcfgAt:2", "olcObjectIdentifier: OLcfgOvAt OLcfgAt:3", "olcObjectIdentifier: OLcfgCtAt OLcfgAt:4", "olcObjectIdentifier: OLcfgOc OLcfg:4", "olcObjectIdentifier: OLcfgGlOc OLcfgOc:0", "olcObjectIdentifier: OLcfgBkOc OLcfgOc:1", "olcObjectIdentifier: OLcfgDbOc OLcfgOc:2", "olcObjectIdentifier: OLcfgOvOc OLcfgOc:3", "olcObjectIdentifier: OLcfgCtOc OLcfgOc:4", "olcObjectIdentifier: OMsyn 1.3.6.1.4.1.1466.115.121.1", "olcObjectIdentifier: OMsBoolean OMsyn:7", "olcObjectIdentifier: OMsDN OMsyn:12", "olcObjectIdentifier: OMsDirectoryString OMsyn:15", "olcObjectIdentifier: OMsIA5String OMsyn:26", "olcObjectIdentifier: OMsInteger OMsyn:27", "olcObjectIdentifier: OMsOID OMsyn:38", "olcObjectIdentifier: OMsOctetString OMsyn:40", "olcAttributeTypes: ( 2.5.4.0 NAME 'objectClass' DESC 'RFC4512: object classes ", " of the entity' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121", " .1.38 )", "olcAttributeTypes: ( 2.5.21.9 NAME 'structuralObjectClass' DESC 'RFC4512: stru", " ctural object class of entry' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4", " .1.1466.115.121.1.38 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperati", " on )", "olcAttributeTypes: ( 2.5.18.1 NAME 'createTimestamp' DESC 'RFC4512: time which", " object was created' EQUALITY generalizedTimeMatch ORDERING generalizedTimeOr", " deringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE NO-USER-MODIFIC", " ATION USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.2 NAME 'modifyTimestamp' DESC 'RFC4512: time which", " object was last modified' EQUALITY generalizedTimeMatch ORDERING generalized", " TimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE NO-USER-M", " ODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.3 NAME 'creatorsName' DESC 'RFC4512: name of creat", " or' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SING", " LE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.4 NAME 'modifiersName' DESC 'RFC4512: name of last", " modifier' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 12 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.9 NAME 'hasSubordinates' DESC 'X.501: entry has ch", " ildren' EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALU", " E NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.10 NAME 'subschemaSubentry' DESC 'RFC4512: name of", " controlling subschema entry' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.", " 4.1.1466.115.121.1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperat", " ion )", "olcAttributeTypes: ( 1.3.6.1.1.20 NAME 'entryDN' DESC 'DN of the entry' EQUALI", " TY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE N", " O-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.1.16.4 NAME 'entryUUID' DESC 'UUID of the entry' ", " EQUALITY UUIDMatch ORDERING UUIDOrderingMatch SYNTAX 1.3.6.1.1.16.1 SINGLE-VA", " LUE NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.7 NAME 'entryCSN' DESC 'change seq", " uence number of the entry content' EQUALITY CSNMatch ORDERING CSNOrderingMatc", " h SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} SINGLE-VALUE NO-USER-MODIFICATION US", " AGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.13 NAME 'namingCSN' DESC 'change s", " equence number of the entry naming (RDN)' EQUALITY CSNMatch ORDERING CSNOrder", " ingMatch SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} SINGLE-VALUE NO-USER-MODIFICA", " TION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.23 NAME 'syncreplCookie' DESC 'syn", " crepl Cookie for shadow copy' EQUALITY octetStringMatch ORDERING octetStringO", " rderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE NO-USER-MODIFI", " CATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.25 NAME 'contextCSN' DESC 'the lar", " gest committed CSN of a context' EQUALITY CSNMatch ORDERING CSNOrderingMatch ", " SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} NO-USER-MODIFICATION USAGE dSAOperatio", " n )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.6 NAME 'altServer' DESC 'RFC4512", " : alternative servers' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 USAGE dSAOperatio", " n )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.5 NAME 'namingContexts' DESC 'RF", " C4512: naming contexts' SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 USAGE dSAOperati", " on )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.13 NAME 'supportedControl' DESC ", " 'RFC4512: supported controls' SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAO", " peration )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.7 NAME 'supportedExtension' DESC", " 'RFC4512: supported extended operations' SYNTAX 1.3.6.1.4.1.1466.115.121.1.3", " 8 USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.15 NAME 'supportedLDAPVersion' D", " ESC 'RFC4512: supported LDAP versions' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 U", " SAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.14 NAME 'supportedSASLMechanisms", " ' DESC 'RFC4512: supported SASL mechanisms' SYNTAX 1.3.6.1.4.1.1466.115.121.1", " .15 USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.5 NAME 'supportedFeatures' DESC 'RFC", " 4512: features supported by the server' EQUALITY objectIdentifierMatch SYNTAX", " 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.10 NAME 'monitorContext' DESC 'mon", " itor context' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121", " .1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.1.12.2.1 NAME 'configContext' DESC 'conf", " ig context' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1", " .12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.1.4 NAME 'vendorName' DESC 'RFC3045: name of impl", " ementation vendor' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 15 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.1.5 NAME 'vendorVersion' DESC 'RFC3045: version o", " f implementation' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.1", " 5 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 2.5.18.5 NAME 'administrativeRole' DESC 'RFC3672: adminis", " trative role' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121.", " 1.38 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.6 NAME 'subtreeSpecification' DESC 'RFC3672: subtr", " ee specification' SYNTAX 1.3.6.1.4.1.1466.115.121.1.45 SINGLE-VALUE USAGE dir", " ectoryOperation )", "olcAttributeTypes: ( 2.5.21.1 NAME 'dITStructureRules' DESC 'RFC4512: DIT stru", " cture rules' EQUALITY integerFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.", " 121.1.17 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.2 NAME 'dITContentRules' DESC 'RFC4512: DIT conten", " t rules' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466", " .115.121.1.16 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.4 NAME 'matchingRules' DESC 'RFC4512: matching rul", " es' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.", " 121.1.30 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.5 NAME 'attributeTypes' DESC 'RFC4512: attribute t", " ypes' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.11", " 5.121.1.3 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.6 NAME 'objectClasses' DESC 'RFC4512: object class", " es' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.", " 121.1.37 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.7 NAME 'nameForms' DESC 'RFC4512: name forms ' EQU", " ALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.3", " 5 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.8 NAME 'matchingRuleUse' DESC 'RFC4512: matching r", " ule uses' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.146", " 6.115.121.1.31 USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.16 NAME 'ldapSyntaxes' DESC 'RFC", " 4512: LDAP syntaxes' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.", " 6.1.4.1.1466.115.121.1.54 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.4.1 NAME ( 'aliasedObjectName' 'aliasedEntryName' ) D", " ESC 'RFC4512: name of aliased object' EQUALITY distinguishedNameMatch SYNTAX ", " 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )", "olcAttributeTypes: ( 2.16.840.1.113730.3.1.34 NAME 'ref' DESC 'RFC3296: subord", " inate referral URL' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1", " .15 USAGE distributedOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.1 NAME 'entry' DESC 'OpenLDAP ACL en", " try pseudo-attribute' SYNTAX 1.3.6.1.4.1.4203.1.1.1 SINGLE-VALUE NO-USER-MODI", " FICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.2 NAME 'children' DESC 'OpenLDAP ACL", " children pseudo-attribute' SYNTAX 1.3.6.1.4.1.4203.1.1.1 SINGLE-VALUE NO-USE", " R-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.8 NAME ( 'authzTo' 'saslAuthzTo' )", " DESC 'proxy authorization targets' EQUALITY authzMatch SYNTAX 1.3.6.1.4.1.42", " 03.666.2.7 USAGE distributedOperation X-ORDERED 'VALUES' )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.9 NAME ( 'authzFrom' 'saslAuthzFro", " m' ) DESC 'proxy authorization sources' EQUALITY authzMatch SYNTAX 1.3.6.1.4.", " 1.4203.666.2.7 USAGE distributedOperation X-ORDERED 'VALUES' )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.119.3 NAME 'entryTtl' DESC 'RFC2589:", " entry time-to-live' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE NO-USE", " R-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.119.4 NAME 'dynamicSubtrees' DESC 'R", " FC2589: dynamic subtrees' SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 NO-USER-MODIFI", " CATION USAGE dSAOperation )", "olcAttributeTypes: ( 2.5.4.49 NAME 'distinguishedName' DESC 'RFC4519: common s", " upertype of DN attributes' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1", " .1466.115.121.1.12 )", "olcAttributeTypes: ( 2.5.4.41 NAME 'name' DESC 'RFC4519: common supertype of n", " ame attributes' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYN", " TAX 1.3.6.1.4.1.1466.115.121.1.15{32768} )", "olcAttributeTypes: ( 2.5.4.3 NAME ( 'cn' 'commonName' ) DESC 'RFC4519: common ", " name(s) for which the entity is known by' SUP name )", "olcAttributeTypes: ( 0.9.2342.19200300.100.1.1 NAME ( 'uid' 'userid' ) DESC 'R", " FC4519: user identifier' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstrings", " Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: ( 1.3.6.1.1.1.1.0 NAME 'uidNumber' DESC 'RFC2307: An intege", " r uniquely identifying a user in an administrative domain' EQUALITY integerMa", " tch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: ( 1.3.6.1.1.1.1.1 NAME 'gidNumber' DESC 'RFC2307: An intege", " r uniquely identifying a group in an administrative domain' EQUALITY integerM", " atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: ( 2.5.4.35 NAME 'userPassword' DESC 'RFC4519/2307: password", " of user' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128}", " )", "olcAttributeTypes: ( 1.3.6.1.4.1.250.1.57 NAME 'labeledURI' DESC 'RFC2079: Uni", " form Resource Identifier with optional label' EQUALITY caseExactMatch SYNTAX ", " 1.3.6.1.4.1.1466.115.121.1.15 )", "olcAttributeTypes: ( 2.5.4.13 NAME 'description' DESC 'RFC4519: descriptive in", " formation' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1", " .3.6.1.4.1.1466.115.121.1.15{1024} )", "olcAttributeTypes: ( 2.5.4.34 NAME 'seeAlso' DESC 'RFC4519: DN of related obje", " ct' SUP distinguishedName )", "olcAttributeTypes: ( OLcfgGlAt:78 NAME 'olcConfigFile' DESC 'File for slapd co", " nfiguration directives' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SI", " NGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:79 NAME 'olcConfigDir' DESC 'Directory for slap", " d configuration backend' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString S", " INGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:1 NAME 'olcAccess' DESC 'Access Control List' E", " QUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:86 NAME 'olcAddContentAcl' DESC 'Check ACLs aga", " inst content of Add ops' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:2 NAME 'olcAllows' DESC 'Allowed set of depreca", " ted features' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:3 NAME 'olcArgsFile' DESC 'File for slapd comma", " nd line options' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VA", " LUE )", "olcAttributeTypes: ( OLcfgGlAt:5 NAME 'olcAttributeOptions' EQUALITY caseIgnor", " eMatch SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:4 NAME 'olcAttributeTypes' DESC 'OpenLDAP attri", " buteTypes' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALU", " ES' )", "olcAttributeTypes: ( OLcfgGlAt:6 NAME 'olcAuthIDRewrite' EQUALITY caseIgnoreMa", " tch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:7 NAME 'olcAuthzPolicy' EQUALITY caseIgnoreMatc", " h SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:8 NAME 'olcAuthzRegexp' EQUALITY caseIgnoreMatc", " h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:9 NAME 'olcBackend' DESC 'A type of backend' EQ", " UALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VALUE X-ORDERED 'SIBL", " INGS' )", "olcAttributeTypes: ( OLcfgGlAt:10 NAME 'olcConcurrency' SYNTAX OMsInteger SING", " LE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:11 NAME 'olcConnMaxPending' SYNTAX OMsInteger S", " INGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:12 NAME 'olcConnMaxPendingAuth' SYNTAX OMsInteg", " er SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:13 NAME 'olcDatabase' DESC 'The backend type fo", " r a database instance' SUP olcBackend SINGLE-VALUE X-ORDERED 'SIBLINGS' )", "olcAttributeTypes: ( OLcfgGlAt:14 NAME 'olcDefaultSearchBase' SYNTAX OMsDN SIN", " GLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:15 NAME 'olcDisallows' EQUALITY caseIgnoreMatch", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:16 NAME 'olcDitContentRules' DESC 'OpenLDAP DIT", " content rules' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED ", " 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:17 NAME 'olcGentleHUP' SYNTAX OMsBoolean SINGLE", " -VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.17 NAME 'olcHidden' SYNTAX OMsBoolean SINGLE-", " VALUE )", "olcAttributeTypes: ( OLcfgGlAt:18 NAME 'olcIdleTimeout' SYNTAX OMsInteger SING", " LE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:19 NAME 'olcInclude' SUP labeledURI )", "olcAttributeTypes: ( OLcfgGlAt:20 NAME 'olcIndexSubstrIfMinLen' SYNTAX OMsInte", " ger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:21 NAME 'olcIndexSubstrIfMaxLen' SYNTAX OMsInte", " ger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:22 NAME 'olcIndexSubstrAnyLen' SYNTAX OMsIntege", " r SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:23 NAME 'olcIndexSubstrAnyStep' SYNTAX OMsInteg", " er SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:84 NAME 'olcIndexIntLen' SYNTAX OMsInteger SING", " LE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.4 NAME 'olcLastMod' SYNTAX OMsBoolean SINGLE-", " VALUE )", "olcAttributeTypes: ( OLcfgGlAt:85 NAME 'olcLdapSyntaxes' DESC 'OpenLDAP ldapSy", " ntax' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgDbAt:0.5 NAME 'olcLimits' EQUALITY caseIgnoreMatch S", " YNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:26 NAME 'olcLocalSSF' SYNTAX OMsInteger SINGLE-", " VALUE )", "olcAttributeTypes: ( OLcfgGlAt:27 NAME 'olcLogFile' SYNTAX OMsDirectoryString ", " SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:28 NAME 'olcLogLevel' EQUALITY caseIgnoreMatch ", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgDbAt:0.6 NAME 'olcMaxDerefDepth' SYNTAX OMsInteger S", " INGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.16 NAME 'olcMirrorMode' SYNTAX OMsBoolean SIN", " GLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:30 NAME 'olcModuleLoad' EQUALITY caseIgnoreMatc", " h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:31 NAME 'olcModulePath' SYNTAX OMsDirectoryStri", " ng SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.18 NAME 'olcMonitoring' SYNTAX OMsBoolean SIN", " GLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:32 NAME 'olcObjectClasses' DESC 'OpenLDAP objec", " t classes' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALU", " ES' )", "olcAttributeTypes: ( OLcfgGlAt:33 NAME 'olcObjectIdentifier' EQUALITY caseIgno", " reMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:34 NAME 'olcOverlay' SUP olcDatabase SINGLE-VAL", " UE X-ORDERED 'SIBLINGS' )", "olcAttributeTypes: ( OLcfgGlAt:35 NAME 'olcPasswordCryptSaltFormat' SYNTAX OMs", " DirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:36 NAME 'olcPasswordHash' EQUALITY caseIgnoreMa", " tch SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:37 NAME 'olcPidFile' SYNTAX OMsDirectoryString ", " SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:38 NAME 'olcPlugin' EQUALITY caseIgnoreMatch SY", " NTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:39 NAME 'olcPluginLogFile' SYNTAX OMsDirectoryS", " tring SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:40 NAME 'olcReadOnly' SYNTAX OMsBoolean SINGLE-", " VALUE )", "olcAttributeTypes: ( OLcfgGlAt:41 NAME 'olcReferral' SUP labeledURI SINGLE-VAL", " UE )", "olcAttributeTypes: ( OLcfgDbAt:0.7 NAME 'olcReplica' SUP labeledURI EQUALITY c", " aseIgnoreMatch X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:43 NAME 'olcReplicaArgsFile' SYNTAX OMsDirector", " yString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:44 NAME 'olcReplicaPidFile' SYNTAX OMsDirectory", " String SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:45 NAME 'olcReplicationInterval' SYNTAX OMsInte", " ger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:46 NAME 'olcReplogFile' SYNTAX OMsDirectoryStri", " ng SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:47 NAME 'olcRequires' EQUALITY caseIgnoreMatch ", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:48 NAME 'olcRestrict' EQUALITY caseIgnoreMatch ", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:49 NAME 'olcReverseLookup' SYNTAX OMsBoolean SI", " NGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.8 NAME 'olcRootDN' EQUALITY distinguishedName", " Match SYNTAX OMsDN SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:51 NAME 'olcRootDSE' EQUALITY caseIgnoreMatch S", " YNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgDbAt:0.9 NAME 'olcRootPW' SYNTAX OMsDirectoryString ", " SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:89 NAME 'olcSaslAuxprops' SYNTAX OMsDirectorySt", " ring SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:53 NAME 'olcSaslHost' SYNTAX OMsDirectoryString", " SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:54 NAME 'olcSaslRealm' SYNTAX OMsDirectoryStrin", " g SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:56 NAME 'olcSaslSecProps' SYNTAX OMsDirectorySt", " ring SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:58 NAME 'olcSchemaDN' EQUALITY distinguishedNam", " eMatch SYNTAX OMsDN SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:59 NAME 'olcSecurity' EQUALITY caseIgnoreMatch ", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:81 NAME 'olcServerID' EQUALITY caseIgnoreMatch ", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:60 NAME 'olcSizeLimit' SYNTAX OMsDirectoryStrin", " g SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:61 NAME 'olcSockbufMaxIncoming' SYNTAX OMsInteg", " er SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:62 NAME 'olcSockbufMaxIncomingAuth' SYNTAX OMsI", " nteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:83 NAME 'olcSortVals' DESC 'Attributes whose va", " lues will always be sorted' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryStrin", " g )", "olcAttributeTypes: ( OLcfgDbAt:0.15 NAME 'olcSubordinate' SYNTAX OMsDirectoryS", " tring SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.10 NAME 'olcSuffix' EQUALITY distinguishedNam", " eMatch SYNTAX OMsDN )", "olcAttributeTypes: ( OLcfgDbAt:0.19 NAME 'olcSyncUseSubentry' DESC 'Store sync", " context in a subentry' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.11 NAME 'olcSyncrepl' EQUALITY caseIgnoreMatc", " h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:90 NAME 'olcTCPBuffer' DESC 'Custom TCP buffer ", " size' SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:66 NAME 'olcThreads' SYNTAX OMsInteger SINGLE-V", " ALUE )", "olcAttributeTypes: ( OLcfgGlAt:67 NAME 'olcTimeLimit' SYNTAX OMsDirectoryStrin", " g )", "olcAttributeTypes: ( OLcfgGlAt:68 NAME 'olcTLSCACertificateFile' SYNTAX OMsDir", " ectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:69 NAME 'olcTLSCACertificatePath' SYNTAX OMsDir", " ectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:70 NAME 'olcTLSCertificateFile' SYNTAX OMsDirec", " toryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:71 NAME 'olcTLSCertificateKeyFile' SYNTAX OMsDi", " rectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:72 NAME 'olcTLSCipherSuite' SYNTAX OMsDirectory", " String SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:73 NAME 'olcTLSCRLCheck' SYNTAX OMsDirectoryStr", " ing SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:82 NAME 'olcTLSCRLFile' SYNTAX OMsDirectoryStri", " ng SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:74 NAME 'olcTLSRandFile' SYNTAX OMsDirectoryStr", " ing SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:75 NAME 'olcTLSVerifyClient' SYNTAX OMsDirector", " yString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:77 NAME 'olcTLSDHParamFile' SYNTAX OMsDirectory", " String SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:87 NAME 'olcTLSProtocolMin' SYNTAX OMsDirectory", " String SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:80 NAME 'olcToolThreads' SYNTAX OMsInteger SING", " LE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.12 NAME 'olcUpdateDN' SYNTAX OMsDN SINGLE-VAL", " UE )", "olcAttributeTypes: ( OLcfgDbAt:0.13 NAME 'olcUpdateRef' SUP labeledURI EQUALIT", " Y caseIgnoreMatch )", "olcAttributeTypes: ( OLcfgGlAt:88 NAME 'olcWriteTimeout' SYNTAX OMsInteger SIN", " GLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.1 NAME 'olcDbDirectory' DESC 'Directory for d", " atabase content' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VA", " LUE )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.5 NAME 'OpenLDAPaci' DESC 'OpenLDA", " P access control information (experimental)' EQUALITY OpenLDAPaciMatch SYNTAX", " 1.3.6.1.4.1.4203.666.2.1 USAGE directoryOperation )", "olcAttributeTypes: ( OLcfgDbAt:1.11 NAME 'olcDbCacheFree' DESC 'Number of extr", " a entries to free when max is reached' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.1 NAME 'olcDbCacheSize' DESC 'Entry cache siz", " e in entries' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.2 NAME 'olcDbCheckpoint' DESC 'Database check", " point interval in kbytes and minutes' SYNTAX OMsDirectoryString SINGLE-VALUE ", " )", "olcAttributeTypes: ( OLcfgDbAt:1.16 NAME 'olcDbChecksum' DESC 'Enable database", " checksum validation' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.13 NAME 'olcDbCryptFile' DESC 'Pathname of fi", " le containing the DB encryption key' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.14 NAME 'olcDbCryptKey' DESC 'DB encryption k", " ey' SYNTAX OMsOctetString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.3 NAME 'olcDbConfig' DESC 'BerkeleyDB DB_CONF", " IG configuration directives' SYNTAX OMsIA5String X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgDbAt:1.4 NAME 'olcDbNoSync' DESC 'Disable synchronou", " s database writes' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.15 NAME 'olcDbPageSize' DESC 'Page size of sp", " ecified DB, in Kbytes' EQUALITY caseExactMatch SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgDbAt:1.5 NAME 'olcDbDirtyRead' DESC 'Allow reads of ", " uncommitted data' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.12 NAME 'olcDbDNcacheSize' DESC 'DN cache siz", " e' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.6 NAME 'olcDbIDLcacheSize' DESC 'IDL cache si", " ze in IDLs' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.2 NAME 'olcDbIndex' DESC 'Attribute index par", " ameters' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgDbAt:1.7 NAME 'olcDbLinearIndex' DESC 'Index attribu", " tes one at a time' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.8 NAME 'olcDbLockDetect' DESC 'Deadlock detec", " tion algorithm' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.3 NAME 'olcDbMode' DESC 'Unix permissions of ", " database files' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.9 NAME 'olcDbSearchStack' DESC 'Depth of sear", " ch stack in IDLs' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.10 NAME 'olcDbShmKey' DESC 'Key for shared me", " mory region' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( 1.2.840.113556.1.2.102 NAME 'memberOf' DESC 'Group that t", " he entry belongs to' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.", " 115.121.1.12 USAGE dSAOperation X-ORIGIN 'iPlanet Delegated Administrator' )", "olcAttributeTypes: ( OLcfgOvAt:18.0 NAME 'olcMemberOfDN' DESC 'DN to be used a", " s modifiersName' SYNTAX OMsDN SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.1 NAME 'olcMemberOfDangling' DESC 'Behavior ", " with respect to dangling members, constrained to ignore, drop, error' SYNTAX ", " OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.2 NAME 'olcMemberOfRefInt' DESC 'Take care o", " f referential integrity' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.3 NAME 'olcMemberOfGroupOC' DESC 'Group obje", " ctClass' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.4 NAME 'olcMemberOfMemberAD' DESC 'member at", " tribute' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.5 NAME 'olcMemberOfMemberOfAD' DESC 'memberO", " f attribute' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.7 NAME 'olcMemberOfDanglingError' DESC 'Erro", " r code returned in case of dangling back reference' SYNTAX OMsDirectoryString", " SINGLE-VALUE )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.16 NAME 'pwdChangedTime' DESC 'Th", " e time the password was last changed' EQUALITY generalizedTimeMatch ORDERING ", " generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALU", " E NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.17 NAME 'pwdAccountLockedTime' DE", " SC 'The time an user account was locked' EQUALITY generalizedTimeMatch ORDERI", " NG generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-V", " ALUE USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.19 NAME 'pwdFailureTime' DESC 'Th", " e timestamps of the last consecutive authentication failures' EQUALITY genera", " lizedTimeMatch ORDERING generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.", " 115.121.1.24 NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.20 NAME 'pwdHistory' DESC 'The hi", " story of users passwords' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.1", " 15.121.1.40 NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.21 NAME 'pwdGraceUseTime' DESC 'T", " he timestamps of the grace login once the password has expired' EQUALITY gene", " ralizedTimeMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 NO-USER-MODIFICATION US", " AGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.22 NAME 'pwdReset' DESC 'The indi", " cation that the password has been reset' EQUALITY booleanMatch SYNTAX 1.3.6.1", " .4.1.1466.115.121.1.7 SINGLE-VALUE USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.23 NAME 'pwdPolicySubentry' DESC ", " 'The pwdPolicy subentry in effect for this object' EQUALITY distinguishedName", " Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE USAGE directoryOperat", " ion )", "olcAttributeTypes: ( OLcfgOvAt:12.1 NAME 'olcPPolicyDefault' DESC 'DN of a pwd", " Policy object for uncustomized objects' SYNTAX OMsDN SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:12.2 NAME 'olcPPolicyHashCleartext' DESC 'Hash ", " passwords on add or modify' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:12.4 NAME 'olcPPolicyForwardUpdates' DESC 'Allo", " w policy state updates to be forwarded via updateref' SYNTAX OMsBoolean SINGL", " E-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:12.3 NAME 'olcPPolicyUseLockout' DESC 'Warn cli", " ents with AccountLocked' SYNTAX OMsBoolean SINGLE-VALUE )", "olcObjectClasses: ( 2.5.6.0 NAME 'top' DESC 'top of the superclass chain' ABST", " RACT MUST objectClass )", "olcObjectClasses: ( 1.3.6.1.4.1.1466.101.120.111 NAME 'extensibleObject' DESC ", " 'RFC4512: extensible object' SUP top AUXILIARY )", "olcObjectClasses: ( 2.5.6.1 NAME 'alias' DESC 'RFC4512: an alias' SUP top STRU", " CTURAL MUST aliasedObjectName )", "olcObjectClasses: ( 2.16.840.1.113730.3.2.6 NAME 'referral' DESC 'namedref: na", " med subordinate referral' SUP top STRUCTURAL MUST ref )", "olcObjectClasses: ( 1.3.6.1.4.1.4203.1.4.1 NAME ( 'OpenLDAProotDSE' 'LDAProotD", " SE' ) DESC 'OpenLDAP Root DSE object' SUP top STRUCTURAL MAY cn )", "olcObjectClasses: ( 2.5.17.0 NAME 'subentry' DESC 'RFC3672: subentry' SUP top ", " STRUCTURAL MUST ( cn $ subtreeSpecification ) )", "olcObjectClasses: ( 2.5.20.1 NAME 'subschema' DESC 'RFC4512: controlling subsc", " hema (sub)entry' AUXILIARY MAY ( dITStructureRules $ nameForms $ dITContentRu", " les $ objectClasses $ attributeTypes $ matchingRules $ matchingRuleUse ) )", "olcObjectClasses: ( 1.3.6.1.4.1.1466.101.119.2 NAME 'dynamicObject' DESC 'RFC2", " 589: Dynamic Object' SUP top AUXILIARY )", "olcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.4 NAME 'glue' DESC 'Glue Entry' SUP", " top STRUCTURAL )", "olcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.5 NAME 'syncConsumerSubentry' DESC ", " 'Persistent Info for SyncRepl Consumer' AUXILIARY MAY syncreplCookie )", "olcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.6 NAME 'syncProviderSubentry' DESC ", " 'Persistent Info for SyncRepl Producer' AUXILIARY MAY contextCSN )", "olcObjectClasses: ( OLcfgGlOc:0 NAME 'olcConfig' DESC 'OpenLDAP configuration ", " object' SUP top ABSTRACT )", "olcObjectClasses: ( OLcfgGlOc:1 NAME 'olcGlobal' DESC 'OpenLDAP Global configu", " ration options' SUP olcConfig STRUCTURAL MAY ( cn $ olcConfigFile $ olcConfig", " Dir $ olcAllows $ olcArgsFile $ olcAttributeOptions $ olcAuthIDRewrite $ olcA", " uthzPolicy $ olcAuthzRegexp $ olcConcurrency $ olcConnMaxPending $ olcConnMax", " PendingAuth $ olcDisallows $ olcGentleHUP $ olcIdleTimeout $ olcIndexSubstrIf", " MaxLen $ olcIndexSubstrIfMinLen $ olcIndexSubstrAnyLen $ olcIndexSubstrAnySte", " p $ olcIndexIntLen $ olcLocalSSF $ olcLogFile $ olcLogLevel $ olcPasswordCryp", " tSaltFormat $ olcPasswordHash $ olcPidFile $ olcPluginLogFile $ olcReadOnly $", " olcReferral $ olcReplogFile $ olcRequires $ olcRestrict $ olcReverseLookup $", " olcRootDSE $ olcSaslAuxprops $ olcSaslHost $ olcSaslRealm $ olcSaslSecProps ", " $ olcSecurity $ olcServerID $ olcSizeLimit $ olcSockbufMaxIncoming $ olcSockb", " ufMaxIncomingAuth $ olcTCPBuffer $ olcThreads $ olcTimeLimit $ olcTLSCACertif", " icateFile $ olcTLSCACertificatePath $ olcTLSCertificateFile $ olcTLSCertifica", " teKeyFile $ olcTLSCipherSuite $ olcTLSCRLCheck $ olcTLSRandFile $ olcTLSVerif", " yClient $ olcTLSDHParamFile $ olcTLSCRLFile $ olcToolThreads $ olcWriteTimeou", " t $ olcObjectIdentifier $ olcAttributeTypes $ olcObjectClasses $ olcDitConten", " tRules $ olcLdapSyntaxes ) )", "olcObjectClasses: ( OLcfgGlOc:2 NAME 'olcSchemaConfig' DESC 'OpenLDAP schema o", " bject' SUP olcConfig STRUCTURAL MAY ( cn $ olcObjectIdentifier $ olcAttribute", " Types $ olcObjectClasses $ olcDitContentRules $ olcLdapSyntaxes ) )", "olcObjectClasses: ( OLcfgGlOc:3 NAME 'olcBackendConfig' DESC 'OpenLDAP Backend", " -specific options' SUP olcConfig STRUCTURAL MUST olcBackend )", "olcObjectClasses: ( OLcfgGlOc:4 NAME 'olcDatabaseConfig' DESC 'OpenLDAP Databa", " se-specific options' SUP olcConfig STRUCTURAL MUST olcDatabase MAY ( olcHidde", " n $ olcSuffix $ olcSubordinate $ olcAccess $ olcAddContentAcl $ olcLastMod $ ", " olcLimits $ olcMaxDerefDepth $ olcPlugin $ olcReadOnly $ olcReplica $ olcRepl", " icaArgsFile $ olcReplicaPidFile $ olcReplicationInterval $ olcReplogFile $ ol", " cRequires $ olcRestrict $ olcRootDN $ olcRootPW $ olcSchemaDN $ olcSecurity $", " olcSizeLimit $ olcSyncUseSubentry $ olcSyncrepl $ olcTimeLimit $ olcUpdateDN", " $ olcUpdateRef $ olcMirrorMode $ olcMonitoring ) )", "olcObjectClasses: ( OLcfgGlOc:5 NAME 'olcOverlayConfig' DESC 'OpenLDAP Overlay", " -specific options' SUP olcConfig STRUCTURAL MUST olcOverlay )", "olcObjectClasses: ( OLcfgGlOc:6 NAME 'olcIncludeFile' DESC 'OpenLDAP configura", " tion include file' SUP olcConfig STRUCTURAL MUST olcInclude MAY ( cn $ olcRoo", " tDSE ) )", "olcObjectClasses: ( OLcfgGlOc:7 NAME 'olcFrontendConfig' DESC 'OpenLDAP fronte", " nd configuration' AUXILIARY MAY ( olcDefaultSearchBase $ olcPasswordHash $ ol", " cSortVals ) )", "olcObjectClasses: ( OLcfgGlOc:8 NAME 'olcModuleList' DESC 'OpenLDAP dynamic mo", " dule info' SUP olcConfig STRUCTURAL MAY ( cn $ olcModulePath $ olcModuleLoad ", " ) )", "olcObjectClasses: ( OLcfgDbOc:2.1 NAME 'olcLdifConfig' DESC 'LDIF backend conf", " iguration' SUP olcDatabaseConfig STRUCTURAL MUST olcDbDirectory )", "olcObjectClasses: ( OLcfgDbOc:1.2 NAME 'olcHdbConfig' DESC 'HDB backend config", " uration' SUP olcDatabaseConfig STRUCTURAL MUST olcDbDirectory MAY ( olcDbCach", " eSize $ olcDbCheckpoint $ olcDbConfig $ olcDbCryptFile $ olcDbCryptKey $ olcD", " bNoSync $ olcDbDirtyRead $ olcDbIDLcacheSize $ olcDbIndex $ olcDbLinearIndex ", " $ olcDbLockDetect $ olcDbMode $ olcDbSearchStack $ olcDbShmKey $ olcDbCacheFr", " ee $ olcDbDNcacheSize $ olcDbPageSize ) )", "olcObjectClasses: ( OLcfgOvOc:18.1 NAME 'olcMemberOf' DESC 'Member-of configur", " ation' SUP olcOverlayConfig STRUCTURAL MAY ( olcMemberOfDN $ olcMemberOfDangl", " ing $ olcMemberOfDanglingError $ olcMemberOfRefInt $ olcMemberOfGroupOC $ olc", " MemberOfMemberAD $ olcMemberOfMemberOfAD ) )", "olcObjectClasses: ( OLcfgOvOc:12.1 NAME 'olcPPolicyConfig' DESC 'Password Poli", " cy configuration' SUP olcOverlayConfig STRUCTURAL MAY ( olcPPolicyDefault $ o", " lcPPolicyHashCleartext $ olcPPolicyUseLockout $ olcPPolicyForwardUpdates ) )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.1 DESC 'ACI Item' X-BINARY-TRANS", " FER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.2 DESC 'Access Point' X-NOT-HUMA", " N-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.3 DESC 'Attribute Type Descripti", " on' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.4 DESC 'Audio' X-NOT-HUMAN-READA", " BLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.5 DESC 'Binary' X-NOT-HUMAN-READ", " ABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.6 DESC 'Bit String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.7 DESC 'Boolean' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.8 DESC 'Certificate' X-BINARY-TR", " ANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.9 DESC 'Certificate List' X-BINA", " RY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.10 DESC 'Certificate Pair' X-BIN", " ARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.1 DESC 'X.509 AttributeCertifi", " cate' X-BINARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.12 DESC 'Distinguished Name' )", "olcLdapSyntaxes: ( 1.2.36.79672281.1.5.0 DESC 'RDN' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.13 DESC 'Data Quality' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.14 DESC 'Delivery Method' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.15 DESC 'Directory String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.16 DESC 'DIT Content Rule Descri", " ption' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.17 DESC 'DIT Structure Rule Desc", " ription' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.19 DESC 'DSA Quality' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.20 DESC 'DSE Type' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.21 DESC 'Enhanced Guide' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.22 DESC 'Facsimile Telephone Num", " ber' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.23 DESC 'Fax' X-NOT-HUMAN-READAB", " LE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.24 DESC 'Generalized Time' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.25 DESC 'Guide' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.26 DESC 'IA5 String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.27 DESC 'Integer' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.28 DESC 'JPEG' X-NOT-HUMAN-READA", " BLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.29 DESC 'Master And Shadow Acces", " s Points' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.30 DESC 'Matching Rule Descripti", " on' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.31 DESC 'Matching Rule Use Descr", " iption' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.32 DESC 'Mail Preference' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.33 DESC 'MHS OR Address' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.34 DESC 'Name And Optional UID' ", " )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.35 DESC 'Name Form Description' ", " )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.36 DESC 'Numeric String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.37 DESC 'Object Class Descriptio", " n' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.38 DESC 'OID' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.39 DESC 'Other Mailbox' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.40 DESC 'Octet String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.41 DESC 'Postal Address' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.42 DESC 'Protocol Information' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.43 DESC 'Presentation Address' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.44 DESC 'Printable String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.11 DESC 'Country String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.45 DESC 'SubtreeSpecification' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.49 DESC 'Supported Algorithm' X-", " BINARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.50 DESC 'Telephone Number' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.51 DESC 'Teletex Terminal Identi", " fier' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.52 DESC 'Telex Number' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.54 DESC 'LDAP Syntax Description", " ' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.55 DESC 'Modify Rights' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.56 DESC 'LDAP Schema Definition'", " )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.57 DESC 'LDAP Schema Description", " ' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.58 DESC 'Substring Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.1.0.0 DESC 'RFC2307 NIS Netgroup Triple' )", "olcLdapSyntaxes: ( 1.3.6.1.1.1.0.1 DESC 'RFC2307 Boot Parameter' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.1 DESC 'Certificate Exact Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.2 DESC 'Certificate Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.3 DESC 'Certificate Pair Exact Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.4 DESC 'Certificate Pair Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.5 DESC 'Certificate List Exact Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.6 DESC 'Certificate List Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.7 DESC 'Algorithm Identifier' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.2 DESC 'AttributeCertificate E", " xact Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.3 DESC 'AttributeCertificate A", " ssertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.16.1 DESC 'UUID' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.2.1 DESC 'CSN' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.2.4 DESC 'CSN SID' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.1.1.1 DESC 'OpenLDAP void' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.2.7 DESC 'OpenLDAP authz' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.2.1 DESC 'OpenLDAP Experimental ACI' )", "", "# {0}core, schema, config", "dn: cn={0}core,cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: {0}core", "olcAttributeTypes: {0}( 2.5.4.2 NAME 'knowledgeInformation' DESC 'RFC2256: kno", " wledge information' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.", " 1.15{32768} )", "olcAttributeTypes: {1}( 2.5.4.4 NAME ( 'sn' 'surname' ) DESC 'RFC2256: last (f", " amily) name(s) for which the entity is known by' SUP name )", "olcAttributeTypes: {2}( 2.5.4.5 NAME 'serialNumber' DESC 'RFC2256: serial numb", " er of the entity' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch S", " YNTAX 1.3.6.1.4.1.1466.115.121.1.44{64} )", "olcAttributeTypes: {3}( 2.5.4.6 NAME ( 'c' 'countryName' ) DESC 'RFC2256: ISO-", " 3166 country 2-letter code' SUP name SINGLE-VALUE )", "olcAttributeTypes: {4}( 2.5.4.7 NAME ( 'l' 'localityName' ) DESC 'RFC2256: loc", " ality which this object resides in' SUP name )", "olcAttributeTypes: {5}( 2.5.4.8 NAME ( 'st' 'stateOrProvinceName' ) DESC 'RFC2", " 256: state or province which this object resides in' SUP name )", "olcAttributeTypes: {6}( 2.5.4.9 NAME ( 'street' 'streetAddress' ) DESC 'RFC225", " 6: street address of this object' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreS", " ubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )", "olcAttributeTypes: {7}( 2.5.4.10 NAME ( 'o' 'organizationName' ) DESC 'RFC2256", " : organization this object belongs to' SUP name )", "olcAttributeTypes: {8}( 2.5.4.11 NAME ( 'ou' 'organizationalUnitName' ) DESC '", " RFC2256: organizational unit this object belongs to' SUP name )", "olcAttributeTypes: {9}( 2.5.4.12 NAME 'title' DESC 'RFC2256: title associated ", " with the entity' SUP name )", "olcAttributeTypes: {10}( 2.5.4.14 NAME 'searchGuide' DESC 'RFC2256: search gui", " de, deprecated by enhancedSearchGuide' SYNTAX 1.3.6.1.4.1.1466.115.121.1.25 )", "olcAttributeTypes: {11}( 2.5.4.15 NAME 'businessCategory' DESC 'RFC2256: busin", " ess category' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTA", " X 1.3.6.1.4.1.1466.115.121.1.15{128} )", "olcAttributeTypes: {12}( 2.5.4.16 NAME 'postalAddress' DESC 'RFC2256: postal a", " ddress' EQUALITY caseIgnoreListMatch SUBSTR caseIgnoreListSubstringsMatch SYN", " TAX 1.3.6.1.4.1.1466.115.121.1.41 )", "olcAttributeTypes: {13}( 2.5.4.17 NAME 'postalCode' DESC 'RFC2256: postal code", " ' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.", " 1.1466.115.121.1.15{40} )", "olcAttributeTypes: {14}( 2.5.4.18 NAME 'postOfficeBox' DESC 'RFC2256: Post Off", " ice Box' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3", " .6.1.4.1.1466.115.121.1.15{40} )", "olcAttributeTypes: {15}( 2.5.4.19 NAME 'physicalDeliveryOfficeName' DESC 'RFC2", " 256: Physical Delivery Office Name' EQUALITY caseIgnoreMatch SUBSTR caseIgnor", " eSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )", "olcAttributeTypes: {16}( 2.5.4.20 NAME 'telephoneNumber' DESC 'RFC2256: Teleph", " one Number' EQUALITY telephoneNumberMatch SUBSTR telephoneNumberSubstringsMat", " ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.50{32} )", "olcAttributeTypes: {17}( 2.5.4.21 NAME 'telexNumber' DESC 'RFC2256: Telex Numb", " er' SYNTAX 1.3.6.1.4.1.1466.115.121.1.52 )", "olcAttributeTypes: {18}( 2.5.4.22 NAME 'teletexTerminalIdentifier' DESC 'RFC22", " 56: Teletex Terminal Identifier' SYNTAX 1.3.6.1.4.1.1466.115.121.1.51 )", "olcAttributeTypes: {19}( 2.5.4.23 NAME ( 'facsimileTelephoneNumber' 'fax' ) DE", " SC 'RFC2256: Facsimile (Fax) Telephone Number' SYNTAX 1.3.6.1.4.1.1466.115.12", " 1.1.22 )", "olcAttributeTypes: {20}( 2.5.4.24 NAME 'x121Address' DESC 'RFC2256: X.121 Addr", " ess' EQUALITY numericStringMatch SUBSTR numericStringSubstringsMatch SYNTAX 1", " .3.6.1.4.1.1466.115.121.1.36{15} )", "olcAttributeTypes: {21}( 2.5.4.25 NAME 'internationaliSDNNumber' DESC 'RFC2256", " : international ISDN number' EQUALITY numericStringMatch SUBSTR numericString", " SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.36{16} )", "olcAttributeTypes: {22}( 2.5.4.26 NAME 'registeredAddress' DESC 'RFC2256: regi", " stered postal address' SUP postalAddress SYNTAX 1.3.6.1.4.1.1466.115.121.1.41", " )", "olcAttributeTypes: {23}( 2.5.4.27 NAME 'destinationIndicator' DESC 'RFC2256: d", " estination indicator' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMat", " ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.44{128} )", "olcAttributeTypes: {24}( 2.5.4.28 NAME 'preferredDeliveryMethod' DESC 'RFC2256", " : preferred delivery method' SYNTAX 1.3.6.1.4.1.1466.115.121.1.14 SINGLE-VALU", " E )", "olcAttributeTypes: {25}( 2.5.4.29 NAME 'presentationAddress' DESC 'RFC2256: pr", " esentation address' EQUALITY presentationAddressMatch SYNTAX 1.3.6.1.4.1.1466", " .115.121.1.43 SINGLE-VALUE )", "olcAttributeTypes: {26}( 2.5.4.30 NAME 'supportedApplicationContext' DESC 'RFC", " 2256: supported application context' EQUALITY objectIdentifierMatch SYNTAX 1.", " 3.6.1.4.1.1466.115.121.1.38 )", "olcAttributeTypes: {27}( 2.5.4.31 NAME 'member' DESC 'RFC2256: member of a gro", " up' SUP distinguishedName )", "olcAttributeTypes: {28}( 2.5.4.32 NAME 'owner' DESC 'RFC2256: owner (of the ob", " ject)' SUP distinguishedName )", "olcAttributeTypes: {29}( 2.5.4.33 NAME 'roleOccupant' DESC 'RFC2256: occupant ", " of role' SUP distinguishedName )", "olcAttributeTypes: {30}( 2.5.4.36 NAME 'userCertificate' DESC 'RFC2256: X.509 ", " user certificate, use ;binary' EQUALITY certificateExactMatch SYNTAX 1.3.6.1.", " 4.1.1466.115.121.1.8 )", "olcAttributeTypes: {31}( 2.5.4.37 NAME 'cACertificate' DESC 'RFC2256: X.509 CA", " certificate, use ;binary' EQUALITY certificateExactMatch SYNTAX 1.3.6.1.4.1.", " 1466.115.121.1.8 )", "olcAttributeTypes: {32}( 2.5.4.38 NAME 'authorityRevocationList' DESC 'RFC2256", " : X.509 authority revocation list, use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.1", " 21.1.9 )", "olcAttributeTypes: {33}( 2.5.4.39 NAME 'certificateRevocationList' DESC 'RFC22", " 56: X.509 certificate revocation list, use ;binary' SYNTAX 1.3.6.1.4.1.1466.1", " 15.121.1.9 )", "olcAttributeTypes: {34}( 2.5.4.40 NAME 'crossCertificatePair' DESC 'RFC2256: X", " .509 cross certificate pair, use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.121.1.1", " 0 )", "olcAttributeTypes: {35}( 2.5.4.42 NAME ( 'givenName' 'gn' ) DESC 'RFC2256: fir", " st name(s) for which the entity is known by' SUP name )", "olcAttributeTypes: {36}( 2.5.4.43 NAME 'initials' DESC 'RFC2256: initials of s", " ome or all of names, but not the surname(s).' SUP name )", "olcAttributeTypes: {37}( 2.5.4.44 NAME 'generationQualifier' DESC 'RFC2256: na", " me qualifier indicating a generation' SUP name )", "olcAttributeTypes: {38}( 2.5.4.45 NAME 'x500UniqueIdentifier' DESC 'RFC2256: X", " .500 unique identifier' EQUALITY bitStringMatch SYNTAX 1.3.6.1.4.1.1466.115.1", " 21.1.6 )", "olcAttributeTypes: {39}( 2.5.4.46 NAME 'dnQualifier' DESC 'RFC2256: DN qualifi", " er' EQUALITY caseIgnoreMatch ORDERING caseIgnoreOrderingMatch SUBSTR caseIgno", " reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.44 )", "olcAttributeTypes: {40}( 2.5.4.47 NAME 'enhancedSearchGuide' DESC 'RFC2256: en", " hanced search guide' SYNTAX 1.3.6.1.4.1.1466.115.121.1.21 )", "olcAttributeTypes: {41}( 2.5.4.48 NAME 'protocolInformation' DESC 'RFC2256: pr", " otocol information' EQUALITY protocolInformationMatch SYNTAX 1.3.6.1.4.1.1466", " .115.121.1.42 )", "olcAttributeTypes: {42}( 2.5.4.50 NAME 'uniqueMember' DESC 'RFC2256: unique me", " mber of a group' EQUALITY uniqueMemberMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1", " .34 )", "olcAttributeTypes: {43}( 2.5.4.51 NAME 'houseIdentifier' DESC 'RFC2256: house ", " identifier' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX ", " 1.3.6.1.4.1.1466.115.121.1.15{32768} )", "olcAttributeTypes: {44}( 2.5.4.52 NAME 'supportedAlgorithms' DESC 'RFC2256: su", " pported algorithms' SYNTAX 1.3.6.1.4.1.1466.115.121.1.49 )", "olcAttributeTypes: {45}( 2.5.4.53 NAME 'deltaRevocationList' DESC 'RFC2256: de", " lta revocation list; use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.121.1.9 )", "olcAttributeTypes: {46}( 2.5.4.54 NAME 'dmdName' DESC 'RFC2256: name of DMD' S", " UP name )", "olcAttributeTypes: {47}( 2.5.4.65 NAME 'pseudonym' DESC 'X.520(4th): pseudonym", " for the object' SUP name )", "olcAttributeTypes: {48}( 0.9.2342.19200300.100.1.3 NAME ( 'mail' 'rfc822Mailbo", " x' ) DESC 'RFC1274: RFC822 Mailbox' EQUALITY caseIgnoreIA5Match SUBSTR ca", " seIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )", "olcAttributeTypes: {49}( 0.9.2342.19200300.100.1.25 NAME ( 'dc' 'domainCompone", " nt' ) DESC 'RFC1274/2247: domain component' EQUALITY caseIgnoreIA5Match SUBST", " R caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VA", " LUE )", "olcAttributeTypes: {50}( 0.9.2342.19200300.100.1.37 NAME 'associatedDomain' DE", " SC 'RFC1274: domain associated with object' EQUALITY caseIgnoreIA5Match SUBST", " R caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {51}( 1.2.840.113549.1.9.1 NAME ( 'email' 'emailAddress' 'p", " kcs9email' ) DESC 'RFC3280: legacy attribute for email addresses in DNs' EQUA", " LITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.", " 1.1466.115.121.1.26{128} )", "olcObjectClasses: {0}( 2.5.6.2 NAME 'country' DESC 'RFC2256: a country' SUP to", " p STRUCTURAL MUST c MAY ( searchGuide $ description ) )", "olcObjectClasses: {1}( 2.5.6.3 NAME 'locality' DESC 'RFC2256: a locality' SUP ", " top STRUCTURAL MAY ( street $ seeAlso $ searchGuide $ st $ l $ description ) ", " )", "olcObjectClasses: {2}( 2.5.6.4 NAME 'organization' DESC 'RFC2256: an organizat", " ion' SUP top STRUCTURAL MUST o MAY ( userPassword $ searchGuide $ seeAlso $ b", " usinessCategory $ x121Address $ registeredAddress $ destinationIndicator $ pr", " eferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier $ telephoneNu", " mber $ internationaliSDNNumber $ facsimileTelephoneNumber $ street $ postOff", " iceBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ st $ l $ d", " escription ) )", "olcObjectClasses: {3}( 2.5.6.5 NAME 'organizationalUnit' DESC 'RFC2256: an org", " anizational unit' SUP top STRUCTURAL MUST ou MAY ( userPassword $ searchGuide", " $ seeAlso $ businessCategory $ x121Address $ registeredAddress $ destination", " Indicator $ preferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier", " $ telephoneNumber $ internationaliSDNNumber $ facsimileTelephoneNumber $ str", " eet $ postOfficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName", " $ st $ l $ description ) )", "olcObjectClasses: {4}( 2.5.6.6 NAME 'person' DESC 'RFC2256: a person' SUP top ", " STRUCTURAL MUST ( sn $ cn ) MAY ( userPassword $ telephoneNumber $ seeAlso $ ", " description ) )", "olcObjectClasses: {5}( 2.5.6.7 NAME 'organizationalPerson' DESC 'RFC2256: an o", " rganizational person' SUP person STRUCTURAL MAY ( title $ x121Address $ regis", " teredAddress $ destinationIndicator $ preferredDeliveryMethod $ telexNumber $", " teletexTerminalIdentifier $ telephoneNumber $ internationaliSDNNumber $ fac", " simileTelephoneNumber $ street $ postOfficeBox $ postalCode $ postalAddress $", " physicalDeliveryOfficeName $ ou $ st $ l ) )", "olcObjectClasses: {6}( 2.5.6.8 NAME 'organizationalRole' DESC 'RFC2256: an org", " anizational role' SUP top STRUCTURAL MUST cn MAY ( x121Address $ registeredAd", " dress $ destinationIndicator $ preferredDeliveryMethod $ telexNumber $ telete", " xTerminalIdentifier $ telephoneNumber $ internationaliSDNNumber $ facsimileTe", " lephoneNumber $ seeAlso $ roleOccupant $ preferredDeliveryMethod $ street $ p", " ostOfficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ ou $", " st $ l $ description ) )", "olcObjectClasses: {7}( 2.5.6.9 NAME 'groupOfNames' DESC 'RFC2256: a group of n", " ames (DNs)' SUP top STRUCTURAL MUST ( member $ cn ) MAY ( businessCategory $ ", " seeAlso $ owner $ ou $ o $ description ) )", "olcObjectClasses: {8}( 2.5.6.10 NAME 'residentialPerson' DESC 'RFC2256: an res", " idential person' SUP person STRUCTURAL MUST l MAY ( businessCategory $ x121Ad", " dress $ registeredAddress $ destinationIndicator $ preferredDeliveryMethod $ ", " telexNumber $ teletexTerminalIdentifier $ telephoneNumber $ internationaliSDN", " Number $ facsimileTelephoneNumber $ preferredDeliveryMethod $ street $ postOf", " ficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ st $ l ) ", " )", "olcObjectClasses: {9}( 2.5.6.11 NAME 'applicationProcess' DESC 'RFC2256: an ap", " plication process' SUP top STRUCTURAL MUST cn MAY ( seeAlso $ ou $ l $ descri", " ption ) )", "olcObjectClasses: {10}( 2.5.6.12 NAME 'applicationEntity' DESC 'RFC2256: an ap", " plication entity' SUP top STRUCTURAL MUST ( presentationAddress $ cn ) MAY ( ", " supportedApplicationContext $ seeAlso $ ou $ o $ l $ description ) )", "olcObjectClasses: {11}( 2.5.6.13 NAME 'dSA' DESC 'RFC2256: a directory system ", " agent (a server)' SUP applicationEntity STRUCTURAL MAY knowledgeInformation )", "olcObjectClasses: {12}( 2.5.6.14 NAME 'device' DESC 'RFC2256: a device' SUP to", " p STRUCTURAL MUST cn MAY ( serialNumber $ seeAlso $ owner $ ou $ o $ l $ desc", " ription ) )", "olcObjectClasses: {13}( 2.5.6.15 NAME 'strongAuthenticationUser' DESC 'RFC2256", " : a strong authentication user' SUP top AUXILIARY MUST userCertificate )", "olcObjectClasses: {14}( 2.5.6.16 NAME 'certificationAuthority' DESC 'RFC2256: ", " a certificate authority' SUP top AUXILIARY MUST ( authorityRevocationList $ c", " ertificateRevocationList $ cACertificate ) MAY crossCertificatePair )", "olcObjectClasses: {15}( 2.5.6.17 NAME 'groupOfUniqueNames' DESC 'RFC2256: a gr", " oup of unique names (DN and Unique Identifier)' SUP top STRUCTURAL MUST ( uni", " queMember $ cn ) MAY ( businessCategory $ seeAlso $ owner $ ou $ o $ descript", " ion ) )", "olcObjectClasses: {16}( 2.5.6.18 NAME 'userSecurityInformation' DESC 'RFC2256:", " a user security information' SUP top AUXILIARY MAY ( supportedAlgorithms ) )", "olcObjectClasses: {17}( 2.5.6.16.2 NAME 'certificationAuthority-V2' SUP certif", " icationAuthority AUXILIARY MAY ( deltaRevocationList ) )", "olcObjectClasses: {18}( 2.5.6.19 NAME 'cRLDistributionPoint' SUP top STRUCTURA", " L MUST ( cn ) MAY ( certificateRevocationList $ authorityRevocationList $ del", " taRevocationList ) )", "olcObjectClasses: {19}( 2.5.6.20 NAME 'dmd' SUP top STRUCTURAL MUST ( dmdName ", " ) MAY ( userPassword $ searchGuide $ seeAlso $ businessCategory $ x121Address", " $ registeredAddress $ destinationIndicator $ preferredDeliveryMethod $ telex", " Number $ teletexTerminalIdentifier $ telephoneNumber $ internationaliSDNNumbe", " r $ facsimileTelephoneNumber $ street $ postOfficeBox $ postalCode $ postalAd", " dress $ physicalDeliveryOfficeName $ st $ l $ description ) )", "olcObjectClasses: {20}( 2.5.6.21 NAME 'pkiUser' DESC 'RFC2587: a PKI user' SUP", " top AUXILIARY MAY userCertificate )", "olcObjectClasses: {21}( 2.5.6.22 NAME 'pkiCA' DESC 'RFC2587: PKI certificate a", " uthority' SUP top AUXILIARY MAY ( authorityRevocationList $ certificateRevoca", " tionList $ cACertificate $ crossCertificatePair ) )", "olcObjectClasses: {22}( 2.5.6.23 NAME 'deltaCRL' DESC 'RFC2587: PKI user' SUP ", " top AUXILIARY MAY deltaRevocationList )", "olcObjectClasses: {23}( 1.3.6.1.4.1.250.3.15 NAME 'labeledURIObject' DESC 'RFC", " 2079: object that contains the URI attribute type' MAY ( labeledURI ) SUP top", " AUXILIARY )", "olcObjectClasses: {24}( 0.9.2342.19200300.100.4.19 NAME 'simpleSecurityObject'", " DESC 'RFC1274: simple security object' SUP top AUXILIARY MUST userPassword )", "olcObjectClasses: {25}( 1.3.6.1.4.1.1466.344 NAME 'dcObject' DESC 'RFC2247: do", " main component object' SUP top AUXILIARY MUST dc )", "olcObjectClasses: {26}( 1.3.6.1.1.3.1 NAME 'uidObject' DESC 'RFC2377: uid obje", " ct' SUP top AUXILIARY MUST uid )", "", "# {1}cosine, schema, config", "dn: cn={1}cosine,cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: {1}cosine", "olcAttributeTypes: {0}( 0.9.2342.19200300.100.1.2 NAME 'textEncodedORAddress' ", " EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.", " 1466.115.121.1.15{256} )", "olcAttributeTypes: {1}( 0.9.2342.19200300.100.1.4 NAME 'info' DESC 'RFC1274: g", " eneral information' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch", " SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{2048} )", "olcAttributeTypes: {2}( 0.9.2342.19200300.100.1.5 NAME ( 'drink' 'favouriteDri", " nk' ) DESC 'RFC1274: favorite drink' EQUALITY caseIgnoreMatch SUBSTR caseIgno", " reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {3}( 0.9.2342.19200300.100.1.6 NAME 'roomNumber' DESC 'RFC1", " 274: room number' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch S", " YNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {4}( 0.9.2342.19200300.100.1.7 NAME 'photo' DESC 'RFC1274: ", " photo (G3 fax)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.23{25000} )", "olcAttributeTypes: {5}( 0.9.2342.19200300.100.1.8 NAME 'userClass' DESC 'RFC12", " 74: category of user' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMat", " ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {6}( 0.9.2342.19200300.100.1.9 NAME 'host' DESC 'RFC1274: h", " ost computer' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTA", " X 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {7}( 0.9.2342.19200300.100.1.10 NAME 'manager' DESC 'RFC127", " 4: DN of manager' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115", " .121.1.12 )", "olcAttributeTypes: {8}( 0.9.2342.19200300.100.1.11 NAME 'documentIdentifier' D", " ESC 'RFC1274: unique identifier of document' EQUALITY caseIgnoreMatch SUBSTR ", " caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {9}( 0.9.2342.19200300.100.1.12 NAME 'documentTitle' DESC '", " RFC1274: title of document' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstri", " ngsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {10}( 0.9.2342.19200300.100.1.13 NAME 'documentVersion' DES", " C 'RFC1274: version of document' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSu", " bstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {11}( 0.9.2342.19200300.100.1.14 NAME 'documentAuthor' DESC", " 'RFC1274: DN of author of document' EQUALITY distinguishedNameMatch SYNTAX 1", " .3.6.1.4.1.1466.115.121.1.12 )", "olcAttributeTypes: {12}( 0.9.2342.19200300.100.1.15 NAME 'documentLocation' DE", " SC 'RFC1274: location of document original' EQUALITY caseIgnoreMatch SUBSTR c", " aseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {13}( 0.9.2342.19200300.100.1.20 NAME ( 'homePhone' 'homeTe", " lephoneNumber' ) DESC 'RFC1274: home telephone number' EQUALITY telephoneNumb", " erMatch SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121", " .1.50 )", "olcAttributeTypes: {14}( 0.9.2342.19200300.100.1.21 NAME 'secretary' DESC 'RFC", " 1274: DN of secretary' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.146", " 6.115.121.1.12 )", "olcAttributeTypes: {15}( 0.9.2342.19200300.100.1.22 NAME 'otherMailbox' SYNTAX", " 1.3.6.1.4.1.1466.115.121.1.39 )", "olcAttributeTypes: {16}( 0.9.2342.19200300.100.1.26 NAME 'aRecord' EQUALITY ca", " seIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {17}( 0.9.2342.19200300.100.1.27 NAME 'mDRecord' EQUALITY c", " aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {18}( 0.9.2342.19200300.100.1.28 NAME 'mXRecord' EQUALITY c", " aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {19}( 0.9.2342.19200300.100.1.29 NAME 'nSRecord' EQUALITY c", " aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {20}( 0.9.2342.19200300.100.1.30 NAME 'sOARecord' EQUALITY ", " caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {21}( 0.9.2342.19200300.100.1.31 NAME 'cNAMERecord' EQUALIT", " Y caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {22}( 0.9.2342.19200300.100.1.38 NAME 'associatedName' DESC", " 'RFC1274: DN of entry associated with domain' EQUALITY distinguishedNameMatc", " h SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )", "olcAttributeTypes: {23}( 0.9.2342.19200300.100.1.39 NAME 'homePostalAddress' D", " ESC 'RFC1274: home postal address' EQUALITY caseIgnoreListMatch SUBSTR caseIg", " noreListSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.41 )", "olcAttributeTypes: {24}( 0.9.2342.19200300.100.1.40 NAME 'personalTitle' DESC ", " 'RFC1274: personal title' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstring", " sMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {25}( 0.9.2342.19200300.100.1.41 NAME ( 'mobile' 'mobileTel", " ephoneNumber' ) DESC 'RFC1274: mobile telephone number' EQUALITY telephoneNum", " berMatch SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.12", " 1.1.50 )", "olcAttributeTypes: {26}( 0.9.2342.19200300.100.1.42 NAME ( 'pager' 'pagerTelep", " honeNumber' ) DESC 'RFC1274: pager telephone number' EQUALITY telephoneNumber", " Match SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1", " .50 )", "olcAttributeTypes: {27}( 0.9.2342.19200300.100.1.43 NAME ( 'co' 'friendlyCount", " ryName' ) DESC 'RFC1274: friendly country name' EQUALITY caseIgnoreMatch SUBS", " TR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", "olcAttributeTypes: {28}( 0.9.2342.19200300.100.1.44 NAME 'uniqueIdentifier' DE", " SC 'RFC1274: unique identifer' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.14", " 66.115.121.1.15{256} )", "olcAttributeTypes: {29}( 0.9.2342.19200300.100.1.45 NAME 'organizationalStatus", " ' DESC 'RFC1274: organizational status' EQUALITY caseIgnoreMatch SUBSTR caseI", " gnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {30}( 0.9.2342.19200300.100.1.46 NAME 'janetMailbox' DESC '", " RFC1274: Janet mailbox' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5Subst", " ringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )", "olcAttributeTypes: {31}( 0.9.2342.19200300.100.1.47 NAME 'mailPreferenceOption", " ' DESC 'RFC1274: mail preference option' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27", " )", "olcAttributeTypes: {32}( 0.9.2342.19200300.100.1.48 NAME 'buildingName' DESC '", " RFC1274: name of building' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstrin", " gsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {33}( 0.9.2342.19200300.100.1.49 NAME 'dSAQuality' DESC 'RF", " C1274: DSA Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.19 SINGLE-VALUE )", "olcAttributeTypes: {34}( 0.9.2342.19200300.100.1.50 NAME 'singleLevelQuality' ", " DESC 'RFC1274: Single Level Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.13 SIN", " GLE-VALUE )", "olcAttributeTypes: {35}( 0.9.2342.19200300.100.1.51 NAME 'subtreeMinimumQualit", " y' DESC 'RFC1274: Subtree Mininum Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 13 SINGLE-VALUE )", "olcAttributeTypes: {36}( 0.9.2342.19200300.100.1.52 NAME 'subtreeMaximumQualit", " y' DESC 'RFC1274: Subtree Maximun Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 13 SINGLE-VALUE )", "olcAttributeTypes: {37}( 0.9.2342.19200300.100.1.53 NAME 'personalSignature' D", " ESC 'RFC1274: Personal Signature (G3 fax)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 23 )", "olcAttributeTypes: {38}( 0.9.2342.19200300.100.1.54 NAME 'dITRedirect' DESC 'R", " FC1274: DIT Redirect' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466", " .115.121.1.12 )", "olcAttributeTypes: {39}( 0.9.2342.19200300.100.1.55 NAME 'audio' DESC 'RFC1274", " : audio (u-law)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.4{25000} )", "olcAttributeTypes: {40}( 0.9.2342.19200300.100.1.56 NAME 'documentPublisher' D", " ESC 'RFC1274: publisher of document' EQUALITY caseIgnoreMatch SUBSTR caseIgno", " reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", "olcObjectClasses: {0}( 0.9.2342.19200300.100.4.4 NAME ( 'pilotPerson' 'newPilo", " tPerson' ) SUP person STRUCTURAL MAY ( userid $ textEncodedORAddress $ rfc822", " Mailbox $ favouriteDrink $ roomNumber $ userClass $ homeTelephoneNumber $ hom", " ePostalAddress $ secretary $ personalTitle $ preferredDeliveryMethod $ busine", " ssCategory $ janetMailbox $ otherMailbox $ mobileTelephoneNumber $ pagerTelep", " honeNumber $ organizationalStatus $ mailPreferenceOption $ personalSignature ", " ) )", "olcObjectClasses: {1}( 0.9.2342.19200300.100.4.5 NAME 'account' SUP top STRUCT", " URAL MUST userid MAY ( description $ seeAlso $ localityName $ organizationNam", " e $ organizationalUnitName $ host ) )", "olcObjectClasses: {2}( 0.9.2342.19200300.100.4.6 NAME 'document' SUP top STRUC", " TURAL MUST documentIdentifier MAY ( commonName $ description $ seeAlso $ loca", " lityName $ organizationName $ organizationalUnitName $ documentTitle $ docume", " ntVersion $ documentAuthor $ documentLocation $ documentPublisher ) )", "olcObjectClasses: {3}( 0.9.2342.19200300.100.4.7 NAME 'room' SUP top STRUCTURA", " L MUST commonName MAY ( roomNumber $ description $ seeAlso $ telephoneNumber ", " ) )", "olcObjectClasses: {4}( 0.9.2342.19200300.100.4.9 NAME 'documentSeries' SUP top", " STRUCTURAL MUST commonName MAY ( description $ seeAlso $ telephonenumber $ l", " ocalityName $ organizationName $ organizationalUnitName ) )", "olcObjectClasses: {5}( 0.9.2342.19200300.100.4.13 NAME 'domain' SUP top STRUCT", " URAL MUST domainComponent MAY ( associatedName $ organizationName $ descripti", " on $ businessCategory $ seeAlso $ searchGuide $ userPassword $ localityName $", " stateOrProvinceName $ streetAddress $ physicalDeliveryOfficeName $ postalAdd", " ress $ postalCode $ postOfficeBox $ streetAddress $ facsimileTelephoneNumber ", " $ internationalISDNNumber $ telephoneNumber $ teletexTerminalIdentifier $ tel", " exNumber $ preferredDeliveryMethod $ destinationIndicator $ registeredAddress", " $ x121Address ) )", "olcObjectClasses: {6}( 0.9.2342.19200300.100.4.14 NAME 'RFC822localPart' SUP d", " omain STRUCTURAL MAY ( commonName $ surname $ description $ seeAlso $ telepho", " neNumber $ physicalDeliveryOfficeName $ postalAddress $ postalCode $ postOffi", " ceBox $ streetAddress $ facsimileTelephoneNumber $ internationalISDNNumber $ ", " telephoneNumber $ teletexTerminalIdentifier $ telexNumber $ preferredDelivery", " Method $ destinationIndicator $ registeredAddress $ x121Address ) )", "olcObjectClasses: {7}( 0.9.2342.19200300.100.4.15 NAME 'dNSDomain' SUP domain ", " STRUCTURAL MAY ( ARecord $ MDRecord $ MXRecord $ NSRecord $ SOARecord $ CNAME", " Record ) )", "olcObjectClasses: {8}( 0.9.2342.19200300.100.4.17 NAME 'domainRelatedObject' D", " ESC 'RFC1274: an object related to an domain' SUP top AUXILIARY MUST associat", " edDomain )", "olcObjectClasses: {9}( 0.9.2342.19200300.100.4.18 NAME 'friendlyCountry' SUP c", " ountry STRUCTURAL MUST friendlyCountryName )", "olcObjectClasses: {10}( 0.9.2342.19200300.100.4.20 NAME 'pilotOrganization' SU", " P ( organization $ organizationalUnit ) STRUCTURAL MAY buildingName )", "olcObjectClasses: {11}( 0.9.2342.19200300.100.4.21 NAME 'pilotDSA' SUP dsa STR", " UCTURAL MAY dSAQuality )", "olcObjectClasses: {12}( 0.9.2342.19200300.100.4.22 NAME 'qualityLabelledData' ", " SUP top AUXILIARY MUST dsaQuality MAY ( subtreeMinimumQuality $ subtreeMaximu", " mQuality ) )", "", "# {2}nis, schema, config", "dn: cn={2}nis,cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: {2}nis", "olcAttributeTypes: {0}( 1.3.6.1.1.1.1.2 NAME 'gecos' DESC 'The GECOS field; th", " e common name' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatc", " h SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )", "olcAttributeTypes: {1}( 1.3.6.1.1.1.1.3 NAME 'homeDirectory' DESC 'The absolut", " e path to the home directory' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1", " 466.115.121.1.26 SINGLE-VALUE )", "olcAttributeTypes: {2}( 1.3.6.1.1.1.1.4 NAME 'loginShell' DESC 'The path to th", " e login shell' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.2", " 6 SINGLE-VALUE )", "olcAttributeTypes: {3}( 1.3.6.1.1.1.1.5 NAME 'shadowLastChange' EQUALITY integ", " erMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {4}( 1.3.6.1.1.1.1.6 NAME 'shadowMin' EQUALITY integerMatch", " SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {5}( 1.3.6.1.1.1.1.7 NAME 'shadowMax' EQUALITY integerMatch", " SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {6}( 1.3.6.1.1.1.1.8 NAME 'shadowWarning' EQUALITY integerM", " atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {7}( 1.3.6.1.1.1.1.9 NAME 'shadowInactive' EQUALITY integer", " Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {8}( 1.3.6.1.1.1.1.10 NAME 'shadowExpire' EQUALITY integerM", " atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {9}( 1.3.6.1.1.1.1.11 NAME 'shadowFlag' EQUALITY integerMat", " ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {10}( 1.3.6.1.1.1.1.12 NAME 'memberUid' EQUALITY caseExactI", " A5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 26 )", "olcAttributeTypes: {11}( 1.3.6.1.1.1.1.13 NAME 'memberNisNetgroup' EQUALITY ca", " seExactIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.11", " 5.121.1.26 )", "olcAttributeTypes: {12}( 1.3.6.1.1.1.1.14 NAME 'nisNetgroupTriple' DESC 'Netgr", " oup triple' SYNTAX 1.3.6.1.1.1.0.0 )", "olcAttributeTypes: {13}( 1.3.6.1.1.1.1.15 NAME 'ipServicePort' EQUALITY intege", " rMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {14}( 1.3.6.1.1.1.1.16 NAME 'ipServiceProtocol' SUP name )", "olcAttributeTypes: {15}( 1.3.6.1.1.1.1.17 NAME 'ipProtocolNumber' EQUALITY int", " egerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {16}( 1.3.6.1.1.1.1.18 NAME 'oncRpcNumber' EQUALITY integer", " Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {17}( 1.3.6.1.1.1.1.19 NAME 'ipHostNumber' DESC 'IP address", " ' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )", "olcAttributeTypes: {18}( 1.3.6.1.1.1.1.20 NAME 'ipNetworkNumber' DESC 'IP netw", " ork' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SI", " NGLE-VALUE )", "olcAttributeTypes: {19}( 1.3.6.1.1.1.1.21 NAME 'ipNetmaskNumber' DESC 'IP netm", " ask' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SI", " NGLE-VALUE )", "olcAttributeTypes: {20}( 1.3.6.1.1.1.1.22 NAME 'macAddress' DESC 'MAC address'", " EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )", "olcAttributeTypes: {21}( 1.3.6.1.1.1.1.23 NAME 'bootParameter' DESC 'rpc.bootp", " aramd parameter' SYNTAX 1.3.6.1.1.1.0.1 )", "olcAttributeTypes: {22}( 1.3.6.1.1.1.1.24 NAME 'bootFile' DESC 'Boot image nam", " e' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {23}( 1.3.6.1.1.1.1.26 NAME 'nisMapName' SUP name )", "olcAttributeTypes: {24}( 1.3.6.1.1.1.1.27 NAME 'nisMapEntry' EQUALITY caseExac", " tIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.", " 1.26{1024} SINGLE-VALUE )", "olcObjectClasses: {0}( 1.3.6.1.1.1.2.0 NAME 'posixAccount' DESC 'Abstraction o", " f an account with POSIX attributes' SUP top AUXILIARY MUST ( cn $ uid $ uidNu", " mber $ gidNumber $ homeDirectory ) MAY ( userPassword $ loginShell $ gecos $ ", " description ) )", "olcObjectClasses: {1}( 1.3.6.1.1.1.2.1 NAME 'shadowAccount' DESC 'Additional a", " ttributes for shadow passwords' SUP top AUXILIARY MUST uid MAY ( userPassword", " $ shadowLastChange $ shadowMin $ shadowMax $ shadowWarning $ shadowInactive ", " $ shadowExpire $ shadowFlag $ description ) )", "olcObjectClasses: {2}( 1.3.6.1.1.1.2.2 NAME 'posixGroup' DESC 'Abstraction of ", " a group of accounts' SUP top STRUCTURAL MUST ( cn $ gidNumber ) MAY ( userPas", " sword $ memberUid $ description ) )", "olcObjectClasses: {3}( 1.3.6.1.1.1.2.3 NAME 'ipService' DESC 'Abstraction an I", " nternet Protocol service' SUP top STRUCTURAL MUST ( cn $ ipServicePort $ ipSe", " rviceProtocol ) MAY description )", "olcObjectClasses: {4}( 1.3.6.1.1.1.2.4 NAME 'ipProtocol' DESC 'Abstraction of ", " an IP protocol' SUP top STRUCTURAL MUST ( cn $ ipProtocolNumber $ description", " ) MAY description )", "olcObjectClasses: {5}( 1.3.6.1.1.1.2.5 NAME 'oncRpc' DESC 'Abstraction of an O", " NC/RPC binding' SUP top STRUCTURAL MUST ( cn $ oncRpcNumber $ description ) M", " AY description )", "olcObjectClasses: {6}( 1.3.6.1.1.1.2.6 NAME 'ipHost' DESC 'Abstraction of a ho", " st, an IP device' SUP top AUXILIARY MUST ( cn $ ipHostNumber ) MAY ( l $ desc", " ription $ manager ) )", "olcObjectClasses: {7}( 1.3.6.1.1.1.2.7 NAME 'ipNetwork' DESC 'Abstraction of a", " n IP network' SUP top STRUCTURAL MUST ( cn $ ipNetworkNumber ) MAY ( ipNetmas", " kNumber $ l $ description $ manager ) )", "olcObjectClasses: {8}( 1.3.6.1.1.1.2.8 NAME 'nisNetgroup' DESC 'Abstraction of", " a netgroup' SUP top STRUCTURAL MUST cn MAY ( nisNetgroupTriple $ memberNisNe", " tgroup $ description ) )", "olcObjectClasses: {9}( 1.3.6.1.1.1.2.9 NAME 'nisMap' DESC 'A generic abstracti", " on of a NIS map' SUP top STRUCTURAL MUST nisMapName MAY description )", "olcObjectClasses: {10}( 1.3.6.1.1.1.2.10 NAME 'nisObject' DESC 'An entry in a ", " NIS map' SUP top STRUCTURAL MUST ( cn $ nisMapEntry $ nisMapName ) MAY descri", " ption )", "olcObjectClasses: {11}( 1.3.6.1.1.1.2.11 NAME 'ieee802Device' DESC 'A device w", " ith a MAC address' SUP top AUXILIARY MAY macAddress )", "olcObjectClasses: {12}( 1.3.6.1.1.1.2.12 NAME 'bootableDevice' DESC 'A device ", " with boot parameters' SUP top AUXILIARY MAY ( bootFile $ bootParameter ) )", "", "# {3}inetorgperson, schema, config", "dn: cn={3}inetorgperson,cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: {3}inetorgperson", "olcAttributeTypes: {0}( 2.16.840.1.113730.3.1.1 NAME 'carLicense' DESC 'RFC279", " 8: vehicle license or registration plate' EQUALITY caseIgnoreMatch SUBSTR cas", " eIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", "olcAttributeTypes: {1}( 2.16.840.1.113730.3.1.2 NAME 'departmentNumber' DESC '", " RFC2798: identifies a department within an organization' EQUALITY caseIgnoreM", " atch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", "olcAttributeTypes: {2}( 2.16.840.1.113730.3.1.241 NAME 'displayName' DESC 'RFC", " 2798: preferred name to be used when displaying entries' EQUALITY caseIgnoreM", " atch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SI", " NGLE-VALUE )", "olcAttributeTypes: {3}( 2.16.840.1.113730.3.1.3 NAME 'employeeNumber' DESC 'RF", " C2798: numerically identifies an employee within an organization' EQUALITY ca", " seIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.12", " 1.1.15 SINGLE-VALUE )", "olcAttributeTypes: {4}( 2.16.840.1.113730.3.1.4 NAME 'employeeType' DESC 'RFC2", " 798: type of employment for a person' EQUALITY caseIgnoreMatch SUBSTR caseIgn", " oreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", "olcAttributeTypes: {5}( 0.9.2342.19200300.100.1.60 NAME 'jpegPhoto' DESC 'RFC2", " 798: a JPEG image' SYNTAX 1.3.6.1.4.1.1466.115.121.1.28 )", "olcAttributeTypes: {6}( 2.16.840.1.113730.3.1.39 NAME 'preferredLanguage' DESC", " 'RFC2798: preferred written or spoken language for a person' EQUALITY caseIg", " noreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 15 SINGLE-VALUE )", "olcAttributeTypes: {7}( 2.16.840.1.113730.3.1.40 NAME 'userSMIMECertificate' D", " ESC 'RFC2798: PKCS#7 SignedData used to support S/MIME' SYNTAX 1.3.6.1.4.1.14", " 66.115.121.1.5 )", "olcAttributeTypes: {8}( 2.16.840.1.113730.3.1.216 NAME 'userPKCS12' DESC 'RFC2", " 798: personal identity information, a PKCS #12 PFX' SYNTAX 1.3.6.1.4.1.1466.1", " 15.121.1.5 )", "olcObjectClasses: {0}( 2.16.840.1.113730.3.2.2 NAME 'inetOrgPerson' DESC 'RFC2", " 798: Internet Organizational Person' SUP organizationalPerson STRUCTURAL MAY ", " ( audio $ businessCategory $ carLicense $ departmentNumber $ displayName $ em", " ployeeNumber $ employeeType $ givenName $ homePhone $ homePostalAddress $ ini", " tials $ jpegPhoto $ labeledURI $ mail $ manager $ mobile $ o $ pager $ photo ", " $ roomNumber $ secretary $ uid $ userCertificate $ x500uniqueIdentifier $ pre", " ferredLanguage $ userSMIMECertificate $ userPKCS12 ) )", "", "# {4}ppolicy, schema, config", "dn: cn={4}ppolicy,cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: {4}ppolicy", "olcAttributeTypes: {0}( 1.3.6.1.4.1.42.2.27.8.1.1 NAME 'pwdAttribute' EQUALITY", " objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )", "olcAttributeTypes: {1}( 1.3.6.1.4.1.42.2.27.8.1.2 NAME 'pwdMinAge' EQUALITY in", " tegerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {2}( 1.3.6.1.4.1.42.2.27.8.1.3 NAME 'pwdMaxAge' EQUALITY in", " tegerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {3}( 1.3.6.1.4.1.42.2.27.8.1.4 NAME 'pwdInHistory' EQUALITY", " integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {4}( 1.3.6.1.4.1.42.2.27.8.1.5 NAME 'pwdCheckQuality' EQUAL", " ITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {5}( 1.3.6.1.4.1.42.2.27.8.1.6 NAME 'pwdMinLength' EQUALITY", " integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {6}( 1.3.6.1.4.1.42.2.27.8.1.7 NAME 'pwdExpireWarning' EQUA", " LITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {7}( 1.3.6.1.4.1.42.2.27.8.1.8 NAME 'pwdGraceAuthNLimit' EQ", " UALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {8}( 1.3.6.1.4.1.42.2.27.8.1.9 NAME 'pwdLockout' EQUALITY b", " ooleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )", "olcAttributeTypes: {9}( 1.3.6.1.4.1.42.2.27.8.1.10 NAME 'pwdLockoutDuration' E", " QUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {10}( 1.3.6.1.4.1.42.2.27.8.1.11 NAME 'pwdMaxFailure' EQUAL", " ITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {11}( 1.3.6.1.4.1.42.2.27.8.1.12 NAME 'pwdFailureCountInter", " val' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ", " )", "olcAttributeTypes: {12}( 1.3.6.1.4.1.42.2.27.8.1.13 NAME 'pwdMustChange' EQUAL", " ITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )", "olcAttributeTypes: {13}( 1.3.6.1.4.1.42.2.27.8.1.14 NAME 'pwdAllowUserChange' ", " EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )", "olcAttributeTypes: {14}( 1.3.6.1.4.1.42.2.27.8.1.15 NAME 'pwdSafeModify' EQUAL", " ITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )", "olcAttributeTypes: {15}( 1.3.6.1.4.1.4754.1.99.1 NAME 'pwdCheckModule' DESC 'L", " oadable module that instantiates \"check_password() function' EQUALITY caseExa", " ctIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )", "olcObjectClasses: {0}( 1.3.6.1.4.1.4754.2.99.1 NAME 'pwdPolicyChecker' SUP top", " AUXILIARY MAY pwdCheckModule )", "olcObjectClasses: {1}( 1.3.6.1.4.1.42.2.27.8.2.1 NAME 'pwdPolicy' SUP top AUXI", " LIARY MUST pwdAttribute MAY ( pwdMinAge $ pwdMaxAge $ pwdInHistory $ pwdCheck", " Quality $ pwdMinLength $ pwdExpireWarning $ pwdGraceAuthNLimit $ pwdLockout $", " pwdLockoutDuration $ pwdMaxFailure $ pwdFailureCountInterval $ pwdMustChange", " $ pwdAllowUserChange $ pwdSafeModify ) )", "", "# {0}hdb, config", "dn: olcBackend={0}hdb,cn=config", "objectClass: olcBackendConfig", "olcBackend: {0}hdb", "", "# {-1}frontend, config", "dn: olcDatabase={-1}frontend,cn=config", "objectClass: olcDatabaseConfig", "objectClass: olcFrontendConfig", "olcDatabase: {-1}frontend", "olcAccess: {0}to \* by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external", " ,cn=auth manage by \* break", "olcAccess: {1}to dn.exact=\"\" by \* read", "olcAccess: {2}to dn.base=\"cn=Subschema\" by \* read", "olcSizeLimit: 500", "", "# {0}config, config", "dn: olcDatabase={0}config,cn=config", "objectClass: olcDatabaseConfig", "olcDatabase: {0}config", "olcAccess: {0}to \* by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external", " ,cn=auth manage by \* break", "olcRootDN: cn=admin,cn=config", "", "# {1}hdb, config", "dn: olcDatabase={1}hdb,cn=config", "objectClass: olcDatabaseConfig", "objectClass: olcHdbConfig", "olcDatabase: {1}hdb", "olcDbDirectory: /var/lib/ldap", "olcLastMod: TRUE", "olcDbCheckpoint: 512 30", "olcDbConfig: {0}set_cachesize 0 2097152 0", "olcDbConfig: {1}set_lk_max_objects 1500", "olcDbConfig: {2}set_lk_max_locks 1500", "olcDbConfig: {3}set_lk_max_lockers 1500", "olcDbIndex: objectClass eq", "olcAccess: {0}to attrs=userPassword,shadowLastChange by self write by anonymou", " s auth by dn=\"cn=admin,dc=local\" write by group/groupOfUniqueNames/uniqueMemb", " er=\"cn=Administrator,ou=Group,dc=idp,ou=Services,dc=local\" write by \* none", "olcAccess: {1}to dn.base=\"\" by \* read", "olcAccess: {2}to \* by self write by dn=\"cn=admin,dc=local\" write by group/grou", " pOfUniqueNames/uniqueMember=\"cn=Administrator,ou=Group,dc=idp,ou=Services,dc=", " local\" write by \* read", "olcSuffix: dc=local", "olcRootDN: cn=admin,dc=local", "olcRootPW: {SSHA}jmCpKQYSdLhShP0FnvFHjd9dYc9z73PX", "", "# {0}ppolicy, {1}hdb, config", "dn: olcOverlay={0}ppolicy,olcDatabase={1}hdb,cn=config", "objectClass: top", "objectClass: olcConfig", "objectClass: olcOverlayConfig", "objectClass: olcPPolicyConfig", "olcOverlay: {0}ppolicy", "olcPPolicyDefault: cn=default,ou=policies,dc=local", "olcPPolicyHashCleartext: TRUE", "", "# {1}memberof, {1}hdb, config", "dn: olcOverlay={1}memberof,olcDatabase={1}hdb,cn=config", "objectClass: top", "objectClass: olcConfig", "objectClass: olcOverlayConfig", "objectClass: olcMemberOf", "olcOverlay: {1}memberof", "olcMemberOfDangling: drop", "olcMemberOfRefInt: TRUE", "olcMemberOfGroupOC: groupOfUniqueNames", "olcMemberOfMemberAD: uniqueMember", "", "# search result", "search: 2", "result: 0 Success", "", "# numResponses: 15", "# numEntries: 14"]} TASK: [ldap | Copy modules file LDIF] ****************************************\* skipping: [ldap.ugb.sn] TASK: [ldap | Add modules (Debian)] ******************************************\* skipping: [ldap.ugb.sn] TASK: [ldap | Add modules (RedHat)] ******************************************\* skipping: [ldap.ugb.sn] TASK: [ldap | Restart ldap server] *******************************************\* skipping: [ldap.ugb.sn] TASK: [ldap | Create db LDIF] ************************************************\* ok: [ldap.ugb.sn] => {"changed": false, "gid": 0, "group": "root", "mode": "0644", "owner": "root", "path": "/tmp/db.ldif", "size": 670, "state": "file", "uid": 0} TASK: [ldap | Customise DB] **************************************************\* skipping: [ldap.ugb.sn] TASK: [ldap | Copy Password Policy Schema ldap server (Debian)] **************\* skipping: [ldap.ugb.sn] TASK: [ldap | Apply ppolicy schema] ******************************************\* skipping: [ldap.ugb.sn] TASK: [ldap | Copy Overlay LDIF] *********************************************\* skipping: [ldap.ugb.sn] TASK: [ldap | Apply overlays] ************************************************\* skipping: [ldap.ugb.sn] TASK: [ldap | Enable Secure Communications with the LDAP server (RedHat)] ****\* skipping: [ldap.ugb.sn] => (item=SLAPD_LDAPI) skipping: [ldap.ugb.sn] => (item=SLAPD_LDAPS) TASK: [ldap | Enable protocols in sysconfig startup script (RedHat)] *********\* skipping: [ldap.ugb.sn] => (item=SLAPD_LDAPI) skipping: [ldap.ugb.sn] => (item=SLAPD_LDAPS) TASK: [ldap | Enable Secure Communications with the LDAP server] *************\* REMOTE_MODULE lineinfile dest=/etc/default/slapd regexp="^SLAPD_SERVICES=" line='SLAPD_SERVICES="ldap:/// ldapi:/// ldaps:///"' ok: [ldap.ugb.sn] => (item=SLAPD_SERVICES) => {"backup": "", "changed": false, "item": "SLAPD_SERVICES", "msg": ""} TASK: [ldap | Create the directory for ldap certificates] ********************\* REMOTE_MODULE file path=/etc/ldap/certs/ state=directory owner=openldap group=openldap ok: [ldap.ugb.sn] => {"changed": false, "gid": 105, "group": "openldap", "mode": "0755", "owner": "openldap", "path": "/etc/ldap/certs/", "size": 4096, "state": "directory", "uid": 102} TASK: [ldap | Generate the private key for certificate request] **************\* REMOTE_MODULE command openssl genrsa -des3 -passout pass:password -out my1.key 1024 chdir=/etc/ldap/certs/ creates=/etc/ldap/certs/my1.key #USE_SHELL skipping: [ldap.ugb.sn] TASK: [ldap | Strip the passphrase from the key] *****************************\* REMOTE_MODULE command openssl rsa -in my1.key -passin pass:password -out my.key chdir=/etc/ldap/certs/ creates=/etc/ldap/certs/my.key #USE_SHELL skipping: [ldap.ugb.sn] TASK: [ldap | Create and sign the the new certificate] ***********************\* REMOTE_MODULE command openssl req -new -x509 -subj '/C={{ server_country }}/ST={{ server_state }}/L={{ server_location }}/O={{ server_organization }}/CN={{ ansible_hostname }}/' -days 3650 -key my.key -out cert.crt -extensions v3_ca chdir={{ ldap_config_path }}/certs/ creates={{ ldap_config_path }}/certs/cert.crt #USE_SHELL failed: [ldap.ugb.sn] => {"failed": true, "rc": 258} msg: cannot change to directory '/root/{# ldap_config_path #}/certs': path does not exist FATAL: all hosts have already failed -- aborting PLAY RECAP *******************************************************************\* to retry, use: --limit @/root/idp-ldap.retry ldap.ugb.sn : ok=15 changed=0 unreachable=0 failed=1

- name: Create and sign the the new certificate sudo: yes shell: openssl req -new -x509 -subj '/C={{ server_country }}/ST={{ server_state }}/L={{ server_location }}/O={{ server_organization }}/CN={{ ansible_hostname }}/' -days 3650 -key my.key -out cert.crt -extensions v3_ca args: chdir: "{{ ldap_config_path }}/certs/" creates: "{{ ldap_config_path }}/certs/cert.crt"

Hello @brucellino ---I got the same error after following the steps above

root@ansible:~/DevOps/Ansible# ansible-playbook -i inventories/inventory.ugb.sn idp-ldap.yml -v

PLAY [Configure the LDAP machine] *****

GATHERING FACTS *** ok: [ldap.ugb.sn]

TASK: [fmarco76.firewall | Retrieve iptables rules] *** ok: [ldap.ugb.sn] => {"changed": false, "cmd": ["iptables", "-t", "filter", "-L", "-n"], "delta": "0:00:00.002202", "end": "2015-01-22 12:03:16.702093", "rc": 0, "start": "2015-01-22 12:03:16.699891", "stderr": "", "stdout": "Chain INPUT (policy ACCEPT)\ntarget prot opt source destination \nACCEPT all -- 0.0.0.0/0 0.0.0.0/0 \nACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED \nACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 \nACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 \nACCEPT tcp -- 196.1.99.0/27 0.0.0.0/0 state NEW tcp dpt:636 \nACCEPT tcp -- 196.1.99.0/27 0.0.0.0/0 state NEW tcp dpt:389 \nREJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-admin-prohibited \n\nChain FORWARD (policy ACCEPT)\ntarget prot opt source destination \nREJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-admin-prohibited \n\nChain OUTPUT (policy ACCEPT)\ntarget prot opt source destination ", "stdout_lines": ["Chain INPUT (policy ACCEPT)", "target prot opt source destination ", "ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ", "ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ", "ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 ", "ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 ", "ACCEPT tcp -- 196.1.99.0/27 0.0.0.0/0 state NEW tcp dpt:636 ", "ACCEPT tcp -- 196.1.99.0/27 0.0.0.0/0 state NEW tcp dpt:389 ", "REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-admin-prohibited ", "", "Chain FORWARD (policy ACCEPT)", "target prot opt source destination ", "REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-admin-prohibited ", "", "Chain OUTPUT (policy ACCEPT)", "target prot opt source destination "]}

TASK: [fmarco76.firewall | Count iptables rules] ****** ok: [ldap.ugb.sn] => {"changed": false, "rc": 0, "stderr": "", "stdout": "7", "stdout_lines": ["7"]}

TASK: [fmarco76.firewall | Apply rules for the local network] ***** skipping: [ldap.ugb.sn] => (item=389) skipping: [ldap.ugb.sn] => (item=636)

TASK: [fmarco76.firewall | Apply rules for the defined network] *** skipping: [ldap.ugb.sn] => (item=389) skipping: [ldap.ugb.sn] => (item=636)

TASK: [fmarco76.firewall | Apply nat rules] *** skipping: [ldap.ugb.sn] => (item=389) skipping: [ldap.ugb.sn] => (item=636)

TASK: [fmarco76.firewall | Save iptable rules] **** skipping: [ldap.ugb.sn]

TASK: [ldap | what are we installing?] **** ok: [ldap.ugb.sn] => { "msg": "['slapd', 'ldap-utils'] will be installed in /etc/ldap" }

TASK: [ldap | Install the openldap and required Packages for RedHat] ****** skipping: [ldap.ugb.sn]

TASK: [ldap | Install the openldap and required Packages for Debian] ****** ok: [ldap.ugb.sn] => (item=slapd,ldap-utils) => {"changed": false, "item": "slapd,ldap-utils"}

TASK: [ldap | Start ldap server] ****** ok: [ldap.ugb.sn] => {"changed": false, "enabled": true, "name": "slapd", "state": "started"}

TASK: [ldap | Retrieve ldap server configuration] ***** ok: [ldap.ugb.sn] => {"changed": false, "cmd": ["ldapsearch", "-Y", "EXTERNAL", "-H", "ldapi:///", "-b", "cn=config"], "delta": "0:00:00.005836", "end": "2015-01-22 12:05:10.756884", "rc": 0, "start": "2015-01-22 12:05:10.751048", "stderr": "SASL/EXTERNAL authentication started\nSASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth\nSASL SSF: 0", "stdout": "# extended LDIF\n#\n# LDAPv3\n# base with scope subtree\n# filter: (objectclass=_)\n# requesting: ALL\n#\n\n# config\ndn: cn=config\nobjectClass: olcGlobal\ncn: config\nolcArgsFile: /var/run/slapd/slapd.args\nolcLogLevel: none\nolcPidFile: /var/run/slapd/slapd.pid\nolcToolThreads: 1\n\n# module{0}, config\ndn: cn=module{0},cn=config\nobjectClass: olcModuleList\ncn: module{0}\nolcModulePath: /usr/lib/ldap\nolcModuleLoad: {0}back_hdb\nolcModuleLoad: {1}memberof\nolcModuleLoad: {2}ppolicy\n\n# schema, config\ndn: cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: schema\nolcObjectIdentifier: OLcfg 1.3.6.1.4.1.4203.1.12.2\nolcObjectIdentifier: OLcfgAt OLcfg:3\nolcObjectIdentifier: OLcfgGlAt OLcfgAt:0\nolcObjectIdentifier: OLcfgBkAt OLcfgAt:1\nolcObjectIdentifier: OLcfgDbAt OLcfgAt:2\nolcObjectIdentifier: OLcfgOvAt OLcfgAt:3\nolcObjectIdentifier: OLcfgCtAt OLcfgAt:4\nolcObjectIdentifier: OLcfgOc OLcfg:4\nolcObjectIdentifier: OLcfgGlOc OLcfgOc:0\nolcObjectIdentifier: OLcfgBkOc OLcfgOc:1\nolcObjectIdentifier: OLcfgDbOc OLcfgOc:2\nolcObjectIdentifier: OLcfgOvOc OLcfgOc:3\nolcObjectIdentifier: OLcfgCtOc OLcfgOc:4\nolcObjectIdentifier: OMsyn 1.3.6.1.4.1.1466.115.121.1\nolcObjectIdentifier: OMsBoolean OMsyn:7\nolcObjectIdentifier: OMsDN OMsyn:12\nolcObjectIdentifier: OMsDirectoryString OMsyn:15\nolcObjectIdentifier: OMsIA5String OMsyn:26\nolcObjectIdentifier: OMsInteger OMsyn:27\nolcObjectIdentifier: OMsOID OMsyn:38\nolcObjectIdentifier: OMsOctetString OMsyn:40\nolcAttributeTypes: ( 2.5.4.0 NAME 'objectClass' DESC 'RFC4512: object classes \n of the entity' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121\n .1.38 )\nolcAttributeTypes: ( 2.5.21.9 NAME 'structuralObjectClass' DESC 'RFC4512: stru\n ctural object class of entry' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4\n .1.1466.115.121.1.38 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperati\n on )\nolcAttributeTypes: ( 2.5.18.1 NAME 'createTimestamp' DESC 'RFC4512: time which\n object was created' EQUALITY generalizedTimeMatch ORDERING generalizedTimeOr\n deringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE NO-USER-MODIFIC\n ATION USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.2 NAME 'modifyTimestamp' DESC 'RFC4512: time which\n object was last modified' EQUALITY generalizedTimeMatch ORDERING generalized\n TimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE NO-USER-M\n ODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.3 NAME 'creatorsName' DESC 'RFC4512: name of creat\n or' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SING\n LE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.4 NAME 'modifiersName' DESC 'RFC4512: name of last\n modifier' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 12 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.9 NAME 'hasSubordinates' DESC 'X.501: entry has ch\n ildren' EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALU\n E NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.10 NAME 'subschemaSubentry' DESC 'RFC4512: name of\n controlling subschema entry' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.\n 4.1.1466.115.121.1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperat\n ion )\nolcAttributeTypes: ( 1.3.6.1.1.20 NAME 'entryDN' DESC 'DN of the entry' EQUALI\n TY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE N\n O-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.1.16.4 NAME 'entryUUID' DESC 'UUID of the entry' \n EQUALITY UUIDMatch ORDERING UUIDOrderingMatch SYNTAX 1.3.6.1.1.16.1 SINGLE-VA\n LUE NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.7 NAME 'entryCSN' DESC 'change seq\n uence number of the entry content' EQUALITY CSNMatch ORDERING CSNOrderingMatc\n h SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} SINGLE-VALUE NO-USER-MODIFICATION US\n AGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.13 NAME 'namingCSN' DESC 'change s\n equence number of the entry naming (RDN)' EQUALITY CSNMatch ORDERING CSNOrder\n ingMatch SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} SINGLE-VALUE NO-USER-MODIFICA\n TION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.23 NAME 'syncreplCookie' DESC 'syn\n crepl Cookie for shadow copy' EQUALITY octetStringMatch ORDERING octetStringO\n rderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE NO-USER-MODIFI\n CATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.25 NAME 'contextCSN' DESC 'the lar\n gest committed CSN of a context' EQUALITY CSNMatch ORDERING CSNOrderingMatch \n SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} NO-USER-MODIFICATION USAGE dSAOperatio\n n )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.6 NAME 'altServer' DESC 'RFC4512\n : alternative servers' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 USAGE dSAOperatio\n n )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.5 NAME 'namingContexts' DESC 'RF\n C4512: naming contexts' SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 USAGE dSAOperati\n on )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.13 NAME 'supportedControl' DESC \n 'RFC4512: supported controls' SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAO\n peration )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.7 NAME 'supportedExtension' DESC\n 'RFC4512: supported extended operations' SYNTAX 1.3.6.1.4.1.1466.115.121.1.3\n 8 USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.15 NAME 'supportedLDAPVersion' D\n ESC 'RFC4512: supported LDAP versions' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 U\n SAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.14 NAME 'supportedSASLMechanisms\n ' DESC 'RFC4512: supported SASL mechanisms' SYNTAX 1.3.6.1.4.1.1466.115.121.1\n .15 USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.5 NAME 'supportedFeatures' DESC 'RFC\n 4512: features supported by the server' EQUALITY objectIdentifierMatch SYNTAX\n 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.10 NAME 'monitorContext' DESC 'mon\n itor context' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121\n .1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.1.12.2.1 NAME 'configContext' DESC 'conf\n ig context' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1\n .12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.1.4 NAME 'vendorName' DESC 'RFC3045: name of impl\n ementation vendor' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 15 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.1.5 NAME 'vendorVersion' DESC 'RFC3045: version o\n f implementation' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.1\n 5 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 2.5.18.5 NAME 'administrativeRole' DESC 'RFC3672: adminis\n trative role' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121.\n 1.38 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.18.6 NAME 'subtreeSpecification' DESC 'RFC3672: subtr\n ee specification' SYNTAX 1.3.6.1.4.1.1466.115.121.1.45 SINGLE-VALUE USAGE dir\n ectoryOperation )\nolcAttributeTypes: ( 2.5.21.1 NAME 'dITStructureRules' DESC 'RFC4512: DIT stru\n cture rules' EQUALITY integerFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.\n 121.1.17 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.2 NAME 'dITContentRules' DESC 'RFC4512: DIT conten\n t rules' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466\n .115.121.1.16 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.4 NAME 'matchingRules' DESC 'RFC4512: matching rul\n es' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.\n 121.1.30 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.5 NAME 'attributeTypes' DESC 'RFC4512: attribute t\n ypes' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.11\n 5.121.1.3 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.6 NAME 'objectClasses' DESC 'RFC4512: object class\n es' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.\n 121.1.37 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.7 NAME 'nameForms' DESC 'RFC4512: name forms ' EQU\n ALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.3\n 5 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.21.8 NAME 'matchingRuleUse' DESC 'RFC4512: matching r\n ule uses' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.146\n 6.115.121.1.31 USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.16 NAME 'ldapSyntaxes' DESC 'RFC\n 4512: LDAP syntaxes' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.\n 6.1.4.1.1466.115.121.1.54 USAGE directoryOperation )\nolcAttributeTypes: ( 2.5.4.1 NAME ( 'aliasedObjectName' 'aliasedEntryName' ) D\n ESC 'RFC4512: name of aliased object' EQUALITY distinguishedNameMatch SYNTAX \n 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )\nolcAttributeTypes: ( 2.16.840.1.113730.3.1.34 NAME 'ref' DESC 'RFC3296: subord\n inate referral URL' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1\n .15 USAGE distributedOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.1 NAME 'entry' DESC 'OpenLDAP ACL en\n try pseudo-attribute' SYNTAX 1.3.6.1.4.1.4203.1.1.1 SINGLE-VALUE NO-USER-MODI\n FICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.2 NAME 'children' DESC 'OpenLDAP ACL\n children pseudo-attribute' SYNTAX 1.3.6.1.4.1.4203.1.1.1 SINGLE-VALUE NO-USE\n R-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.8 NAME ( 'authzTo' 'saslAuthzTo' )\n DESC 'proxy authorization targets' EQUALITY authzMatch SYNTAX 1.3.6.1.4.1.42\n 03.666.2.7 USAGE distributedOperation X-ORDERED 'VALUES' )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.9 NAME ( 'authzFrom' 'saslAuthzFro\n m' ) DESC 'proxy authorization sources' EQUALITY authzMatch SYNTAX 1.3.6.1.4.\n 1.4203.666.2.7 USAGE distributedOperation X-ORDERED 'VALUES' )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.119.3 NAME 'entryTtl' DESC 'RFC2589:\n entry time-to-live' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE NO-USE\n R-MODIFICATION USAGE dSAOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.1466.101.119.4 NAME 'dynamicSubtrees' DESC 'R\n FC2589: dynamic subtrees' SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 NO-USER-MODIFI\n CATION USAGE dSAOperation )\nolcAttributeTypes: ( 2.5.4.49 NAME 'distinguishedName' DESC 'RFC4519: common s\n upertype of DN attributes' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1\n .1466.115.121.1.12 )\nolcAttributeTypes: ( 2.5.4.41 NAME 'name' DESC 'RFC4519: common supertype of n\n ame attributes' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYN\n TAX 1.3.6.1.4.1.1466.115.121.1.15{32768} )\nolcAttributeTypes: ( 2.5.4.3 NAME ( 'cn' 'commonName' ) DESC 'RFC4519: common \n name(s) for which the entity is known by' SUP name )\nolcAttributeTypes: ( 0.9.2342.19200300.100.1.1 NAME ( 'uid' 'userid' ) DESC 'R\n FC4519: user identifier' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstrings\n Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: ( 1.3.6.1.1.1.1.0 NAME 'uidNumber' DESC 'RFC2307: An intege\n r uniquely identifying a user in an administrative domain' EQUALITY integerMa\n tch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: ( 1.3.6.1.1.1.1.1 NAME 'gidNumber' DESC 'RFC2307: An intege\n r uniquely identifying a group in an administrative domain' EQUALITY integerM\n atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: ( 2.5.4.35 NAME 'userPassword' DESC 'RFC4519/2307: password\n of user' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128}\n )\nolcAttributeTypes: ( 1.3.6.1.4.1.250.1.57 NAME 'labeledURI' DESC 'RFC2079: Uni\n form Resource Identifier with optional label' EQUALITY caseExactMatch SYNTAX \n 1.3.6.1.4.1.1466.115.121.1.15 )\nolcAttributeTypes: ( 2.5.4.13 NAME 'description' DESC 'RFC4519: descriptive in\n formation' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1\n .3.6.1.4.1.1466.115.121.1.15{1024} )\nolcAttributeTypes: ( 2.5.4.34 NAME 'seeAlso' DESC 'RFC4519: DN of related obje\n ct' SUP distinguishedName )\nolcAttributeTypes: ( OLcfgGlAt:78 NAME 'olcConfigFile' DESC 'File for slapd co\n nfiguration directives' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SI\n NGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:79 NAME 'olcConfigDir' DESC 'Directory for slap\n d configuration backend' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString S\n INGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:1 NAME 'olcAccess' DESC 'Access Control List' E\n QUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:86 NAME 'olcAddContentAcl' DESC 'Check ACLs aga\n inst content of Add ops' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:2 NAME 'olcAllows' DESC 'Allowed set of depreca\n ted features' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:3 NAME 'olcArgsFile' DESC 'File for slapd comma\n nd line options' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VA\n LUE )\nolcAttributeTypes: ( OLcfgGlAt:5 NAME 'olcAttributeOptions' EQUALITY caseIgnor\n eMatch SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:4 NAME 'olcAttributeTypes' DESC 'OpenLDAP attri\n buteTypes' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALU\n ES' )\nolcAttributeTypes: ( OLcfgGlAt:6 NAME 'olcAuthIDRewrite' EQUALITY caseIgnoreMa\n tch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:7 NAME 'olcAuthzPolicy' EQUALITY caseIgnoreMatc\n h SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:8 NAME 'olcAuthzRegexp' EQUALITY caseIgnoreMatc\n h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:9 NAME 'olcBackend' DESC 'A type of backend' EQ\n UALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VALUE X-ORDERED 'SIBL\n INGS' )\nolcAttributeTypes: ( OLcfgGlAt:10 NAME 'olcConcurrency' SYNTAX OMsInteger SING\n LE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:11 NAME 'olcConnMaxPending' SYNTAX OMsInteger S\n INGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:12 NAME 'olcConnMaxPendingAuth' SYNTAX OMsInteg\n er SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:13 NAME 'olcDatabase' DESC 'The backend type fo\n r a database instance' SUP olcBackend SINGLE-VALUE X-ORDERED 'SIBLINGS' )\nolcAttributeTypes: ( OLcfgGlAt:14 NAME 'olcDefaultSearchBase' SYNTAX OMsDN SIN\n GLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:15 NAME 'olcDisallows' EQUALITY caseIgnoreMatch\n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:16 NAME 'olcDitContentRules' DESC 'OpenLDAP DIT\n content rules' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED \n 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:17 NAME 'olcGentleHUP' SYNTAX OMsBoolean SINGLE\n -VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.17 NAME 'olcHidden' SYNTAX OMsBoolean SINGLE-\n VALUE )\nolcAttributeTypes: ( OLcfgGlAt:18 NAME 'olcIdleTimeout' SYNTAX OMsInteger SING\n LE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:19 NAME 'olcInclude' SUP labeledURI )\nolcAttributeTypes: ( OLcfgGlAt:20 NAME 'olcIndexSubstrIfMinLen' SYNTAX OMsInte\n ger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:21 NAME 'olcIndexSubstrIfMaxLen' SYNTAX OMsInte\n ger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:22 NAME 'olcIndexSubstrAnyLen' SYNTAX OMsIntege\n r SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:23 NAME 'olcIndexSubstrAnyStep' SYNTAX OMsInteg\n er SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:84 NAME 'olcIndexIntLen' SYNTAX OMsInteger SING\n LE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.4 NAME 'olcLastMod' SYNTAX OMsBoolean SINGLE-\n VALUE )\nolcAttributeTypes: ( OLcfgGlAt:85 NAME 'olcLdapSyntaxes' DESC 'OpenLDAP ldapSy\n ntax' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgDbAt:0.5 NAME 'olcLimits' EQUALITY caseIgnoreMatch S\n YNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:26 NAME 'olcLocalSSF' SYNTAX OMsInteger SINGLE-\n VALUE )\nolcAttributeTypes: ( OLcfgGlAt:27 NAME 'olcLogFile' SYNTAX OMsDirectoryString \n SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:28 NAME 'olcLogLevel' EQUALITY caseIgnoreMatch \n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgDbAt:0.6 NAME 'olcMaxDerefDepth' SYNTAX OMsInteger S\n INGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.16 NAME 'olcMirrorMode' SYNTAX OMsBoolean SIN\n GLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:30 NAME 'olcModuleLoad' EQUALITY caseIgnoreMatc\n h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:31 NAME 'olcModulePath' SYNTAX OMsDirectoryStri\n ng SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.18 NAME 'olcMonitoring' SYNTAX OMsBoolean SIN\n GLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:32 NAME 'olcObjectClasses' DESC 'OpenLDAP objec\n t classes' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALU\n ES' )\nolcAttributeTypes: ( OLcfgGlAt:33 NAME 'olcObjectIdentifier' EQUALITY caseIgno\n reMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:34 NAME 'olcOverlay' SUP olcDatabase SINGLE-VAL\n UE X-ORDERED 'SIBLINGS' )\nolcAttributeTypes: ( OLcfgGlAt:35 NAME 'olcPasswordCryptSaltFormat' SYNTAX OMs\n DirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:36 NAME 'olcPasswordHash' EQUALITY caseIgnoreMa\n tch SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:37 NAME 'olcPidFile' SYNTAX OMsDirectoryString \n SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:38 NAME 'olcPlugin' EQUALITY caseIgnoreMatch SY\n NTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:39 NAME 'olcPluginLogFile' SYNTAX OMsDirectoryS\n tring SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:40 NAME 'olcReadOnly' SYNTAX OMsBoolean SINGLE-\n VALUE )\nolcAttributeTypes: ( OLcfgGlAt:41 NAME 'olcReferral' SUP labeledURI SINGLE-VAL\n UE )\nolcAttributeTypes: ( OLcfgDbAt:0.7 NAME 'olcReplica' SUP labeledURI EQUALITY c\n aseIgnoreMatch X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:43 NAME 'olcReplicaArgsFile' SYNTAX OMsDirector\n yString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:44 NAME 'olcReplicaPidFile' SYNTAX OMsDirectory\n String SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:45 NAME 'olcReplicationInterval' SYNTAX OMsInte\n ger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:46 NAME 'olcReplogFile' SYNTAX OMsDirectoryStri\n ng SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:47 NAME 'olcRequires' EQUALITY caseIgnoreMatch \n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:48 NAME 'olcRestrict' EQUALITY caseIgnoreMatch \n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:49 NAME 'olcReverseLookup' SYNTAX OMsBoolean SI\n NGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.8 NAME 'olcRootDN' EQUALITY distinguishedName\n Match SYNTAX OMsDN SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:51 NAME 'olcRootDSE' EQUALITY caseIgnoreMatch S\n YNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgDbAt:0.9 NAME 'olcRootPW' SYNTAX OMsDirectoryString \n SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:89 NAME 'olcSaslAuxprops' SYNTAX OMsDirectorySt\n ring SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:53 NAME 'olcSaslHost' SYNTAX OMsDirectoryString\n SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:54 NAME 'olcSaslRealm' SYNTAX OMsDirectoryStrin\n g SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:56 NAME 'olcSaslSecProps' SYNTAX OMsDirectorySt\n ring SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:58 NAME 'olcSchemaDN' EQUALITY distinguishedNam\n eMatch SYNTAX OMsDN SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:59 NAME 'olcSecurity' EQUALITY caseIgnoreMatch \n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:81 NAME 'olcServerID' EQUALITY caseIgnoreMatch \n SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:60 NAME 'olcSizeLimit' SYNTAX OMsDirectoryStrin\n g SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:61 NAME 'olcSockbufMaxIncoming' SYNTAX OMsInteg\n er SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:62 NAME 'olcSockbufMaxIncomingAuth' SYNTAX OMsI\n nteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:83 NAME 'olcSortVals' DESC 'Attributes whose va\n lues will always be sorted' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryStrin\n g )\nolcAttributeTypes: ( OLcfgDbAt:0.15 NAME 'olcSubordinate' SYNTAX OMsDirectoryS\n tring SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.10 NAME 'olcSuffix' EQUALITY distinguishedNam\n eMatch SYNTAX OMsDN )\nolcAttributeTypes: ( OLcfgDbAt:0.19 NAME 'olcSyncUseSubentry' DESC 'Store sync\n context in a subentry' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.11 NAME 'olcSyncrepl' EQUALITY caseIgnoreMatc\n h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgGlAt:90 NAME 'olcTCPBuffer' DESC 'Custom TCP buffer \n size' SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgGlAt:66 NAME 'olcThreads' SYNTAX OMsInteger SINGLE-V\n ALUE )\nolcAttributeTypes: ( OLcfgGlAt:67 NAME 'olcTimeLimit' SYNTAX OMsDirectoryStrin\n g )\nolcAttributeTypes: ( OLcfgGlAt:68 NAME 'olcTLSCACertificateFile' SYNTAX OMsDir\n ectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:69 NAME 'olcTLSCACertificatePath' SYNTAX OMsDir\n ectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:70 NAME 'olcTLSCertificateFile' SYNTAX OMsDirec\n toryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:71 NAME 'olcTLSCertificateKeyFile' SYNTAX OMsDi\n rectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:72 NAME 'olcTLSCipherSuite' SYNTAX OMsDirectory\n String SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:73 NAME 'olcTLSCRLCheck' SYNTAX OMsDirectoryStr\n ing SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:82 NAME 'olcTLSCRLFile' SYNTAX OMsDirectoryStri\n ng SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:74 NAME 'olcTLSRandFile' SYNTAX OMsDirectoryStr\n ing SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:75 NAME 'olcTLSVerifyClient' SYNTAX OMsDirector\n yString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:77 NAME 'olcTLSDHParamFile' SYNTAX OMsDirectory\n String SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:87 NAME 'olcTLSProtocolMin' SYNTAX OMsDirectory\n String SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgGlAt:80 NAME 'olcToolThreads' SYNTAX OMsInteger SING\n LE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.12 NAME 'olcUpdateDN' SYNTAX OMsDN SINGLE-VAL\n UE )\nolcAttributeTypes: ( OLcfgDbAt:0.13 NAME 'olcUpdateRef' SUP labeledURI EQUALIT\n Y caseIgnoreMatch )\nolcAttributeTypes: ( OLcfgGlAt:88 NAME 'olcWriteTimeout' SYNTAX OMsInteger SIN\n GLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.1 NAME 'olcDbDirectory' DESC 'Directory for d\n atabase content' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VA\n LUE )\nolcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.5 NAME 'OpenLDAPaci' DESC 'OpenLDA\n P access control information (experimental)' EQUALITY OpenLDAPaciMatch SYNTAX\n 1.3.6.1.4.1.4203.666.2.1 USAGE directoryOperation )\nolcAttributeTypes: ( OLcfgDbAt:1.11 NAME 'olcDbCacheFree' DESC 'Number of extr\n a entries to free when max is reached' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.1 NAME 'olcDbCacheSize' DESC 'Entry cache siz\n e in entries' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.2 NAME 'olcDbCheckpoint' DESC 'Database check\n point interval in kbytes and minutes' SYNTAX OMsDirectoryString SINGLE-VALUE \n )\nolcAttributeTypes: ( OLcfgDbAt:1.16 NAME 'olcDbChecksum' DESC 'Enable database\n checksum validation' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.13 NAME 'olcDbCryptFile' DESC 'Pathname of fi\n le containing the DB encryption key' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.14 NAME 'olcDbCryptKey' DESC 'DB encryption k\n ey' SYNTAX OMsOctetString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.3 NAME 'olcDbConfig' DESC 'BerkeleyDB DB_CONF\n IG configuration directives' SYNTAX OMsIA5String X-ORDERED 'VALUES' )\nolcAttributeTypes: ( OLcfgDbAt:1.4 NAME 'olcDbNoSync' DESC 'Disable synchronou\n s database writes' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.15 NAME 'olcDbPageSize' DESC 'Page size of sp\n ecified DB, in Kbytes' EQUALITY caseExactMatch SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgDbAt:1.5 NAME 'olcDbDirtyRead' DESC 'Allow reads of \n uncommitted data' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.12 NAME 'olcDbDNcacheSize' DESC 'DN cache siz\n e' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.6 NAME 'olcDbIDLcacheSize' DESC 'IDL cache si\n ze in IDLs' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.2 NAME 'olcDbIndex' DESC 'Attribute index par\n ameters' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString )\nolcAttributeTypes: ( OLcfgDbAt:1.7 NAME 'olcDbLinearIndex' DESC 'Index attribu\n tes one at a time' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.8 NAME 'olcDbLockDetect' DESC 'Deadlock detec\n tion algorithm' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:0.3 NAME 'olcDbMode' DESC 'Unix permissions of \n database files' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.9 NAME 'olcDbSearchStack' DESC 'Depth of sear\n ch stack in IDLs' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgDbAt:1.10 NAME 'olcDbShmKey' DESC 'Key for shared me\n mory region' SYNTAX OMsInteger SINGLE-VALUE )\nolcAttributeTypes: ( 1.2.840.113556.1.2.102 NAME 'memberOf' DESC 'Group that t\n he entry belongs to' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.\n 115.121.1.12 USAGE dSAOperation X-ORIGIN 'iPlanet Delegated Administrator' )\nolcAttributeTypes: ( OLcfgOvAt:18.0 NAME 'olcMemberOfDN' DESC 'DN to be used a\n s modifiersName' SYNTAX OMsDN SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.1 NAME 'olcMemberOfDangling' DESC 'Behavior \n with respect to dangling members, constrained to ignore, drop, error' SYNTAX \n OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.2 NAME 'olcMemberOfRefInt' DESC 'Take care o\n f referential integrity' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.3 NAME 'olcMemberOfGroupOC' DESC 'Group obje\n ctClass' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.4 NAME 'olcMemberOfMemberAD' DESC 'member at\n tribute' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.5 NAME 'olcMemberOfMemberOfAD' DESC 'memberO\n f attribute' SYNTAX OMsDirectoryString SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:18.7 NAME 'olcMemberOfDanglingError' DESC 'Erro\n r code returned in case of dangling back reference' SYNTAX OMsDirectoryString\n SINGLE-VALUE )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.16 NAME 'pwdChangedTime' DESC 'Th\n e time the password was last changed' EQUALITY generalizedTimeMatch ORDERING \n generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALU\n E NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.17 NAME 'pwdAccountLockedTime' DE\n SC 'The time an user account was locked' EQUALITY generalizedTimeMatch ORDERI\n NG generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-V\n ALUE USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.19 NAME 'pwdFailureTime' DESC 'Th\n e timestamps of the last consecutive authentication failures' EQUALITY genera\n lizedTimeMatch ORDERING generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.\n 115.121.1.24 NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.20 NAME 'pwdHistory' DESC 'The hi\n story of users passwords' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.1\n 15.121.1.40 NO-USER-MODIFICATION USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.21 NAME 'pwdGraceUseTime' DESC 'T\n he timestamps of the grace login once the password has expired' EQUALITY gene\n ralizedTimeMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 NO-USER-MODIFICATION US\n AGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.22 NAME 'pwdReset' DESC 'The indi\n cation that the password has been reset' EQUALITY booleanMatch SYNTAX 1.3.6.1\n .4.1.1466.115.121.1.7 SINGLE-VALUE USAGE directoryOperation )\nolcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.23 NAME 'pwdPolicySubentry' DESC \n 'The pwdPolicy subentry in effect for this object' EQUALITY distinguishedName\n Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE USAGE directoryOperat\n ion )\nolcAttributeTypes: ( OLcfgOvAt:12.1 NAME 'olcPPolicyDefault' DESC 'DN of a pwd\n Policy object for uncustomized objects' SYNTAX OMsDN SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:12.2 NAME 'olcPPolicyHashCleartext' DESC 'Hash \n passwords on add or modify' SYNTAX OMsBoolean SINGLE-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:12.4 NAME 'olcPPolicyForwardUpdates' DESC 'Allo\n w policy state updates to be forwarded via updateref' SYNTAX OMsBoolean SINGL\n E-VALUE )\nolcAttributeTypes: ( OLcfgOvAt:12.3 NAME 'olcPPolicyUseLockout' DESC 'Warn cli\n ents with AccountLocked' SYNTAX OMsBoolean SINGLE-VALUE )\nolcObjectClasses: ( 2.5.6.0 NAME 'top' DESC 'top of the superclass chain' ABST\n RACT MUST objectClass )\nolcObjectClasses: ( 1.3.6.1.4.1.1466.101.120.111 NAME 'extensibleObject' DESC \n 'RFC4512: extensible object' SUP top AUXILIARY )\nolcObjectClasses: ( 2.5.6.1 NAME 'alias' DESC 'RFC4512: an alias' SUP top STRU\n CTURAL MUST aliasedObjectName )\nolcObjectClasses: ( 2.16.840.1.113730.3.2.6 NAME 'referral' DESC 'namedref: na\n med subordinate referral' SUP top STRUCTURAL MUST ref )\nolcObjectClasses: ( 1.3.6.1.4.1.4203.1.4.1 NAME ( 'OpenLDAProotDSE' 'LDAProotD\n SE' ) DESC 'OpenLDAP Root DSE object' SUP top STRUCTURAL MAY cn )\nolcObjectClasses: ( 2.5.17.0 NAME 'subentry' DESC 'RFC3672: subentry' SUP top \n STRUCTURAL MUST ( cn $ subtreeSpecification ) )\nolcObjectClasses: ( 2.5.20.1 NAME 'subschema' DESC 'RFC4512: controlling subsc\n hema (sub)entry' AUXILIARY MAY ( dITStructureRules $ nameForms $ dITContentRu\n les $ objectClasses $ attributeTypes $ matchingRules $ matchingRuleUse ) )\nolcObjectClasses: ( 1.3.6.1.4.1.1466.101.119.2 NAME 'dynamicObject' DESC 'RFC2\n 589: Dynamic Object' SUP top AUXILIARY )\nolcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.4 NAME 'glue' DESC 'Glue Entry' SUP\n top STRUCTURAL )\nolcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.5 NAME 'syncConsumerSubentry' DESC \n 'Persistent Info for SyncRepl Consumer' AUXILIARY MAY syncreplCookie )\nolcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.6 NAME 'syncProviderSubentry' DESC \n 'Persistent Info for SyncRepl Producer' AUXILIARY MAY contextCSN )\nolcObjectClasses: ( OLcfgGlOc:0 NAME 'olcConfig' DESC 'OpenLDAP configuration \n object' SUP top ABSTRACT )\nolcObjectClasses: ( OLcfgGlOc:1 NAME 'olcGlobal' DESC 'OpenLDAP Global configu\n ration options' SUP olcConfig STRUCTURAL MAY ( cn $ olcConfigFile $ olcConfig\n Dir $ olcAllows $ olcArgsFile $ olcAttributeOptions $ olcAuthIDRewrite $ olcA\n uthzPolicy $ olcAuthzRegexp $ olcConcurrency $ olcConnMaxPending $ olcConnMax\n PendingAuth $ olcDisallows $ olcGentleHUP $ olcIdleTimeout $ olcIndexSubstrIf\n MaxLen $ olcIndexSubstrIfMinLen $ olcIndexSubstrAnyLen $ olcIndexSubstrAnySte\n p $ olcIndexIntLen $ olcLocalSSF $ olcLogFile $ olcLogLevel $ olcPasswordCryp\n tSaltFormat $ olcPasswordHash $ olcPidFile $ olcPluginLogFile $ olcReadOnly $\n olcReferral $ olcReplogFile $ olcRequires $ olcRestrict $ olcReverseLookup $\n olcRootDSE $ olcSaslAuxprops $ olcSaslHost $ olcSaslRealm $ olcSaslSecProps \n $ olcSecurity $ olcServerID $ olcSizeLimit $ olcSockbufMaxIncoming $ olcSockb\n ufMaxIncomingAuth $ olcTCPBuffer $ olcThreads $ olcTimeLimit $ olcTLSCACertif\n icateFile $ olcTLSCACertificatePath $ olcTLSCertificateFile $ olcTLSCertifica\n teKeyFile $ olcTLSCipherSuite $ olcTLSCRLCheck $ olcTLSRandFile $ olcTLSVerif\n yClient $ olcTLSDHParamFile $ olcTLSCRLFile $ olcToolThreads $ olcWriteTimeou\n t $ olcObjectIdentifier $ olcAttributeTypes $ olcObjectClasses $ olcDitConten\n tRules $ olcLdapSyntaxes ) )\nolcObjectClasses: ( OLcfgGlOc:2 NAME 'olcSchemaConfig' DESC 'OpenLDAP schema o\n bject' SUP olcConfig STRUCTURAL MAY ( cn $ olcObjectIdentifier $ olcAttribute\n Types $ olcObjectClasses $ olcDitContentRules $ olcLdapSyntaxes ) )\nolcObjectClasses: ( OLcfgGlOc:3 NAME 'olcBackendConfig' DESC 'OpenLDAP Backend\n -specific options' SUP olcConfig STRUCTURAL MUST olcBackend )\nolcObjectClasses: ( OLcfgGlOc:4 NAME 'olcDatabaseConfig' DESC 'OpenLDAP Databa\n se-specific options' SUP olcConfig STRUCTURAL MUST olcDatabase MAY ( olcHidde\n n $ olcSuffix $ olcSubordinate $ olcAccess $ olcAddContentAcl $ olcLastMod $ \n olcLimits $ olcMaxDerefDepth $ olcPlugin $ olcReadOnly $ olcReplica $ olcRepl\n icaArgsFile $ olcReplicaPidFile $ olcReplicationInterval $ olcReplogFile $ ol\n cRequires $ olcRestrict $ olcRootDN $ olcRootPW $ olcSchemaDN $ olcSecurity $\n olcSizeLimit $ olcSyncUseSubentry $ olcSyncrepl $ olcTimeLimit $ olcUpdateDN\n $ olcUpdateRef $ olcMirrorMode $ olcMonitoring ) )\nolcObjectClasses: ( OLcfgGlOc:5 NAME 'olcOverlayConfig' DESC 'OpenLDAP Overlay\n -specific options' SUP olcConfig STRUCTURAL MUST olcOverlay )\nolcObjectClasses: ( OLcfgGlOc:6 NAME 'olcIncludeFile' DESC 'OpenLDAP configura\n tion include file' SUP olcConfig STRUCTURAL MUST olcInclude MAY ( cn $ olcRoo\n tDSE ) )\nolcObjectClasses: ( OLcfgGlOc:7 NAME 'olcFrontendConfig' DESC 'OpenLDAP fronte\n nd configuration' AUXILIARY MAY ( olcDefaultSearchBase $ olcPasswordHash $ ol\n cSortVals ) )\nolcObjectClasses: ( OLcfgGlOc:8 NAME 'olcModuleList' DESC 'OpenLDAP dynamic mo\n dule info' SUP olcConfig STRUCTURAL MAY ( cn $ olcModulePath $ olcModuleLoad \n ) )\nolcObjectClasses: ( OLcfgDbOc:2.1 NAME 'olcLdifConfig' DESC 'LDIF backend conf\n iguration' SUP olcDatabaseConfig STRUCTURAL MUST olcDbDirectory )\nolcObjectClasses: ( OLcfgDbOc:1.2 NAME 'olcHdbConfig' DESC 'HDB backend config\n uration' SUP olcDatabaseConfig STRUCTURAL MUST olcDbDirectory MAY ( olcDbCach\n eSize $ olcDbCheckpoint $ olcDbConfig $ olcDbCryptFile $ olcDbCryptKey $ olcD\n bNoSync $ olcDbDirtyRead $ olcDbIDLcacheSize $ olcDbIndex $ olcDbLinearIndex \n $ olcDbLockDetect $ olcDbMode $ olcDbSearchStack $ olcDbShmKey $ olcDbCacheFr\n ee $ olcDbDNcacheSize $ olcDbPageSize ) )\nolcObjectClasses: ( OLcfgOvOc:18.1 NAME 'olcMemberOf' DESC 'Member-of configur\n ation' SUP olcOverlayConfig STRUCTURAL MAY ( olcMemberOfDN $ olcMemberOfDangl\n ing $ olcMemberOfDanglingError $ olcMemberOfRefInt $ olcMemberOfGroupOC $ olc\n MemberOfMemberAD $ olcMemberOfMemberOfAD ) )\nolcObjectClasses: ( OLcfgOvOc:12.1 NAME 'olcPPolicyConfig' DESC 'Password Poli\n cy configuration' SUP olcOverlayConfig STRUCTURAL MAY ( olcPPolicyDefault $ o\n lcPPolicyHashCleartext $ olcPPolicyUseLockout $ olcPPolicyForwardUpdates ) )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.1 DESC 'ACI Item' X-BINARY-TRANS\n FER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.2 DESC 'Access Point' X-NOT-HUMA\n N-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.3 DESC 'Attribute Type Descripti\n on' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.4 DESC 'Audio' X-NOT-HUMAN-READA\n BLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.5 DESC 'Binary' X-NOT-HUMAN-READ\n ABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.6 DESC 'Bit String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.7 DESC 'Boolean' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.8 DESC 'Certificate' X-BINARY-TR\n ANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.9 DESC 'Certificate List' X-BINA\n RY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.10 DESC 'Certificate Pair' X-BIN\n ARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.1 DESC 'X.509 AttributeCertifi\n cate' X-BINARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.12 DESC 'Distinguished Name' )\nolcLdapSyntaxes: ( 1.2.36.79672281.1.5.0 DESC 'RDN' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.13 DESC 'Data Quality' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.14 DESC 'Delivery Method' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.15 DESC 'Directory String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.16 DESC 'DIT Content Rule Descri\n ption' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.17 DESC 'DIT Structure Rule Desc\n ription' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.19 DESC 'DSA Quality' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.20 DESC 'DSE Type' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.21 DESC 'Enhanced Guide' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.22 DESC 'Facsimile Telephone Num\n ber' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.23 DESC 'Fax' X-NOT-HUMAN-READAB\n LE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.24 DESC 'Generalized Time' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.25 DESC 'Guide' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.26 DESC 'IA5 String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.27 DESC 'Integer' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.28 DESC 'JPEG' X-NOT-HUMAN-READA\n BLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.29 DESC 'Master And Shadow Acces\n s Points' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.30 DESC 'Matching Rule Descripti\n on' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.31 DESC 'Matching Rule Use Descr\n iption' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.32 DESC 'Mail Preference' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.33 DESC 'MHS OR Address' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.34 DESC 'Name And Optional UID' \n )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.35 DESC 'Name Form Description' \n )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.36 DESC 'Numeric String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.37 DESC 'Object Class Descriptio\n n' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.38 DESC 'OID' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.39 DESC 'Other Mailbox' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.40 DESC 'Octet String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.41 DESC 'Postal Address' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.42 DESC 'Protocol Information' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.43 DESC 'Presentation Address' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.44 DESC 'Printable String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.11 DESC 'Country String' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.45 DESC 'SubtreeSpecification' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.49 DESC 'Supported Algorithm' X-\n BINARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.50 DESC 'Telephone Number' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.51 DESC 'Teletex Terminal Identi\n fier' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.52 DESC 'Telex Number' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.54 DESC 'LDAP Syntax Description\n ' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.55 DESC 'Modify Rights' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.56 DESC 'LDAP Schema Definition'\n )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.57 DESC 'LDAP Schema Description\n ' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.58 DESC 'Substring Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.1.0.0 DESC 'RFC2307 NIS Netgroup Triple' )\nolcLdapSyntaxes: ( 1.3.6.1.1.1.0.1 DESC 'RFC2307 Boot Parameter' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.1 DESC 'Certificate Exact Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.2 DESC 'Certificate Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.3 DESC 'Certificate Pair Exact Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.4 DESC 'Certificate Pair Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.5 DESC 'Certificate List Exact Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.6 DESC 'Certificate List Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.15.7 DESC 'Algorithm Identifier' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.2 DESC 'AttributeCertificate E\n xact Assertion' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.3 DESC 'AttributeCertificate A\n ssertion' )\nolcLdapSyntaxes: ( 1.3.6.1.1.16.1 DESC 'UUID' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.2.1 DESC 'CSN' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.2.4 DESC 'CSN SID' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.1.1.1 DESC 'OpenLDAP void' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.2.7 DESC 'OpenLDAP authz' )\nolcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.2.1 DESC 'OpenLDAP Experimental ACI' )\n\n# {0}core, schema, config\ndn: cn={0}core,cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: {0}core\nolcAttributeTypes: {0}( 2.5.4.2 NAME 'knowledgeInformation' DESC 'RFC2256: kno\n wledge information' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.\n 1.15{32768} )\nolcAttributeTypes: {1}( 2.5.4.4 NAME ( 'sn' 'surname' ) DESC 'RFC2256: last (f\n amily) name(s) for which the entity is known by' SUP name )\nolcAttributeTypes: {2}( 2.5.4.5 NAME 'serialNumber' DESC 'RFC2256: serial numb\n er of the entity' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch S\n YNTAX 1.3.6.1.4.1.1466.115.121.1.44{64} )\nolcAttributeTypes: {3}( 2.5.4.6 NAME ( 'c' 'countryName' ) DESC 'RFC2256: ISO-\n 3166 country 2-letter code' SUP name SINGLE-VALUE )\nolcAttributeTypes: {4}( 2.5.4.7 NAME ( 'l' 'localityName' ) DESC 'RFC2256: loc\n ality which this object resides in' SUP name )\nolcAttributeTypes: {5}( 2.5.4.8 NAME ( 'st' 'stateOrProvinceName' ) DESC 'RFC2\n 256: state or province which this object resides in' SUP name )\nolcAttributeTypes: {6}( 2.5.4.9 NAME ( 'street' 'streetAddress' ) DESC 'RFC225\n 6: street address of this object' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreS\n ubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )\nolcAttributeTypes: {7}( 2.5.4.10 NAME ( 'o' 'organizationName' ) DESC 'RFC2256\n : organization this object belongs to' SUP name )\nolcAttributeTypes: {8}( 2.5.4.11 NAME ( 'ou' 'organizationalUnitName' ) DESC '\n RFC2256: organizational unit this object belongs to' SUP name )\nolcAttributeTypes: {9}( 2.5.4.12 NAME 'title' DESC 'RFC2256: title associated \n with the entity' SUP name )\nolcAttributeTypes: {10}( 2.5.4.14 NAME 'searchGuide' DESC 'RFC2256: search gui\n de, deprecated by enhancedSearchGuide' SYNTAX 1.3.6.1.4.1.1466.115.121.1.25 )\nolcAttributeTypes: {11}( 2.5.4.15 NAME 'businessCategory' DESC 'RFC2256: busin\n ess category' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTA\n X 1.3.6.1.4.1.1466.115.121.1.15{128} )\nolcAttributeTypes: {12}( 2.5.4.16 NAME 'postalAddress' DESC 'RFC2256: postal a\n ddress' EQUALITY caseIgnoreListMatch SUBSTR caseIgnoreListSubstringsMatch SYN\n TAX 1.3.6.1.4.1.1466.115.121.1.41 )\nolcAttributeTypes: {13}( 2.5.4.17 NAME 'postalCode' DESC 'RFC2256: postal code\n ' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.\n 1.1466.115.121.1.15{40} )\nolcAttributeTypes: {14}( 2.5.4.18 NAME 'postOfficeBox' DESC 'RFC2256: Post Off\n ice Box' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3\n .6.1.4.1.1466.115.121.1.15{40} )\nolcAttributeTypes: {15}( 2.5.4.19 NAME 'physicalDeliveryOfficeName' DESC 'RFC2\n 256: Physical Delivery Office Name' EQUALITY caseIgnoreMatch SUBSTR caseIgnor\n eSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )\nolcAttributeTypes: {16}( 2.5.4.20 NAME 'telephoneNumber' DESC 'RFC2256: Teleph\n one Number' EQUALITY telephoneNumberMatch SUBSTR telephoneNumberSubstringsMat\n ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.50{32} )\nolcAttributeTypes: {17}( 2.5.4.21 NAME 'telexNumber' DESC 'RFC2256: Telex Numb\n er' SYNTAX 1.3.6.1.4.1.1466.115.121.1.52 )\nolcAttributeTypes: {18}( 2.5.4.22 NAME 'teletexTerminalIdentifier' DESC 'RFC22\n 56: Teletex Terminal Identifier' SYNTAX 1.3.6.1.4.1.1466.115.121.1.51 )\nolcAttributeTypes: {19}( 2.5.4.23 NAME ( 'facsimileTelephoneNumber' 'fax' ) DE\n SC 'RFC2256: Facsimile (Fax) Telephone Number' SYNTAX 1.3.6.1.4.1.1466.115.12\n 1.1.22 )\nolcAttributeTypes: {20}( 2.5.4.24 NAME 'x121Address' DESC 'RFC2256: X.121 Addr\n ess' EQUALITY numericStringMatch SUBSTR numericStringSubstringsMatch SYNTAX 1\n .3.6.1.4.1.1466.115.121.1.36{15} )\nolcAttributeTypes: {21}( 2.5.4.25 NAME 'internationaliSDNNumber' DESC 'RFC2256\n : international ISDN number' EQUALITY numericStringMatch SUBSTR numericString\n SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.36{16} )\nolcAttributeTypes: {22}( 2.5.4.26 NAME 'registeredAddress' DESC 'RFC2256: regi\n stered postal address' SUP postalAddress SYNTAX 1.3.6.1.4.1.1466.115.121.1.41\n )\nolcAttributeTypes: {23}( 2.5.4.27 NAME 'destinationIndicator' DESC 'RFC2256: d\n estination indicator' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMat\n ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.44{128} )\nolcAttributeTypes: {24}( 2.5.4.28 NAME 'preferredDeliveryMethod' DESC 'RFC2256\n : preferred delivery method' SYNTAX 1.3.6.1.4.1.1466.115.121.1.14 SINGLE-VALU\n E )\nolcAttributeTypes: {25}( 2.5.4.29 NAME 'presentationAddress' DESC 'RFC2256: pr\n esentation address' EQUALITY presentationAddressMatch SYNTAX 1.3.6.1.4.1.1466\n .115.121.1.43 SINGLE-VALUE )\nolcAttributeTypes: {26}( 2.5.4.30 NAME 'supportedApplicationContext' DESC 'RFC\n 2256: supported application context' EQUALITY objectIdentifierMatch SYNTAX 1.\n 3.6.1.4.1.1466.115.121.1.38 )\nolcAttributeTypes: {27}( 2.5.4.31 NAME 'member' DESC 'RFC2256: member of a gro\n up' SUP distinguishedName )\nolcAttributeTypes: {28}( 2.5.4.32 NAME 'owner' DESC 'RFC2256: owner (of the ob\n ject)' SUP distinguishedName )\nolcAttributeTypes: {29}( 2.5.4.33 NAME 'roleOccupant' DESC 'RFC2256: occupant \n of role' SUP distinguishedName )\nolcAttributeTypes: {30}( 2.5.4.36 NAME 'userCertificate' DESC 'RFC2256: X.509 \n user certificate, use ;binary' EQUALITY certificateExactMatch SYNTAX 1.3.6.1.\n 4.1.1466.115.121.1.8 )\nolcAttributeTypes: {31}( 2.5.4.37 NAME 'cACertificate' DESC 'RFC2256: X.509 CA\n certificate, use ;binary' EQUALITY certificateExactMatch SYNTAX 1.3.6.1.4.1.\n 1466.115.121.1.8 )\nolcAttributeTypes: {32}( 2.5.4.38 NAME 'authorityRevocationList' DESC 'RFC2256\n : X.509 authority revocation list, use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.1\n 21.1.9 )\nolcAttributeTypes: {33}( 2.5.4.39 NAME 'certificateRevocationList' DESC 'RFC22\n 56: X.509 certificate revocation list, use ;binary' SYNTAX 1.3.6.1.4.1.1466.1\n 15.121.1.9 )\nolcAttributeTypes: {34}( 2.5.4.40 NAME 'crossCertificatePair' DESC 'RFC2256: X\n .509 cross certificate pair, use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.121.1.1\n 0 )\nolcAttributeTypes: {35}( 2.5.4.42 NAME ( 'givenName' 'gn' ) DESC 'RFC2256: fir\n st name(s) for which the entity is known by' SUP name )\nolcAttributeTypes: {36}( 2.5.4.43 NAME 'initials' DESC 'RFC2256: initials of s\n ome or all of names, but not the surname(s).' SUP name )\nolcAttributeTypes: {37}( 2.5.4.44 NAME 'generationQualifier' DESC 'RFC2256: na\n me qualifier indicating a generation' SUP name )\nolcAttributeTypes: {38}( 2.5.4.45 NAME 'x500UniqueIdentifier' DESC 'RFC2256: X\n .500 unique identifier' EQUALITY bitStringMatch SYNTAX 1.3.6.1.4.1.1466.115.1\n 21.1.6 )\nolcAttributeTypes: {39}( 2.5.4.46 NAME 'dnQualifier' DESC 'RFC2256: DN qualifi\n er' EQUALITY caseIgnoreMatch ORDERING caseIgnoreOrderingMatch SUBSTR caseIgno\n reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.44 )\nolcAttributeTypes: {40}( 2.5.4.47 NAME 'enhancedSearchGuide' DESC 'RFC2256: en\n hanced search guide' SYNTAX 1.3.6.1.4.1.1466.115.121.1.21 )\nolcAttributeTypes: {41}( 2.5.4.48 NAME 'protocolInformation' DESC 'RFC2256: pr\n otocol information' EQUALITY protocolInformationMatch SYNTAX 1.3.6.1.4.1.1466\n .115.121.1.42 )\nolcAttributeTypes: {42}( 2.5.4.50 NAME 'uniqueMember' DESC 'RFC2256: unique me\n mber of a group' EQUALITY uniqueMemberMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1\n .34 )\nolcAttributeTypes: {43}( 2.5.4.51 NAME 'houseIdentifier' DESC 'RFC2256: house \n identifier' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX \n 1.3.6.1.4.1.1466.115.121.1.15{32768} )\nolcAttributeTypes: {44}( 2.5.4.52 NAME 'supportedAlgorithms' DESC 'RFC2256: su\n pported algorithms' SYNTAX 1.3.6.1.4.1.1466.115.121.1.49 )\nolcAttributeTypes: {45}( 2.5.4.53 NAME 'deltaRevocationList' DESC 'RFC2256: de\n lta revocation list; use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.121.1.9 )\nolcAttributeTypes: {46}( 2.5.4.54 NAME 'dmdName' DESC 'RFC2256: name of DMD' S\n UP name )\nolcAttributeTypes: {47}( 2.5.4.65 NAME 'pseudonym' DESC 'X.520(4th): pseudonym\n for the object' SUP name )\nolcAttributeTypes: {48}( 0.9.2342.19200300.100.1.3 NAME ( 'mail' 'rfc822Mailbo\n x' ) DESC 'RFC1274: RFC822 Mailbox' EQUALITY caseIgnoreIA5Match SUBSTR ca\n seIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )\nolcAttributeTypes: {49}( 0.9.2342.19200300.100.1.25 NAME ( 'dc' 'domainCompone\n nt' ) DESC 'RFC1274/2247: domain component' EQUALITY caseIgnoreIA5Match SUBST\n R caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VA\n LUE )\nolcAttributeTypes: {50}( 0.9.2342.19200300.100.1.37 NAME 'associatedDomain' DE\n SC 'RFC1274: domain associated with object' EQUALITY caseIgnoreIA5Match SUBST\n R caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {51}( 1.2.840.113549.1.9.1 NAME ( 'email' 'emailAddress' 'p\n kcs9email' ) DESC 'RFC3280: legacy attribute for email addresses in DNs' EQUA\n LITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.\n 1.1466.115.121.1.26{128} )\nolcObjectClasses: {0}( 2.5.6.2 NAME 'country' DESC 'RFC2256: a country' SUP to\n p STRUCTURAL MUST c MAY ( searchGuide $ description ) )\nolcObjectClasses: {1}( 2.5.6.3 NAME 'locality' DESC 'RFC2256: a locality' SUP \n top STRUCTURAL MAY ( street $ seeAlso $ searchGuide $ st $ l $ description ) \n )\nolcObjectClasses: {2}( 2.5.6.4 NAME 'organization' DESC 'RFC2256: an organizat\n ion' SUP top STRUCTURAL MUST o MAY ( userPassword $ searchGuide $ seeAlso $ b\n usinessCategory $ x121Address $ registeredAddress $ destinationIndicator $ pr\n eferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier $ telephoneNu\n mber $ internationaliSDNNumber $ facsimileTelephoneNumber $ street $ postOff\n iceBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ st $ l $ d\n escription ) )\nolcObjectClasses: {3}( 2.5.6.5 NAME 'organizationalUnit' DESC 'RFC2256: an org\n anizational unit' SUP top STRUCTURAL MUST ou MAY ( userPassword $ searchGuide\n $ seeAlso $ businessCategory $ x121Address $ registeredAddress $ destination\n Indicator $ preferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier\n $ telephoneNumber $ internationaliSDNNumber $ facsimileTelephoneNumber $ str\n eet $ postOfficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName\n $ st $ l $ description ) )\nolcObjectClasses: {4}( 2.5.6.6 NAME 'person' DESC 'RFC2256: a person' SUP top \n STRUCTURAL MUST ( sn $ cn ) MAY ( userPassword $ telephoneNumber $ seeAlso $ \n description ) )\nolcObjectClasses: {5}( 2.5.6.7 NAME 'organizationalPerson' DESC 'RFC2256: an o\n rganizational person' SUP person STRUCTURAL MAY ( title $ x121Address $ regis\n teredAddress $ destinationIndicator $ preferredDeliveryMethod $ telexNumber $\n teletexTerminalIdentifier $ telephoneNumber $ internationaliSDNNumber $ fac\n simileTelephoneNumber $ street $ postOfficeBox $ postalCode $ postalAddress $\n physicalDeliveryOfficeName $ ou $ st $ l ) )\nolcObjectClasses: {6}( 2.5.6.8 NAME 'organizationalRole' DESC 'RFC2256: an org\n anizational role' SUP top STRUCTURAL MUST cn MAY ( x121Address $ registeredAd\n dress $ destinationIndicator $ preferredDeliveryMethod $ telexNumber $ telete\n xTerminalIdentifier $ telephoneNumber $ internationaliSDNNumber $ facsimileTe\n lephoneNumber $ seeAlso $ roleOccupant $ preferredDeliveryMethod $ street $ p\n ostOfficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ ou $\n st $ l $ description ) )\nolcObjectClasses: {7}( 2.5.6.9 NAME 'groupOfNames' DESC 'RFC2256: a group of n\n ames (DNs)' SUP top STRUCTURAL MUST ( member $ cn ) MAY ( businessCategory $ \n seeAlso $ owner $ ou $ o $ description ) )\nolcObjectClasses: {8}( 2.5.6.10 NAME 'residentialPerson' DESC 'RFC2256: an res\n idential person' SUP person STRUCTURAL MUST l MAY ( businessCategory $ x121Ad\n dress $ registeredAddress $ destinationIndicator $ preferredDeliveryMethod $ \n telexNumber $ teletexTerminalIdentifier $ telephoneNumber $ internationaliSDN\n Number $ facsimileTelephoneNumber $ preferredDeliveryMethod $ street $ postOf\n ficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ st $ l ) \n )\nolcObjectClasses: {9}( 2.5.6.11 NAME 'applicationProcess' DESC 'RFC2256: an ap\n plication process' SUP top STRUCTURAL MUST cn MAY ( seeAlso $ ou $ l $ descri\n ption ) )\nolcObjectClasses: {10}( 2.5.6.12 NAME 'applicationEntity' DESC 'RFC2256: an ap\n plication entity' SUP top STRUCTURAL MUST ( presentationAddress $ cn ) MAY ( \n supportedApplicationContext $ seeAlso $ ou $ o $ l $ description ) )\nolcObjectClasses: {11}( 2.5.6.13 NAME 'dSA' DESC 'RFC2256: a directory system \n agent (a server)' SUP applicationEntity STRUCTURAL MAY knowledgeInformation )\nolcObjectClasses: {12}( 2.5.6.14 NAME 'device' DESC 'RFC2256: a device' SUP to\n p STRUCTURAL MUST cn MAY ( serialNumber $ seeAlso $ owner $ ou $ o $ l $ desc\n ription ) )\nolcObjectClasses: {13}( 2.5.6.15 NAME 'strongAuthenticationUser' DESC 'RFC2256\n : a strong authentication user' SUP top AUXILIARY MUST userCertificate )\nolcObjectClasses: {14}( 2.5.6.16 NAME 'certificationAuthority' DESC 'RFC2256: \n a certificate authority' SUP top AUXILIARY MUST ( authorityRevocationList $ c\n ertificateRevocationList $ cACertificate ) MAY crossCertificatePair )\nolcObjectClasses: {15}( 2.5.6.17 NAME 'groupOfUniqueNames' DESC 'RFC2256: a gr\n oup of unique names (DN and Unique Identifier)' SUP top STRUCTURAL MUST ( uni\n queMember $ cn ) MAY ( businessCategory $ seeAlso $ owner $ ou $ o $ descript\n ion ) )\nolcObjectClasses: {16}( 2.5.6.18 NAME 'userSecurityInformation' DESC 'RFC2256:\n a user security information' SUP top AUXILIARY MAY ( supportedAlgorithms ) )\nolcObjectClasses: {17}( 2.5.6.16.2 NAME 'certificationAuthority-V2' SUP certif\n icationAuthority AUXILIARY MAY ( deltaRevocationList ) )\nolcObjectClasses: {18}( 2.5.6.19 NAME 'cRLDistributionPoint' SUP top STRUCTURA\n L MUST ( cn ) MAY ( certificateRevocationList $ authorityRevocationList $ del\n taRevocationList ) )\nolcObjectClasses: {19}( 2.5.6.20 NAME 'dmd' SUP top STRUCTURAL MUST ( dmdName \n ) MAY ( userPassword $ searchGuide $ seeAlso $ businessCategory $ x121Address\n $ registeredAddress $ destinationIndicator $ preferredDeliveryMethod $ telex\n Number $ teletexTerminalIdentifier $ telephoneNumber $ internationaliSDNNumbe\n r $ facsimileTelephoneNumber $ street $ postOfficeBox $ postalCode $ postalAd\n dress $ physicalDeliveryOfficeName $ st $ l $ description ) )\nolcObjectClasses: {20}( 2.5.6.21 NAME 'pkiUser' DESC 'RFC2587: a PKI user' SUP\n top AUXILIARY MAY userCertificate )\nolcObjectClasses: {21}( 2.5.6.22 NAME 'pkiCA' DESC 'RFC2587: PKI certificate a\n uthority' SUP top AUXILIARY MAY ( authorityRevocationList $ certificateRevoca\n tionList $ cACertificate $ crossCertificatePair ) )\nolcObjectClasses: {22}( 2.5.6.23 NAME 'deltaCRL' DESC 'RFC2587: PKI user' SUP \n top AUXILIARY MAY deltaRevocationList )\nolcObjectClasses: {23}( 1.3.6.1.4.1.250.3.15 NAME 'labeledURIObject' DESC 'RFC\n 2079: object that contains the URI attribute type' MAY ( labeledURI ) SUP top\n AUXILIARY )\nolcObjectClasses: {24}( 0.9.2342.19200300.100.4.19 NAME 'simpleSecurityObject'\n DESC 'RFC1274: simple security object' SUP top AUXILIARY MUST userPassword )\nolcObjectClasses: {25}( 1.3.6.1.4.1.1466.344 NAME 'dcObject' DESC 'RFC2247: do\n main component object' SUP top AUXILIARY MUST dc )\nolcObjectClasses: {26}( 1.3.6.1.1.3.1 NAME 'uidObject' DESC 'RFC2377: uid obje\n ct' SUP top AUXILIARY MUST uid )\n\n# {1}cosine, schema, config\ndn: cn={1}cosine,cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: {1}cosine\nolcAttributeTypes: {0}( 0.9.2342.19200300.100.1.2 NAME 'textEncodedORAddress' \n EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.\n 1466.115.121.1.15{256} )\nolcAttributeTypes: {1}( 0.9.2342.19200300.100.1.4 NAME 'info' DESC 'RFC1274: g\n eneral information' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch\n SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{2048} )\nolcAttributeTypes: {2}( 0.9.2342.19200300.100.1.5 NAME ( 'drink' 'favouriteDri\n nk' ) DESC 'RFC1274: favorite drink' EQUALITY caseIgnoreMatch SUBSTR caseIgno\n reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {3}( 0.9.2342.19200300.100.1.6 NAME 'roomNumber' DESC 'RFC1\n 274: room number' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch S\n YNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {4}( 0.9.2342.19200300.100.1.7 NAME 'photo' DESC 'RFC1274: \n photo (G3 fax)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.23{25000} )\nolcAttributeTypes: {5}( 0.9.2342.19200300.100.1.8 NAME 'userClass' DESC 'RFC12\n 74: category of user' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMat\n ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {6}( 0.9.2342.19200300.100.1.9 NAME 'host' DESC 'RFC1274: h\n ost computer' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTA\n X 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {7}( 0.9.2342.19200300.100.1.10 NAME 'manager' DESC 'RFC127\n 4: DN of manager' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115\n .121.1.12 )\nolcAttributeTypes: {8}( 0.9.2342.19200300.100.1.11 NAME 'documentIdentifier' D\n ESC 'RFC1274: unique identifier of document' EQUALITY caseIgnoreMatch SUBSTR \n caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {9}( 0.9.2342.19200300.100.1.12 NAME 'documentTitle' DESC '\n RFC1274: title of document' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstri\n ngsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {10}( 0.9.2342.19200300.100.1.13 NAME 'documentVersion' DES\n C 'RFC1274: version of document' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSu\n bstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {11}( 0.9.2342.19200300.100.1.14 NAME 'documentAuthor' DESC\n 'RFC1274: DN of author of document' EQUALITY distinguishedNameMatch SYNTAX 1\n .3.6.1.4.1.1466.115.121.1.12 )\nolcAttributeTypes: {12}( 0.9.2342.19200300.100.1.15 NAME 'documentLocation' DE\n SC 'RFC1274: location of document original' EQUALITY caseIgnoreMatch SUBSTR c\n aseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {13}( 0.9.2342.19200300.100.1.20 NAME ( 'homePhone' 'homeTe\n lephoneNumber' ) DESC 'RFC1274: home telephone number' EQUALITY telephoneNumb\n erMatch SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121\n .1.50 )\nolcAttributeTypes: {14}( 0.9.2342.19200300.100.1.21 NAME 'secretary' DESC 'RFC\n 1274: DN of secretary' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.146\n 6.115.121.1.12 )\nolcAttributeTypes: {15}( 0.9.2342.19200300.100.1.22 NAME 'otherMailbox' SYNTAX\n 1.3.6.1.4.1.1466.115.121.1.39 )\nolcAttributeTypes: {16}( 0.9.2342.19200300.100.1.26 NAME 'aRecord' EQUALITY ca\n seIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {17}( 0.9.2342.19200300.100.1.27 NAME 'mDRecord' EQUALITY c\n aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {18}( 0.9.2342.19200300.100.1.28 NAME 'mXRecord' EQUALITY c\n aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {19}( 0.9.2342.19200300.100.1.29 NAME 'nSRecord' EQUALITY c\n aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {20}( 0.9.2342.19200300.100.1.30 NAME 'sOARecord' EQUALITY \n caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {21}( 0.9.2342.19200300.100.1.31 NAME 'cNAMERecord' EQUALIT\n Y caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {22}( 0.9.2342.19200300.100.1.38 NAME 'associatedName' DESC\n 'RFC1274: DN of entry associated with domain' EQUALITY distinguishedNameMatc\n h SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )\nolcAttributeTypes: {23}( 0.9.2342.19200300.100.1.39 NAME 'homePostalAddress' D\n ESC 'RFC1274: home postal address' EQUALITY caseIgnoreListMatch SUBSTR caseIg\n noreListSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.41 )\nolcAttributeTypes: {24}( 0.9.2342.19200300.100.1.40 NAME 'personalTitle' DESC \n 'RFC1274: personal title' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstring\n sMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {25}( 0.9.2342.19200300.100.1.41 NAME ( 'mobile' 'mobileTel\n ephoneNumber' ) DESC 'RFC1274: mobile telephone number' EQUALITY telephoneNum\n berMatch SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.12\n 1.1.50 )\nolcAttributeTypes: {26}( 0.9.2342.19200300.100.1.42 NAME ( 'pager' 'pagerTelep\n honeNumber' ) DESC 'RFC1274: pager telephone number' EQUALITY telephoneNumber\n Match SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1\n .50 )\nolcAttributeTypes: {27}( 0.9.2342.19200300.100.1.43 NAME ( 'co' 'friendlyCount\n ryName' ) DESC 'RFC1274: friendly country name' EQUALITY caseIgnoreMatch SUBS\n TR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )\nolcAttributeTypes: {28}( 0.9.2342.19200300.100.1.44 NAME 'uniqueIdentifier' DE\n SC 'RFC1274: unique identifer' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.14\n 66.115.121.1.15{256} )\nolcAttributeTypes: {29}( 0.9.2342.19200300.100.1.45 NAME 'organizationalStatus\n ' DESC 'RFC1274: organizational status' EQUALITY caseIgnoreMatch SUBSTR caseI\n gnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {30}( 0.9.2342.19200300.100.1.46 NAME 'janetMailbox' DESC '\n RFC1274: Janet mailbox' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5Subst\n ringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )\nolcAttributeTypes: {31}( 0.9.2342.19200300.100.1.47 NAME 'mailPreferenceOption\n ' DESC 'RFC1274: mail preference option' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27\n )\nolcAttributeTypes: {32}( 0.9.2342.19200300.100.1.48 NAME 'buildingName' DESC '\n RFC1274: name of building' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstrin\n gsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )\nolcAttributeTypes: {33}( 0.9.2342.19200300.100.1.49 NAME 'dSAQuality' DESC 'RF\n C1274: DSA Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.19 SINGLE-VALUE )\nolcAttributeTypes: {34}( 0.9.2342.19200300.100.1.50 NAME 'singleLevelQuality' \n DESC 'RFC1274: Single Level Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.13 SIN\n GLE-VALUE )\nolcAttributeTypes: {35}( 0.9.2342.19200300.100.1.51 NAME 'subtreeMinimumQualit\n y' DESC 'RFC1274: Subtree Mininum Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 13 SINGLE-VALUE )\nolcAttributeTypes: {36}( 0.9.2342.19200300.100.1.52 NAME 'subtreeMaximumQualit\n y' DESC 'RFC1274: Subtree Maximun Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 13 SINGLE-VALUE )\nolcAttributeTypes: {37}( 0.9.2342.19200300.100.1.53 NAME 'personalSignature' D\n ESC 'RFC1274: Personal Signature (G3 fax)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 23 )\nolcAttributeTypes: {38}( 0.9.2342.19200300.100.1.54 NAME 'dITRedirect' DESC 'R\n FC1274: DIT Redirect' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466\n .115.121.1.12 )\nolcAttributeTypes: {39}( 0.9.2342.19200300.100.1.55 NAME 'audio' DESC 'RFC1274\n : audio (u-law)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.4{25000} )\nolcAttributeTypes: {40}( 0.9.2342.19200300.100.1.56 NAME 'documentPublisher' D\n ESC 'RFC1274: publisher of document' EQUALITY caseIgnoreMatch SUBSTR caseIgno\n reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )\nolcObjectClasses: {0}( 0.9.2342.19200300.100.4.4 NAME ( 'pilotPerson' 'newPilo\n tPerson' ) SUP person STRUCTURAL MAY ( userid $ textEncodedORAddress $ rfc822\n Mailbox $ favouriteDrink $ roomNumber $ userClass $ homeTelephoneNumber $ hom\n ePostalAddress $ secretary $ personalTitle $ preferredDeliveryMethod $ busine\n ssCategory $ janetMailbox $ otherMailbox $ mobileTelephoneNumber $ pagerTelep\n honeNumber $ organizationalStatus $ mailPreferenceOption $ personalSignature \n ) )\nolcObjectClasses: {1}( 0.9.2342.19200300.100.4.5 NAME 'account' SUP top STRUCT\n URAL MUST userid MAY ( description $ seeAlso $ localityName $ organizationNam\n e $ organizationalUnitName $ host ) )\nolcObjectClasses: {2}( 0.9.2342.19200300.100.4.6 NAME 'document' SUP top STRUC\n TURAL MUST documentIdentifier MAY ( commonName $ description $ seeAlso $ loca\n lityName $ organizationName $ organizationalUnitName $ documentTitle $ docume\n ntVersion $ documentAuthor $ documentLocation $ documentPublisher ) )\nolcObjectClasses: {3}( 0.9.2342.19200300.100.4.7 NAME 'room' SUP top STRUCTURA\n L MUST commonName MAY ( roomNumber $ description $ seeAlso $ telephoneNumber \n ) )\nolcObjectClasses: {4}( 0.9.2342.19200300.100.4.9 NAME 'documentSeries' SUP top\n STRUCTURAL MUST commonName MAY ( description $ seeAlso $ telephonenumber $ l\n ocalityName $ organizationName $ organizationalUnitName ) )\nolcObjectClasses: {5}( 0.9.2342.19200300.100.4.13 NAME 'domain' SUP top STRUCT\n URAL MUST domainComponent MAY ( associatedName $ organizationName $ descripti\n on $ businessCategory $ seeAlso $ searchGuide $ userPassword $ localityName $\n stateOrProvinceName $ streetAddress $ physicalDeliveryOfficeName $ postalAdd\n ress $ postalCode $ postOfficeBox $ streetAddress $ facsimileTelephoneNumber \n $ internationalISDNNumber $ telephoneNumber $ teletexTerminalIdentifier $ tel\n exNumber $ preferredDeliveryMethod $ destinationIndicator $ registeredAddress\n $ x121Address ) )\nolcObjectClasses: {6}( 0.9.2342.19200300.100.4.14 NAME 'RFC822localPart' SUP d\n omain STRUCTURAL MAY ( commonName $ surname $ description $ seeAlso $ telepho\n neNumber $ physicalDeliveryOfficeName $ postalAddress $ postalCode $ postOffi\n ceBox $ streetAddress $ facsimileTelephoneNumber $ internationalISDNNumber $ \n telephoneNumber $ teletexTerminalIdentifier $ telexNumber $ preferredDelivery\n Method $ destinationIndicator $ registeredAddress $ x121Address ) )\nolcObjectClasses: {7}( 0.9.2342.19200300.100.4.15 NAME 'dNSDomain' SUP domain \n STRUCTURAL MAY ( ARecord $ MDRecord $ MXRecord $ NSRecord $ SOARecord $ CNAME\n Record ) )\nolcObjectClasses: {8}( 0.9.2342.19200300.100.4.17 NAME 'domainRelatedObject' D\n ESC 'RFC1274: an object related to an domain' SUP top AUXILIARY MUST associat\n edDomain )\nolcObjectClasses: {9}( 0.9.2342.19200300.100.4.18 NAME 'friendlyCountry' SUP c\n ountry STRUCTURAL MUST friendlyCountryName )\nolcObjectClasses: {10}( 0.9.2342.19200300.100.4.20 NAME 'pilotOrganization' SU\n P ( organization $ organizationalUnit ) STRUCTURAL MAY buildingName )\nolcObjectClasses: {11}( 0.9.2342.19200300.100.4.21 NAME 'pilotDSA' SUP dsa STR\n UCTURAL MAY dSAQuality )\nolcObjectClasses: {12}( 0.9.2342.19200300.100.4.22 NAME 'qualityLabelledData' \n SUP top AUXILIARY MUST dsaQuality MAY ( subtreeMinimumQuality $ subtreeMaximu\n mQuality ) )\n\n# {2}nis, schema, config\ndn: cn={2}nis,cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: {2}nis\nolcAttributeTypes: {0}( 1.3.6.1.1.1.1.2 NAME 'gecos' DESC 'The GECOS field; th\n e common name' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatc\n h SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )\nolcAttributeTypes: {1}( 1.3.6.1.1.1.1.3 NAME 'homeDirectory' DESC 'The absolut\n e path to the home directory' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1\n 466.115.121.1.26 SINGLE-VALUE )\nolcAttributeTypes: {2}( 1.3.6.1.1.1.1.4 NAME 'loginShell' DESC 'The path to th\n e login shell' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.2\n 6 SINGLE-VALUE )\nolcAttributeTypes: {3}( 1.3.6.1.1.1.1.5 NAME 'shadowLastChange' EQUALITY integ\n erMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {4}( 1.3.6.1.1.1.1.6 NAME 'shadowMin' EQUALITY integerMatch\n SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {5}( 1.3.6.1.1.1.1.7 NAME 'shadowMax' EQUALITY integerMatch\n SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {6}( 1.3.6.1.1.1.1.8 NAME 'shadowWarning' EQUALITY integerM\n atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {7}( 1.3.6.1.1.1.1.9 NAME 'shadowInactive' EQUALITY integer\n Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {8}( 1.3.6.1.1.1.1.10 NAME 'shadowExpire' EQUALITY integerM\n atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {9}( 1.3.6.1.1.1.1.11 NAME 'shadowFlag' EQUALITY integerMat\n ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {10}( 1.3.6.1.1.1.1.12 NAME 'memberUid' EQUALITY caseExactI\n A5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 26 )\nolcAttributeTypes: {11}( 1.3.6.1.1.1.1.13 NAME 'memberNisNetgroup' EQUALITY ca\n seExactIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.11\n 5.121.1.26 )\nolcAttributeTypes: {12}( 1.3.6.1.1.1.1.14 NAME 'nisNetgroupTriple' DESC 'Netgr\n oup triple' SYNTAX 1.3.6.1.1.1.0.0 )\nolcAttributeTypes: {13}( 1.3.6.1.1.1.1.15 NAME 'ipServicePort' EQUALITY intege\n rMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {14}( 1.3.6.1.1.1.1.16 NAME 'ipServiceProtocol' SUP name )\nolcAttributeTypes: {15}( 1.3.6.1.1.1.1.17 NAME 'ipProtocolNumber' EQUALITY int\n egerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {16}( 1.3.6.1.1.1.1.18 NAME 'oncRpcNumber' EQUALITY integer\n Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {17}( 1.3.6.1.1.1.1.19 NAME 'ipHostNumber' DESC 'IP address\n ' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )\nolcAttributeTypes: {18}( 1.3.6.1.1.1.1.20 NAME 'ipNetworkNumber' DESC 'IP netw\n ork' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SI\n NGLE-VALUE )\nolcAttributeTypes: {19}( 1.3.6.1.1.1.1.21 NAME 'ipNetmaskNumber' DESC 'IP netm\n ask' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SI\n NGLE-VALUE )\nolcAttributeTypes: {20}( 1.3.6.1.1.1.1.22 NAME 'macAddress' DESC 'MAC address'\n EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )\nolcAttributeTypes: {21}( 1.3.6.1.1.1.1.23 NAME 'bootParameter' DESC 'rpc.bootp\n aramd parameter' SYNTAX 1.3.6.1.1.1.0.1 )\nolcAttributeTypes: {22}( 1.3.6.1.1.1.1.24 NAME 'bootFile' DESC 'Boot image nam\n e' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )\nolcAttributeTypes: {23}( 1.3.6.1.1.1.1.26 NAME 'nisMapName' SUP name )\nolcAttributeTypes: {24}( 1.3.6.1.1.1.1.27 NAME 'nisMapEntry' EQUALITY caseExac\n tIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.\n 1.26{1024} SINGLE-VALUE )\nolcObjectClasses: {0}( 1.3.6.1.1.1.2.0 NAME 'posixAccount' DESC 'Abstraction o\n f an account with POSIX attributes' SUP top AUXILIARY MUST ( cn $ uid $ uidNu\n mber $ gidNumber $ homeDirectory ) MAY ( userPassword $ loginShell $ gecos $ \n description ) )\nolcObjectClasses: {1}( 1.3.6.1.1.1.2.1 NAME 'shadowAccount' DESC 'Additional a\n ttributes for shadow passwords' SUP top AUXILIARY MUST uid MAY ( userPassword\n $ shadowLastChange $ shadowMin $ shadowMax $ shadowWarning $ shadowInactive \n $ shadowExpire $ shadowFlag $ description ) )\nolcObjectClasses: {2}( 1.3.6.1.1.1.2.2 NAME 'posixGroup' DESC 'Abstraction of \n a group of accounts' SUP top STRUCTURAL MUST ( cn $ gidNumber ) MAY ( userPas\n sword $ memberUid $ description ) )\nolcObjectClasses: {3}( 1.3.6.1.1.1.2.3 NAME 'ipService' DESC 'Abstraction an I\n nternet Protocol service' SUP top STRUCTURAL MUST ( cn $ ipServicePort $ ipSe\n rviceProtocol ) MAY description )\nolcObjectClasses: {4}( 1.3.6.1.1.1.2.4 NAME 'ipProtocol' DESC 'Abstraction of \n an IP protocol' SUP top STRUCTURAL MUST ( cn $ ipProtocolNumber $ description\n ) MAY description )\nolcObjectClasses: {5}( 1.3.6.1.1.1.2.5 NAME 'oncRpc' DESC 'Abstraction of an O\n NC/RPC binding' SUP top STRUCTURAL MUST ( cn $ oncRpcNumber $ description ) M\n AY description )\nolcObjectClasses: {6}( 1.3.6.1.1.1.2.6 NAME 'ipHost' DESC 'Abstraction of a ho\n st, an IP device' SUP top AUXILIARY MUST ( cn $ ipHostNumber ) MAY ( l $ desc\n ription $ manager ) )\nolcObjectClasses: {7}( 1.3.6.1.1.1.2.7 NAME 'ipNetwork' DESC 'Abstraction of a\n n IP network' SUP top STRUCTURAL MUST ( cn $ ipNetworkNumber ) MAY ( ipNetmas\n kNumber $ l $ description $ manager ) )\nolcObjectClasses: {8}( 1.3.6.1.1.1.2.8 NAME 'nisNetgroup' DESC 'Abstraction of\n a netgroup' SUP top STRUCTURAL MUST cn MAY ( nisNetgroupTriple $ memberNisNe\n tgroup $ description ) )\nolcObjectClasses: {9}( 1.3.6.1.1.1.2.9 NAME 'nisMap' DESC 'A generic abstracti\n on of a NIS map' SUP top STRUCTURAL MUST nisMapName MAY description )\nolcObjectClasses: {10}( 1.3.6.1.1.1.2.10 NAME 'nisObject' DESC 'An entry in a \n NIS map' SUP top STRUCTURAL MUST ( cn $ nisMapEntry $ nisMapName ) MAY descri\n ption )\nolcObjectClasses: {11}( 1.3.6.1.1.1.2.11 NAME 'ieee802Device' DESC 'A device w\n ith a MAC address' SUP top AUXILIARY MAY macAddress )\nolcObjectClasses: {12}( 1.3.6.1.1.1.2.12 NAME 'bootableDevice' DESC 'A device \n with boot parameters' SUP top AUXILIARY MAY ( bootFile $ bootParameter ) )\n\n# {3}inetorgperson, schema, config\ndn: cn={3}inetorgperson,cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: {3}inetorgperson\nolcAttributeTypes: {0}( 2.16.840.1.113730.3.1.1 NAME 'carLicense' DESC 'RFC279\n 8: vehicle license or registration plate' EQUALITY caseIgnoreMatch SUBSTR cas\n eIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )\nolcAttributeTypes: {1}( 2.16.840.1.113730.3.1.2 NAME 'departmentNumber' DESC '\n RFC2798: identifies a department within an organization' EQUALITY caseIgnoreM\n atch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )\nolcAttributeTypes: {2}( 2.16.840.1.113730.3.1.241 NAME 'displayName' DESC 'RFC\n 2798: preferred name to be used when displaying entries' EQUALITY caseIgnoreM\n atch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SI\n NGLE-VALUE )\nolcAttributeTypes: {3}( 2.16.840.1.113730.3.1.3 NAME 'employeeNumber' DESC 'RF\n C2798: numerically identifies an employee within an organization' EQUALITY ca\n seIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.12\n 1.1.15 SINGLE-VALUE )\nolcAttributeTypes: {4}( 2.16.840.1.113730.3.1.4 NAME 'employeeType' DESC 'RFC2\n 798: type of employment for a person' EQUALITY caseIgnoreMatch SUBSTR caseIgn\n oreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )\nolcAttributeTypes: {5}( 0.9.2342.19200300.100.1.60 NAME 'jpegPhoto' DESC 'RFC2\n 798: a JPEG image' SYNTAX 1.3.6.1.4.1.1466.115.121.1.28 )\nolcAttributeTypes: {6}( 2.16.840.1.113730.3.1.39 NAME 'preferredLanguage' DESC\n 'RFC2798: preferred written or spoken language for a person' EQUALITY caseIg\n noreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.\n 15 SINGLE-VALUE )\nolcAttributeTypes: {7}( 2.16.840.1.113730.3.1.40 NAME 'userSMIMECertificate' D\n ESC 'RFC2798: PKCS#7 SignedData used to support S/MIME' SYNTAX 1.3.6.1.4.1.14\n 66.115.121.1.5 )\nolcAttributeTypes: {8}( 2.16.840.1.113730.3.1.216 NAME 'userPKCS12' DESC 'RFC2\n 798: personal identity information, a PKCS #12 PFX' SYNTAX 1.3.6.1.4.1.1466.1\n 15.121.1.5 )\nolcObjectClasses: {0}( 2.16.840.1.113730.3.2.2 NAME 'inetOrgPerson' DESC 'RFC2\n 798: Internet Organizational Person' SUP organizationalPerson STRUCTURAL MAY \n ( audio $ businessCategory $ carLicense $ departmentNumber $ displayName $ em\n ployeeNumber $ employeeType $ givenName $ homePhone $ homePostalAddress $ ini\n tials $ jpegPhoto $ labeledURI $ mail $ manager $ mobile $ o $ pager $ photo \n $ roomNumber $ secretary $ uid $ userCertificate $ x500uniqueIdentifier $ pre\n ferredLanguage $ userSMIMECertificate $ userPKCS12 ) )\n\n# {4}ppolicy, schema, config\ndn: cn={4}ppolicy,cn=schema,cn=config\nobjectClass: olcSchemaConfig\ncn: {4}ppolicy\nolcAttributeTypes: {0}( 1.3.6.1.4.1.42.2.27.8.1.1 NAME 'pwdAttribute' EQUALITY\n objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )\nolcAttributeTypes: {1}( 1.3.6.1.4.1.42.2.27.8.1.2 NAME 'pwdMinAge' EQUALITY in\n tegerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {2}( 1.3.6.1.4.1.42.2.27.8.1.3 NAME 'pwdMaxAge' EQUALITY in\n tegerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {3}( 1.3.6.1.4.1.42.2.27.8.1.4 NAME 'pwdInHistory' EQUALITY\n integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {4}( 1.3.6.1.4.1.42.2.27.8.1.5 NAME 'pwdCheckQuality' EQUAL\n ITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {5}( 1.3.6.1.4.1.42.2.27.8.1.6 NAME 'pwdMinLength' EQUALITY\n integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {6}( 1.3.6.1.4.1.42.2.27.8.1.7 NAME 'pwdExpireWarning' EQUA\n LITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {7}( 1.3.6.1.4.1.42.2.27.8.1.8 NAME 'pwdGraceAuthNLimit' EQ\n UALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {8}( 1.3.6.1.4.1.42.2.27.8.1.9 NAME 'pwdLockout' EQUALITY b\n ooleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )\nolcAttributeTypes: {9}( 1.3.6.1.4.1.42.2.27.8.1.10 NAME 'pwdLockoutDuration' E\n QUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {10}( 1.3.6.1.4.1.42.2.27.8.1.11 NAME 'pwdMaxFailure' EQUAL\n ITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )\nolcAttributeTypes: {11}( 1.3.6.1.4.1.42.2.27.8.1.12 NAME 'pwdFailureCountInter\n val' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE \n )\nolcAttributeTypes: {12}( 1.3.6.1.4.1.42.2.27.8.1.13 NAME 'pwdMustChange' EQUAL\n ITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )\nolcAttributeTypes: {13}( 1.3.6.1.4.1.42.2.27.8.1.14 NAME 'pwdAllowUserChange' \n EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )\nolcAttributeTypes: {14}( 1.3.6.1.4.1.42.2.27.8.1.15 NAME 'pwdSafeModify' EQUAL\n ITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )\nolcAttributeTypes: {15}( 1.3.6.1.4.1.4754.1.99.1 NAME 'pwdCheckModule' DESC 'L\n oadable module that instantiates \"check_password() function' EQUALITY caseExa\n ctIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )\nolcObjectClasses: {0}( 1.3.6.1.4.1.4754.2.99.1 NAME 'pwdPolicyChecker' SUP top\n AUXILIARY MAY pwdCheckModule )\nolcObjectClasses: {1}( 1.3.6.1.4.1.42.2.27.8.2.1 NAME 'pwdPolicy' SUP top AUXI\n LIARY MUST pwdAttribute MAY ( pwdMinAge $ pwdMaxAge $ pwdInHistory $ pwdCheck\n Quality $ pwdMinLength $ pwdExpireWarning $ pwdGraceAuthNLimit $ pwdLockout $\n pwdLockoutDuration $ pwdMaxFailure $ pwdFailureCountInterval $ pwdMustChange\n $ pwdAllowUserChange $ pwdSafeModify ) )\n\n# {0}hdb, config\ndn: olcBackend={0}hdb,cn=config\nobjectClass: olcBackendConfig\nolcBackend: {0}hdb\n\n# {-1}frontend, config\ndn: olcDatabase={-1}frontend,cn=config\nobjectClass: olcDatabaseConfig\nobjectClass: olcFrontendConfig\nolcDatabase: {-1}frontend\nolcAccess: {0}to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external\n ,cn=auth manage by * break\nolcAccess: {1}to dn.exact=\"\" by * read\nolcAccess: {2}to dn.base=\"cn=Subschema\" by * read\nolcSizeLimit: 500\n\n# {0}config, config\ndn: olcDatabase={0}config,cn=config\nobjectClass: olcDatabaseConfig\nolcDatabase: {0}config\nolcAccess: {0}to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external\n ,cn=auth manage by * break\nolcRootDN: cn=admin,cn=config\n\n# {1}hdb, config\ndn: olcDatabase={1}hdb,cn=config\nobjectClass: olcDatabaseConfig\nobjectClass: olcHdbConfig\nolcDatabase: {1}hdb\nolcDbDirectory: /var/lib/ldap\nolcLastMod: TRUE\nolcDbCheckpoint: 512 30\nolcDbConfig: {0}set_cachesize 0 2097152 0\nolcDbConfig: {1}set_lk_max_objects 1500\nolcDbConfig: {2}set_lk_max_locks 1500\nolcDbConfig: {3}set_lk_max_lockers 1500\nolcDbIndex: objectClass eq\nolcAccess: {0}to attrs=userPassword,shadowLastChange by self write by anonymou\n s auth by dn=\"cn=admin,dc=local\" write by group/groupOfUniqueNames/uniqueMemb\n er=\"cn=Administrator,ou=Group,dc=idp,ou=Services,dc=local\" write by * none\nolcAccess: {1}to dn.base=\"\" by * read\nolcAccess: {2}to * by self write by dn=\"cn=admin,dc=local\" write by group/grou\n pOfUniqueNames/uniqueMember=\"cn=Administrator,ou=Group,dc=idp,ou=Services,dc=\n local\" write by * read\nolcSuffix: dc=local\nolcRootDN: cn=admin,dc=local\nolcRootPW: {SSHA}jmCpKQYSdLhShP0FnvFHjd9dYc9z73PX\n\n# {0}ppolicy, {1}hdb, config\ndn: olcOverlay={0}ppolicy,olcDatabase={1}hdb,cn=config\nobjectClass: top\nobjectClass: olcConfig\nobjectClass: olcOverlayConfig\nobjectClass: olcPPolicyConfig\nolcOverlay: {0}ppolicy\nolcPPolicyDefault: cn=default,ou=policies,dc=local\nolcPPolicyHashCleartext: TRUE\n\n# {1}memberof, {1}hdb, config\ndn: olcOverlay={1}memberof,olcDatabase={1}hdb,cn=config\nobjectClass: top\nobjectClass: olcConfig\nobjectClass: olcOverlayConfig\nobjectClass: olcMemberOf\nolcOverlay: {1}memberof\nolcMemberOfDangling: drop\nolcMemberOfRefInt: TRUE\nolcMemberOfGroupOC: groupOfUniqueNames\nolcMemberOfMemberAD: uniqueMember\n\n# search result\nsearch: 2\nresult: 0 Success\n\n# numResponses: 15\n# numEntries: 14", "stdoutlines": ["# extended LDIF", "#", "# LDAPv3", "# base with scope subtree", "# filter: (objectclass=)", "# requesting: ALL", "#", "", "# config", "dn: cn=config", "objectClass: olcGlobal", "cn: config", "olcArgsFile: /var/run/slapd/slapd.args", "olcLogLevel: none", "olcPidFile: /var/run/slapd/slapd.pid", "olcToolThreads: 1", "", "# module{0}, config", "dn: cn=module{0},cn=config", "objectClass: olcModuleList", "cn: module{0}", "olcModulePath: /usr/lib/ldap", "olcModuleLoad: {0}back_hdb", "olcModuleLoad: {1}memberof", "olcModuleLoad: {2}ppolicy", "", "# schema, config", "dn: cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: schema", "olcObjectIdentifier: OLcfg 1.3.6.1.4.1.4203.1.12.2", "olcObjectIdentifier: OLcfgAt OLcfg:3", "olcObjectIdentifier: OLcfgGlAt OLcfgAt:0", "olcObjectIdentifier: OLcfgBkAt OLcfgAt:1", "olcObjectIdentifier: OLcfgDbAt OLcfgAt:2", "olcObjectIdentifier: OLcfgOvAt OLcfgAt:3", "olcObjectIdentifier: OLcfgCtAt OLcfgAt:4", "olcObjectIdentifier: OLcfgOc OLcfg:4", "olcObjectIdentifier: OLcfgGlOc OLcfgOc:0", "olcObjectIdentifier: OLcfgBkOc OLcfgOc:1", "olcObjectIdentifier: OLcfgDbOc OLcfgOc:2", "olcObjectIdentifier: OLcfgOvOc OLcfgOc:3", "olcObjectIdentifier: OLcfgCtOc OLcfgOc:4", "olcObjectIdentifier: OMsyn 1.3.6.1.4.1.1466.115.121.1", "olcObjectIdentifier: OMsBoolean OMsyn:7", "olcObjectIdentifier: OMsDN OMsyn:12", "olcObjectIdentifier: OMsDirectoryString OMsyn:15", "olcObjectIdentifier: OMsIA5String OMsyn:26", "olcObjectIdentifier: OMsInteger OMsyn:27", "olcObjectIdentifier: OMsOID OMsyn:38", "olcObjectIdentifier: OMsOctetString OMsyn:40", "olcAttributeTypes: ( 2.5.4.0 NAME 'objectClass' DESC 'RFC4512: object classes ", " of the entity' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121", " .1.38 )", "olcAttributeTypes: ( 2.5.21.9 NAME 'structuralObjectClass' DESC 'RFC4512: stru", " ctural object class of entry' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4", " .1.1466.115.121.1.38 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperati", " on )", "olcAttributeTypes: ( 2.5.18.1 NAME 'createTimestamp' DESC 'RFC4512: time which", " object was created' EQUALITY generalizedTimeMatch ORDERING generalizedTimeOr", " deringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE NO-USER-MODIFIC", " ATION USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.2 NAME 'modifyTimestamp' DESC 'RFC4512: time which", " object was last modified' EQUALITY generalizedTimeMatch ORDERING generalized", " TimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE NO-USER-M", " ODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.3 NAME 'creatorsName' DESC 'RFC4512: name of creat", " or' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SING", " LE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.4 NAME 'modifiersName' DESC 'RFC4512: name of last", " modifier' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 12 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.9 NAME 'hasSubordinates' DESC 'X.501: entry has ch", " ildren' EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALU", " E NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.10 NAME 'subschemaSubentry' DESC 'RFC4512: name of", " controlling subschema entry' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.", " 4.1.1466.115.121.1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE directoryOperat", " ion )", "olcAttributeTypes: ( 1.3.6.1.1.20 NAME 'entryDN' DESC 'DN of the entry' EQUALI", " TY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE N", " O-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.1.16.4 NAME 'entryUUID' DESC 'UUID of the entry' ", " EQUALITY UUIDMatch ORDERING UUIDOrderingMatch SYNTAX 1.3.6.1.1.16.1 SINGLE-VA", " LUE NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.7 NAME 'entryCSN' DESC 'change seq", " uence number of the entry content' EQUALITY CSNMatch ORDERING CSNOrderingMatc", " h SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} SINGLE-VALUE NO-USER-MODIFICATION US", " AGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.13 NAME 'namingCSN' DESC 'change s", " equence number of the entry naming (RDN)' EQUALITY CSNMatch ORDERING CSNOrder", " ingMatch SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} SINGLE-VALUE NO-USER-MODIFICA", " TION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.23 NAME 'syncreplCookie' DESC 'syn", " crepl Cookie for shadow copy' EQUALITY octetStringMatch ORDERING octetStringO", " rderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE NO-USER-MODIFI", " CATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.25 NAME 'contextCSN' DESC 'the lar", " gest committed CSN of a context' EQUALITY CSNMatch ORDERING CSNOrderingMatch ", " SYNTAX 1.3.6.1.4.1.4203.666.11.2.1{64} NO-USER-MODIFICATION USAGE dSAOperatio", " n )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.6 NAME 'altServer' DESC 'RFC4512", " : alternative servers' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 USAGE dSAOperatio", " n )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.5 NAME 'namingContexts' DESC 'RF", " C4512: naming contexts' SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 USAGE dSAOperati", " on )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.13 NAME 'supportedControl' DESC ", " 'RFC4512: supported controls' SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAO", " peration )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.7 NAME 'supportedExtension' DESC", " 'RFC4512: supported extended operations' SYNTAX 1.3.6.1.4.1.1466.115.121.1.3", " 8 USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.15 NAME 'supportedLDAPVersion' D", " ESC 'RFC4512: supported LDAP versions' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 U", " SAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.14 NAME 'supportedSASLMechanisms", " ' DESC 'RFC4512: supported SASL mechanisms' SYNTAX 1.3.6.1.4.1.1466.115.121.1", " .15 USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.5 NAME 'supportedFeatures' DESC 'RFC", " 4512: features supported by the server' EQUALITY objectIdentifierMatch SYNTAX", " 1.3.6.1.4.1.1466.115.121.1.38 USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.10 NAME 'monitorContext' DESC 'mon", " itor context' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121", " .1.12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.1.12.2.1 NAME 'configContext' DESC 'conf", " ig context' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1", " .12 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.1.4 NAME 'vendorName' DESC 'RFC3045: name of impl", " ementation vendor' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 15 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.1.5 NAME 'vendorVersion' DESC 'RFC3045: version o", " f implementation' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.1", " 5 SINGLE-VALUE NO-USER-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 2.5.18.5 NAME 'administrativeRole' DESC 'RFC3672: adminis", " trative role' EQUALITY objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121.", " 1.38 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.18.6 NAME 'subtreeSpecification' DESC 'RFC3672: subtr", " ee specification' SYNTAX 1.3.6.1.4.1.1466.115.121.1.45 SINGLE-VALUE USAGE dir", " ectoryOperation )", "olcAttributeTypes: ( 2.5.21.1 NAME 'dITStructureRules' DESC 'RFC4512: DIT stru", " cture rules' EQUALITY integerFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.", " 121.1.17 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.2 NAME 'dITContentRules' DESC 'RFC4512: DIT conten", " t rules' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466", " .115.121.1.16 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.4 NAME 'matchingRules' DESC 'RFC4512: matching rul", " es' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.", " 121.1.30 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.5 NAME 'attributeTypes' DESC 'RFC4512: attribute t", " ypes' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.11", " 5.121.1.3 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.6 NAME 'objectClasses' DESC 'RFC4512: object class", " es' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.", " 121.1.37 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.7 NAME 'nameForms' DESC 'RFC4512: name forms ' EQU", " ALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.3", " 5 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.21.8 NAME 'matchingRuleUse' DESC 'RFC4512: matching r", " ule uses' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.6.1.4.1.146", " 6.115.121.1.31 USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.120.16 NAME 'ldapSyntaxes' DESC 'RFC", " 4512: LDAP syntaxes' EQUALITY objectIdentifierFirstComponentMatch SYNTAX 1.3.", " 6.1.4.1.1466.115.121.1.54 USAGE directoryOperation )", "olcAttributeTypes: ( 2.5.4.1 NAME ( 'aliasedObjectName' 'aliasedEntryName' ) D", " ESC 'RFC4512: name of aliased object' EQUALITY distinguishedNameMatch SYNTAX ", " 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )", "olcAttributeTypes: ( 2.16.840.1.113730.3.1.34 NAME 'ref' DESC 'RFC3296: subord", " inate referral URL' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1", " .15 USAGE distributedOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.1 NAME 'entry' DESC 'OpenLDAP ACL en", " try pseudo-attribute' SYNTAX 1.3.6.1.4.1.4203.1.1.1 SINGLE-VALUE NO-USER-MODI", " FICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.1.3.2 NAME 'children' DESC 'OpenLDAP ACL", " children pseudo-attribute' SYNTAX 1.3.6.1.4.1.4203.1.1.1 SINGLE-VALUE NO-USE", " R-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.8 NAME ( 'authzTo' 'saslAuthzTo' )", " DESC 'proxy authorization targets' EQUALITY authzMatch SYNTAX 1.3.6.1.4.1.42", " 03.666.2.7 USAGE distributedOperation X-ORDERED 'VALUES' )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.9 NAME ( 'authzFrom' 'saslAuthzFro", " m' ) DESC 'proxy authorization sources' EQUALITY authzMatch SYNTAX 1.3.6.1.4.", " 1.4203.666.2.7 USAGE distributedOperation X-ORDERED 'VALUES' )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.119.3 NAME 'entryTtl' DESC 'RFC2589:", " entry time-to-live' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE NO-USE", " R-MODIFICATION USAGE dSAOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.1466.101.119.4 NAME 'dynamicSubtrees' DESC 'R", " FC2589: dynamic subtrees' SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 NO-USER-MODIFI", " CATION USAGE dSAOperation )", "olcAttributeTypes: ( 2.5.4.49 NAME 'distinguishedName' DESC 'RFC4519: common s", " upertype of DN attributes' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1", " .1466.115.121.1.12 )", "olcAttributeTypes: ( 2.5.4.41 NAME 'name' DESC 'RFC4519: common supertype of n", " ame attributes' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYN", " TAX 1.3.6.1.4.1.1466.115.121.1.15{32768} )", "olcAttributeTypes: ( 2.5.4.3 NAME ( 'cn' 'commonName' ) DESC 'RFC4519: common ", " name(s) for which the entity is known by' SUP name )", "olcAttributeTypes: ( 0.9.2342.19200300.100.1.1 NAME ( 'uid' 'userid' ) DESC 'R", " FC4519: user identifier' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstrings", " Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: ( 1.3.6.1.1.1.1.0 NAME 'uidNumber' DESC 'RFC2307: An intege", " r uniquely identifying a user in an administrative domain' EQUALITY integerMa", " tch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: ( 1.3.6.1.1.1.1.1 NAME 'gidNumber' DESC 'RFC2307: An intege", " r uniquely identifying a group in an administrative domain' EQUALITY integerM", " atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: ( 2.5.4.35 NAME 'userPassword' DESC 'RFC4519/2307: password", " of user' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128}", " )", "olcAttributeTypes: ( 1.3.6.1.4.1.250.1.57 NAME 'labeledURI' DESC 'RFC2079: Uni", " form Resource Identifier with optional label' EQUALITY caseExactMatch SYNTAX ", " 1.3.6.1.4.1.1466.115.121.1.15 )", "olcAttributeTypes: ( 2.5.4.13 NAME 'description' DESC 'RFC4519: descriptive in", " formation' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1", " .3.6.1.4.1.1466.115.121.1.15{1024} )", "olcAttributeTypes: ( 2.5.4.34 NAME 'seeAlso' DESC 'RFC4519: DN of related obje", " ct' SUP distinguishedName )", "olcAttributeTypes: ( OLcfgGlAt:78 NAME 'olcConfigFile' DESC 'File for slapd co", " nfiguration directives' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SI", " NGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:79 NAME 'olcConfigDir' DESC 'Directory for slap", " d configuration backend' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString S", " INGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:1 NAME 'olcAccess' DESC 'Access Control List' E", " QUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:86 NAME 'olcAddContentAcl' DESC 'Check ACLs aga", " inst content of Add ops' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:2 NAME 'olcAllows' DESC 'Allowed set of depreca", " ted features' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:3 NAME 'olcArgsFile' DESC 'File for slapd comma", " nd line options' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VA", " LUE )", "olcAttributeTypes: ( OLcfgGlAt:5 NAME 'olcAttributeOptions' EQUALITY caseIgnor", " eMatch SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:4 NAME 'olcAttributeTypes' DESC 'OpenLDAP attri", " buteTypes' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALU", " ES' )", "olcAttributeTypes: ( OLcfgGlAt:6 NAME 'olcAuthIDRewrite' EQUALITY caseIgnoreMa", " tch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:7 NAME 'olcAuthzPolicy' EQUALITY caseIgnoreMatc", " h SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:8 NAME 'olcAuthzRegexp' EQUALITY caseIgnoreMatc", " h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:9 NAME 'olcBackend' DESC 'A type of backend' EQ", " UALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VALUE X-ORDERED 'SIBL", " INGS' )", "olcAttributeTypes: ( OLcfgGlAt:10 NAME 'olcConcurrency' SYNTAX OMsInteger SING", " LE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:11 NAME 'olcConnMaxPending' SYNTAX OMsInteger S", " INGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:12 NAME 'olcConnMaxPendingAuth' SYNTAX OMsInteg", " er SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:13 NAME 'olcDatabase' DESC 'The backend type fo", " r a database instance' SUP olcBackend SINGLE-VALUE X-ORDERED 'SIBLINGS' )", "olcAttributeTypes: ( OLcfgGlAt:14 NAME 'olcDefaultSearchBase' SYNTAX OMsDN SIN", " GLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:15 NAME 'olcDisallows' EQUALITY caseIgnoreMatch", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:16 NAME 'olcDitContentRules' DESC 'OpenLDAP DIT", " content rules' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED ", " 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:17 NAME 'olcGentleHUP' SYNTAX OMsBoolean SINGLE", " -VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.17 NAME 'olcHidden' SYNTAX OMsBoolean SINGLE-", " VALUE )", "olcAttributeTypes: ( OLcfgGlAt:18 NAME 'olcIdleTimeout' SYNTAX OMsInteger SING", " LE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:19 NAME 'olcInclude' SUP labeledURI )", "olcAttributeTypes: ( OLcfgGlAt:20 NAME 'olcIndexSubstrIfMinLen' SYNTAX OMsInte", " ger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:21 NAME 'olcIndexSubstrIfMaxLen' SYNTAX OMsInte", " ger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:22 NAME 'olcIndexSubstrAnyLen' SYNTAX OMsIntege", " r SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:23 NAME 'olcIndexSubstrAnyStep' SYNTAX OMsInteg", " er SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:84 NAME 'olcIndexIntLen' SYNTAX OMsInteger SING", " LE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.4 NAME 'olcLastMod' SYNTAX OMsBoolean SINGLE-", " VALUE )", "olcAttributeTypes: ( OLcfgGlAt:85 NAME 'olcLdapSyntaxes' DESC 'OpenLDAP ldapSy", " ntax' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgDbAt:0.5 NAME 'olcLimits' EQUALITY caseIgnoreMatch S", " YNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:26 NAME 'olcLocalSSF' SYNTAX OMsInteger SINGLE-", " VALUE )", "olcAttributeTypes: ( OLcfgGlAt:27 NAME 'olcLogFile' SYNTAX OMsDirectoryString ", " SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:28 NAME 'olcLogLevel' EQUALITY caseIgnoreMatch ", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgDbAt:0.6 NAME 'olcMaxDerefDepth' SYNTAX OMsInteger S", " INGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.16 NAME 'olcMirrorMode' SYNTAX OMsBoolean SIN", " GLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:30 NAME 'olcModuleLoad' EQUALITY caseIgnoreMatc", " h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:31 NAME 'olcModulePath' SYNTAX OMsDirectoryStri", " ng SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.18 NAME 'olcMonitoring' SYNTAX OMsBoolean SIN", " GLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:32 NAME 'olcObjectClasses' DESC 'OpenLDAP objec", " t classes' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString X-ORDERED 'VALU", " ES' )", "olcAttributeTypes: ( OLcfgGlAt:33 NAME 'olcObjectIdentifier' EQUALITY caseIgno", " reMatch SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:34 NAME 'olcOverlay' SUP olcDatabase SINGLE-VAL", " UE X-ORDERED 'SIBLINGS' )", "olcAttributeTypes: ( OLcfgGlAt:35 NAME 'olcPasswordCryptSaltFormat' SYNTAX OMs", " DirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:36 NAME 'olcPasswordHash' EQUALITY caseIgnoreMa", " tch SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:37 NAME 'olcPidFile' SYNTAX OMsDirectoryString ", " SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:38 NAME 'olcPlugin' EQUALITY caseIgnoreMatch SY", " NTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:39 NAME 'olcPluginLogFile' SYNTAX OMsDirectoryS", " tring SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:40 NAME 'olcReadOnly' SYNTAX OMsBoolean SINGLE-", " VALUE )", "olcAttributeTypes: ( OLcfgGlAt:41 NAME 'olcReferral' SUP labeledURI SINGLE-VAL", " UE )", "olcAttributeTypes: ( OLcfgDbAt:0.7 NAME 'olcReplica' SUP labeledURI EQUALITY c", " aseIgnoreMatch X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:43 NAME 'olcReplicaArgsFile' SYNTAX OMsDirector", " yString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:44 NAME 'olcReplicaPidFile' SYNTAX OMsDirectory", " String SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:45 NAME 'olcReplicationInterval' SYNTAX OMsInte", " ger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:46 NAME 'olcReplogFile' SYNTAX OMsDirectoryStri", " ng SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:47 NAME 'olcRequires' EQUALITY caseIgnoreMatch ", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:48 NAME 'olcRestrict' EQUALITY caseIgnoreMatch ", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:49 NAME 'olcReverseLookup' SYNTAX OMsBoolean SI", " NGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.8 NAME 'olcRootDN' EQUALITY distinguishedName", " Match SYNTAX OMsDN SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:51 NAME 'olcRootDSE' EQUALITY caseIgnoreMatch S", " YNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgDbAt:0.9 NAME 'olcRootPW' SYNTAX OMsDirectoryString ", " SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:89 NAME 'olcSaslAuxprops' SYNTAX OMsDirectorySt", " ring SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:53 NAME 'olcSaslHost' SYNTAX OMsDirectoryString", " SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:54 NAME 'olcSaslRealm' SYNTAX OMsDirectoryStrin", " g SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:56 NAME 'olcSaslSecProps' SYNTAX OMsDirectorySt", " ring SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:58 NAME 'olcSchemaDN' EQUALITY distinguishedNam", " eMatch SYNTAX OMsDN SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:59 NAME 'olcSecurity' EQUALITY caseIgnoreMatch ", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:81 NAME 'olcServerID' EQUALITY caseIgnoreMatch ", " SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:60 NAME 'olcSizeLimit' SYNTAX OMsDirectoryStrin", " g SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:61 NAME 'olcSockbufMaxIncoming' SYNTAX OMsInteg", " er SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:62 NAME 'olcSockbufMaxIncomingAuth' SYNTAX OMsI", " nteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:83 NAME 'olcSortVals' DESC 'Attributes whose va", " lues will always be sorted' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryStrin", " g )", "olcAttributeTypes: ( OLcfgDbAt:0.15 NAME 'olcSubordinate' SYNTAX OMsDirectoryS", " tring SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.10 NAME 'olcSuffix' EQUALITY distinguishedNam", " eMatch SYNTAX OMsDN )", "olcAttributeTypes: ( OLcfgDbAt:0.19 NAME 'olcSyncUseSubentry' DESC 'Store sync", " context in a subentry' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.11 NAME 'olcSyncrepl' EQUALITY caseIgnoreMatc", " h SYNTAX OMsDirectoryString X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgGlAt:90 NAME 'olcTCPBuffer' DESC 'Custom TCP buffer ", " size' SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgGlAt:66 NAME 'olcThreads' SYNTAX OMsInteger SINGLE-V", " ALUE )", "olcAttributeTypes: ( OLcfgGlAt:67 NAME 'olcTimeLimit' SYNTAX OMsDirectoryStrin", " g )", "olcAttributeTypes: ( OLcfgGlAt:68 NAME 'olcTLSCACertificateFile' SYNTAX OMsDir", " ectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:69 NAME 'olcTLSCACertificatePath' SYNTAX OMsDir", " ectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:70 NAME 'olcTLSCertificateFile' SYNTAX OMsDirec", " toryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:71 NAME 'olcTLSCertificateKeyFile' SYNTAX OMsDi", " rectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:72 NAME 'olcTLSCipherSuite' SYNTAX OMsDirectory", " String SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:73 NAME 'olcTLSCRLCheck' SYNTAX OMsDirectoryStr", " ing SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:82 NAME 'olcTLSCRLFile' SYNTAX OMsDirectoryStri", " ng SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:74 NAME 'olcTLSRandFile' SYNTAX OMsDirectoryStr", " ing SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:75 NAME 'olcTLSVerifyClient' SYNTAX OMsDirector", " yString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:77 NAME 'olcTLSDHParamFile' SYNTAX OMsDirectory", " String SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:87 NAME 'olcTLSProtocolMin' SYNTAX OMsDirectory", " String SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgGlAt:80 NAME 'olcToolThreads' SYNTAX OMsInteger SING", " LE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.12 NAME 'olcUpdateDN' SYNTAX OMsDN SINGLE-VAL", " UE )", "olcAttributeTypes: ( OLcfgDbAt:0.13 NAME 'olcUpdateRef' SUP labeledURI EQUALIT", " Y caseIgnoreMatch )", "olcAttributeTypes: ( OLcfgGlAt:88 NAME 'olcWriteTimeout' SYNTAX OMsInteger SIN", " GLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.1 NAME 'olcDbDirectory' DESC 'Directory for d", " atabase content' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString SINGLE-VA", " LUE )", "olcAttributeTypes: ( 1.3.6.1.4.1.4203.666.1.5 NAME 'OpenLDAPaci' DESC 'OpenLDA", " P access control information (experimental)' EQUALITY OpenLDAPaciMatch SYNTAX", " 1.3.6.1.4.1.4203.666.2.1 USAGE directoryOperation )", "olcAttributeTypes: ( OLcfgDbAt:1.11 NAME 'olcDbCacheFree' DESC 'Number of extr", " a entries to free when max is reached' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.1 NAME 'olcDbCacheSize' DESC 'Entry cache siz", " e in entries' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.2 NAME 'olcDbCheckpoint' DESC 'Database check", " point interval in kbytes and minutes' SYNTAX OMsDirectoryString SINGLE-VALUE ", " )", "olcAttributeTypes: ( OLcfgDbAt:1.16 NAME 'olcDbChecksum' DESC 'Enable database", " checksum validation' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.13 NAME 'olcDbCryptFile' DESC 'Pathname of fi", " le containing the DB encryption key' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.14 NAME 'olcDbCryptKey' DESC 'DB encryption k", " ey' SYNTAX OMsOctetString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.3 NAME 'olcDbConfig' DESC 'BerkeleyDB DB_CONF", " IG configuration directives' SYNTAX OMsIA5String X-ORDERED 'VALUES' )", "olcAttributeTypes: ( OLcfgDbAt:1.4 NAME 'olcDbNoSync' DESC 'Disable synchronou", " s database writes' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.15 NAME 'olcDbPageSize' DESC 'Page size of sp", " ecified DB, in Kbytes' EQUALITY caseExactMatch SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgDbAt:1.5 NAME 'olcDbDirtyRead' DESC 'Allow reads of ", " uncommitted data' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.12 NAME 'olcDbDNcacheSize' DESC 'DN cache siz", " e' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.6 NAME 'olcDbIDLcacheSize' DESC 'IDL cache si", " ze in IDLs' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.2 NAME 'olcDbIndex' DESC 'Attribute index par", " ameters' EQUALITY caseIgnoreMatch SYNTAX OMsDirectoryString )", "olcAttributeTypes: ( OLcfgDbAt:1.7 NAME 'olcDbLinearIndex' DESC 'Index attribu", " tes one at a time' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.8 NAME 'olcDbLockDetect' DESC 'Deadlock detec", " tion algorithm' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:0.3 NAME 'olcDbMode' DESC 'Unix permissions of ", " database files' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.9 NAME 'olcDbSearchStack' DESC 'Depth of sear", " ch stack in IDLs' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgDbAt:1.10 NAME 'olcDbShmKey' DESC 'Key for shared me", " mory region' SYNTAX OMsInteger SINGLE-VALUE )", "olcAttributeTypes: ( 1.2.840.113556.1.2.102 NAME 'memberOf' DESC 'Group that t", " he entry belongs to' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.", " 115.121.1.12 USAGE dSAOperation X-ORIGIN 'iPlanet Delegated Administrator' )", "olcAttributeTypes: ( OLcfgOvAt:18.0 NAME 'olcMemberOfDN' DESC 'DN to be used a", " s modifiersName' SYNTAX OMsDN SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.1 NAME 'olcMemberOfDangling' DESC 'Behavior ", " with respect to dangling members, constrained to ignore, drop, error' SYNTAX ", " OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.2 NAME 'olcMemberOfRefInt' DESC 'Take care o", " f referential integrity' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.3 NAME 'olcMemberOfGroupOC' DESC 'Group obje", " ctClass' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.4 NAME 'olcMemberOfMemberAD' DESC 'member at", " tribute' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.5 NAME 'olcMemberOfMemberOfAD' DESC 'memberO", " f attribute' SYNTAX OMsDirectoryString SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:18.7 NAME 'olcMemberOfDanglingError' DESC 'Erro", " r code returned in case of dangling back reference' SYNTAX OMsDirectoryString", " SINGLE-VALUE )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.16 NAME 'pwdChangedTime' DESC 'Th", " e time the password was last changed' EQUALITY generalizedTimeMatch ORDERING ", " generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALU", " E NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.17 NAME 'pwdAccountLockedTime' DE", " SC 'The time an user account was locked' EQUALITY generalizedTimeMatch ORDERI", " NG generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-V", " ALUE USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.19 NAME 'pwdFailureTime' DESC 'Th", " e timestamps of the last consecutive authentication failures' EQUALITY genera", " lizedTimeMatch ORDERING generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.", " 115.121.1.24 NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.20 NAME 'pwdHistory' DESC 'The hi", " story of users passwords' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.1", " 15.121.1.40 NO-USER-MODIFICATION USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.21 NAME 'pwdGraceUseTime' DESC 'T", " he timestamps of the grace login once the password has expired' EQUALITY gene", " ralizedTimeMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 NO-USER-MODIFICATION US", " AGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.22 NAME 'pwdReset' DESC 'The indi", " cation that the password has been reset' EQUALITY booleanMatch SYNTAX 1.3.6.1", " .4.1.1466.115.121.1.7 SINGLE-VALUE USAGE directoryOperation )", "olcAttributeTypes: ( 1.3.6.1.4.1.42.2.27.8.1.23 NAME 'pwdPolicySubentry' DESC ", " 'The pwdPolicy subentry in effect for this object' EQUALITY distinguishedName", " Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE USAGE directoryOperat", " ion )", "olcAttributeTypes: ( OLcfgOvAt:12.1 NAME 'olcPPolicyDefault' DESC 'DN of a pwd", " Policy object for uncustomized objects' SYNTAX OMsDN SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:12.2 NAME 'olcPPolicyHashCleartext' DESC 'Hash ", " passwords on add or modify' SYNTAX OMsBoolean SINGLE-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:12.4 NAME 'olcPPolicyForwardUpdates' DESC 'Allo", " w policy state updates to be forwarded via updateref' SYNTAX OMsBoolean SINGL", " E-VALUE )", "olcAttributeTypes: ( OLcfgOvAt:12.3 NAME 'olcPPolicyUseLockout' DESC 'Warn cli", " ents with AccountLocked' SYNTAX OMsBoolean SINGLE-VALUE )", "olcObjectClasses: ( 2.5.6.0 NAME 'top' DESC 'top of the superclass chain' ABST", " RACT MUST objectClass )", "olcObjectClasses: ( 1.3.6.1.4.1.1466.101.120.111 NAME 'extensibleObject' DESC ", " 'RFC4512: extensible object' SUP top AUXILIARY )", "olcObjectClasses: ( 2.5.6.1 NAME 'alias' DESC 'RFC4512: an alias' SUP top STRU", " CTURAL MUST aliasedObjectName )", "olcObjectClasses: ( 2.16.840.1.113730.3.2.6 NAME 'referral' DESC 'namedref: na", " med subordinate referral' SUP top STRUCTURAL MUST ref )", "olcObjectClasses: ( 1.3.6.1.4.1.4203.1.4.1 NAME ( 'OpenLDAProotDSE' 'LDAProotD", " SE' ) DESC 'OpenLDAP Root DSE object' SUP top STRUCTURAL MAY cn )", "olcObjectClasses: ( 2.5.17.0 NAME 'subentry' DESC 'RFC3672: subentry' SUP top ", " STRUCTURAL MUST ( cn $ subtreeSpecification ) )", "olcObjectClasses: ( 2.5.20.1 NAME 'subschema' DESC 'RFC4512: controlling subsc", " hema (sub)entry' AUXILIARY MAY ( dITStructureRules $ nameForms $ dITContentRu", " les $ objectClasses $ attributeTypes $ matchingRules $ matchingRuleUse ) )", "olcObjectClasses: ( 1.3.6.1.4.1.1466.101.119.2 NAME 'dynamicObject' DESC 'RFC2", " 589: Dynamic Object' SUP top AUXILIARY )", "olcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.4 NAME 'glue' DESC 'Glue Entry' SUP", " top STRUCTURAL )", "olcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.5 NAME 'syncConsumerSubentry' DESC ", " 'Persistent Info for SyncRepl Consumer' AUXILIARY MAY syncreplCookie )", "olcObjectClasses: ( 1.3.6.1.4.1.4203.666.3.6 NAME 'syncProviderSubentry' DESC ", " 'Persistent Info for SyncRepl Producer' AUXILIARY MAY contextCSN )", "olcObjectClasses: ( OLcfgGlOc:0 NAME 'olcConfig' DESC 'OpenLDAP configuration ", " object' SUP top ABSTRACT )", "olcObjectClasses: ( OLcfgGlOc:1 NAME 'olcGlobal' DESC 'OpenLDAP Global configu", " ration options' SUP olcConfig STRUCTURAL MAY ( cn $ olcConfigFile $ olcConfig", " Dir $ olcAllows $ olcArgsFile $ olcAttributeOptions $ olcAuthIDRewrite $ olcA", " uthzPolicy $ olcAuthzRegexp $ olcConcurrency $ olcConnMaxPending $ olcConnMax", " PendingAuth $ olcDisallows $ olcGentleHUP $ olcIdleTimeout $ olcIndexSubstrIf", " MaxLen $ olcIndexSubstrIfMinLen $ olcIndexSubstrAnyLen $ olcIndexSubstrAnySte", " p $ olcIndexIntLen $ olcLocalSSF $ olcLogFile $ olcLogLevel $ olcPasswordCryp", " tSaltFormat $ olcPasswordHash $ olcPidFile $ olcPluginLogFile $ olcReadOnly $", " olcReferral $ olcReplogFile $ olcRequires $ olcRestrict $ olcReverseLookup $", " olcRootDSE $ olcSaslAuxprops $ olcSaslHost $ olcSaslRealm $ olcSaslSecProps ", " $ olcSecurity $ olcServerID $ olcSizeLimit $ olcSockbufMaxIncoming $ olcSockb", " ufMaxIncomingAuth $ olcTCPBuffer $ olcThreads $ olcTimeLimit $ olcTLSCACertif", " icateFile $ olcTLSCACertificatePath $ olcTLSCertificateFile $ olcTLSCertifica", " teKeyFile $ olcTLSCipherSuite $ olcTLSCRLCheck $ olcTLSRandFile $ olcTLSVerif", " yClient $ olcTLSDHParamFile $ olcTLSCRLFile $ olcToolThreads $ olcWriteTimeou", " t $ olcObjectIdentifier $ olcAttributeTypes $ olcObjectClasses $ olcDitConten", " tRules $ olcLdapSyntaxes ) )", "olcObjectClasses: ( OLcfgGlOc:2 NAME 'olcSchemaConfig' DESC 'OpenLDAP schema o", " bject' SUP olcConfig STRUCTURAL MAY ( cn $ olcObjectIdentifier $ olcAttribute", " Types $ olcObjectClasses $ olcDitContentRules $ olcLdapSyntaxes ) )", "olcObjectClasses: ( OLcfgGlOc:3 NAME 'olcBackendConfig' DESC 'OpenLDAP Backend", " -specific options' SUP olcConfig STRUCTURAL MUST olcBackend )", "olcObjectClasses: ( OLcfgGlOc:4 NAME 'olcDatabaseConfig' DESC 'OpenLDAP Databa", " se-specific options' SUP olcConfig STRUCTURAL MUST olcDatabase MAY ( olcHidde", " n $ olcSuffix $ olcSubordinate $ olcAccess $ olcAddContentAcl $ olcLastMod $ ", " olcLimits $ olcMaxDerefDepth $ olcPlugin $ olcReadOnly $ olcReplica $ olcRepl", " icaArgsFile $ olcReplicaPidFile $ olcReplicationInterval $ olcReplogFile $ ol", " cRequires $ olcRestrict $ olcRootDN $ olcRootPW $ olcSchemaDN $ olcSecurity $", " olcSizeLimit $ olcSyncUseSubentry $ olcSyncrepl $ olcTimeLimit $ olcUpdateDN", " $ olcUpdateRef $ olcMirrorMode $ olcMonitoring ) )", "olcObjectClasses: ( OLcfgGlOc:5 NAME 'olcOverlayConfig' DESC 'OpenLDAP Overlay", " -specific options' SUP olcConfig STRUCTURAL MUST olcOverlay )", "olcObjectClasses: ( OLcfgGlOc:6 NAME 'olcIncludeFile' DESC 'OpenLDAP configura", " tion include file' SUP olcConfig STRUCTURAL MUST olcInclude MAY ( cn $ olcRoo", " tDSE ) )", "olcObjectClasses: ( OLcfgGlOc:7 NAME 'olcFrontendConfig' DESC 'OpenLDAP fronte", " nd configuration' AUXILIARY MAY ( olcDefaultSearchBase $ olcPasswordHash $ ol", " cSortVals ) )", "olcObjectClasses: ( OLcfgGlOc:8 NAME 'olcModuleList' DESC 'OpenLDAP dynamic mo", " dule info' SUP olcConfig STRUCTURAL MAY ( cn $ olcModulePath $ olcModuleLoad ", " ) )", "olcObjectClasses: ( OLcfgDbOc:2.1 NAME 'olcLdifConfig' DESC 'LDIF backend conf", " iguration' SUP olcDatabaseConfig STRUCTURAL MUST olcDbDirectory )", "olcObjectClasses: ( OLcfgDbOc:1.2 NAME 'olcHdbConfig' DESC 'HDB backend config", " uration' SUP olcDatabaseConfig STRUCTURAL MUST olcDbDirectory MAY ( olcDbCach", " eSize $ olcDbCheckpoint $ olcDbConfig $ olcDbCryptFile $ olcDbCryptKey $ olcD", " bNoSync $ olcDbDirtyRead $ olcDbIDLcacheSize $ olcDbIndex $ olcDbLinearIndex ", " $ olcDbLockDetect $ olcDbMode $ olcDbSearchStack $ olcDbShmKey $ olcDbCacheFr", " ee $ olcDbDNcacheSize $ olcDbPageSize ) )", "olcObjectClasses: ( OLcfgOvOc:18.1 NAME 'olcMemberOf' DESC 'Member-of configur", " ation' SUP olcOverlayConfig STRUCTURAL MAY ( olcMemberOfDN $ olcMemberOfDangl", " ing $ olcMemberOfDanglingError $ olcMemberOfRefInt $ olcMemberOfGroupOC $ olc", " MemberOfMemberAD $ olcMemberOfMemberOfAD ) )", "olcObjectClasses: ( OLcfgOvOc:12.1 NAME 'olcPPolicyConfig' DESC 'Password Poli", " cy configuration' SUP olcOverlayConfig STRUCTURAL MAY ( olcPPolicyDefault $ o", " lcPPolicyHashCleartext $ olcPPolicyUseLockout $ olcPPolicyForwardUpdates ) )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.1 DESC 'ACI Item' X-BINARY-TRANS", " FER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.2 DESC 'Access Point' X-NOT-HUMA", " N-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.3 DESC 'Attribute Type Descripti", " on' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.4 DESC 'Audio' X-NOT-HUMAN-READA", " BLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.5 DESC 'Binary' X-NOT-HUMAN-READ", " ABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.6 DESC 'Bit String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.7 DESC 'Boolean' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.8 DESC 'Certificate' X-BINARY-TR", " ANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.9 DESC 'Certificate List' X-BINA", " RY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.10 DESC 'Certificate Pair' X-BIN", " ARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.1 DESC 'X.509 AttributeCertifi", " cate' X-BINARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.12 DESC 'Distinguished Name' )", "olcLdapSyntaxes: ( 1.2.36.79672281.1.5.0 DESC 'RDN' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.13 DESC 'Data Quality' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.14 DESC 'Delivery Method' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.15 DESC 'Directory String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.16 DESC 'DIT Content Rule Descri", " ption' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.17 DESC 'DIT Structure Rule Desc", " ription' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.19 DESC 'DSA Quality' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.20 DESC 'DSE Type' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.21 DESC 'Enhanced Guide' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.22 DESC 'Facsimile Telephone Num", " ber' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.23 DESC 'Fax' X-NOT-HUMAN-READAB", " LE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.24 DESC 'Generalized Time' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.25 DESC 'Guide' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.26 DESC 'IA5 String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.27 DESC 'Integer' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.28 DESC 'JPEG' X-NOT-HUMAN-READA", " BLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.29 DESC 'Master And Shadow Acces", " s Points' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.30 DESC 'Matching Rule Descripti", " on' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.31 DESC 'Matching Rule Use Descr", " iption' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.32 DESC 'Mail Preference' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.33 DESC 'MHS OR Address' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.34 DESC 'Name And Optional UID' ", " )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.35 DESC 'Name Form Description' ", " )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.36 DESC 'Numeric String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.37 DESC 'Object Class Descriptio", " n' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.38 DESC 'OID' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.39 DESC 'Other Mailbox' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.40 DESC 'Octet String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.41 DESC 'Postal Address' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.42 DESC 'Protocol Information' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.43 DESC 'Presentation Address' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.44 DESC 'Printable String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.11 DESC 'Country String' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.45 DESC 'SubtreeSpecification' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.49 DESC 'Supported Algorithm' X-", " BINARY-TRANSFER-REQUIRED 'TRUE' X-NOT-HUMAN-READABLE 'TRUE' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.50 DESC 'Telephone Number' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.51 DESC 'Teletex Terminal Identi", " fier' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.52 DESC 'Telex Number' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.54 DESC 'LDAP Syntax Description", " ' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.55 DESC 'Modify Rights' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.56 DESC 'LDAP Schema Definition'", " )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.57 DESC 'LDAP Schema Description", " ' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.1466.115.121.1.58 DESC 'Substring Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.1.0.0 DESC 'RFC2307 NIS Netgroup Triple' )", "olcLdapSyntaxes: ( 1.3.6.1.1.1.0.1 DESC 'RFC2307 Boot Parameter' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.1 DESC 'Certificate Exact Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.2 DESC 'Certificate Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.3 DESC 'Certificate Pair Exact Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.4 DESC 'Certificate Pair Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.5 DESC 'Certificate List Exact Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.6 DESC 'Certificate List Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.15.7 DESC 'Algorithm Identifier' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.2 DESC 'AttributeCertificate E", " xact Assertion' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.10.2.3 DESC 'AttributeCertificate A", " ssertion' )", "olcLdapSyntaxes: ( 1.3.6.1.1.16.1 DESC 'UUID' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.2.1 DESC 'CSN' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.11.2.4 DESC 'CSN SID' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.1.1.1 DESC 'OpenLDAP void' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.2.7 DESC 'OpenLDAP authz' )", "olcLdapSyntaxes: ( 1.3.6.1.4.1.4203.666.2.1 DESC 'OpenLDAP Experimental ACI' )", "", "# {0}core, schema, config", "dn: cn={0}core,cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: {0}core", "olcAttributeTypes: {0}( 2.5.4.2 NAME 'knowledgeInformation' DESC 'RFC2256: kno", " wledge information' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.", " 1.15{32768} )", "olcAttributeTypes: {1}( 2.5.4.4 NAME ( 'sn' 'surname' ) DESC 'RFC2256: last (f", " amily) name(s) for which the entity is known by' SUP name )", "olcAttributeTypes: {2}( 2.5.4.5 NAME 'serialNumber' DESC 'RFC2256: serial numb", " er of the entity' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch S", " YNTAX 1.3.6.1.4.1.1466.115.121.1.44{64} )", "olcAttributeTypes: {3}( 2.5.4.6 NAME ( 'c' 'countryName' ) DESC 'RFC2256: ISO-", " 3166 country 2-letter code' SUP name SINGLE-VALUE )", "olcAttributeTypes: {4}( 2.5.4.7 NAME ( 'l' 'localityName' ) DESC 'RFC2256: loc", " ality which this object resides in' SUP name )", "olcAttributeTypes: {5}( 2.5.4.8 NAME ( 'st' 'stateOrProvinceName' ) DESC 'RFC2", " 256: state or province which this object resides in' SUP name )", "olcAttributeTypes: {6}( 2.5.4.9 NAME ( 'street' 'streetAddress' ) DESC 'RFC225", " 6: street address of this object' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreS", " ubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )", "olcAttributeTypes: {7}( 2.5.4.10 NAME ( 'o' 'organizationName' ) DESC 'RFC2256", " : organization this object belongs to' SUP name )", "olcAttributeTypes: {8}( 2.5.4.11 NAME ( 'ou' 'organizationalUnitName' ) DESC '", " RFC2256: organizational unit this object belongs to' SUP name )", "olcAttributeTypes: {9}( 2.5.4.12 NAME 'title' DESC 'RFC2256: title associated ", " with the entity' SUP name )", "olcAttributeTypes: {10}( 2.5.4.14 NAME 'searchGuide' DESC 'RFC2256: search gui", " de, deprecated by enhancedSearchGuide' SYNTAX 1.3.6.1.4.1.1466.115.121.1.25 )", "olcAttributeTypes: {11}( 2.5.4.15 NAME 'businessCategory' DESC 'RFC2256: busin", " ess category' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTA", " X 1.3.6.1.4.1.1466.115.121.1.15{128} )", "olcAttributeTypes: {12}( 2.5.4.16 NAME 'postalAddress' DESC 'RFC2256: postal a", " ddress' EQUALITY caseIgnoreListMatch SUBSTR caseIgnoreListSubstringsMatch SYN", " TAX 1.3.6.1.4.1.1466.115.121.1.41 )", "olcAttributeTypes: {13}( 2.5.4.17 NAME 'postalCode' DESC 'RFC2256: postal code", " ' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.", " 1.1466.115.121.1.15{40} )", "olcAttributeTypes: {14}( 2.5.4.18 NAME 'postOfficeBox' DESC 'RFC2256: Post Off", " ice Box' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3", " .6.1.4.1.1466.115.121.1.15{40} )", "olcAttributeTypes: {15}( 2.5.4.19 NAME 'physicalDeliveryOfficeName' DESC 'RFC2", " 256: Physical Delivery Office Name' EQUALITY caseIgnoreMatch SUBSTR caseIgnor", " eSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )", "olcAttributeTypes: {16}( 2.5.4.20 NAME 'telephoneNumber' DESC 'RFC2256: Teleph", " one Number' EQUALITY telephoneNumberMatch SUBSTR telephoneNumberSubstringsMat", " ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.50{32} )", "olcAttributeTypes: {17}( 2.5.4.21 NAME 'telexNumber' DESC 'RFC2256: Telex Numb", " er' SYNTAX 1.3.6.1.4.1.1466.115.121.1.52 )", "olcAttributeTypes: {18}( 2.5.4.22 NAME 'teletexTerminalIdentifier' DESC 'RFC22", " 56: Teletex Terminal Identifier' SYNTAX 1.3.6.1.4.1.1466.115.121.1.51 )", "olcAttributeTypes: {19}( 2.5.4.23 NAME ( 'facsimileTelephoneNumber' 'fax' ) DE", " SC 'RFC2256: Facsimile (Fax) Telephone Number' SYNTAX 1.3.6.1.4.1.1466.115.12", " 1.1.22 )", "olcAttributeTypes: {20}( 2.5.4.24 NAME 'x121Address' DESC 'RFC2256: X.121 Addr", " ess' EQUALITY numericStringMatch SUBSTR numericStringSubstringsMatch SYNTAX 1", " .3.6.1.4.1.1466.115.121.1.36{15} )", "olcAttributeTypes: {21}( 2.5.4.25 NAME 'internationaliSDNNumber' DESC 'RFC2256", " : international ISDN number' EQUALITY numericStringMatch SUBSTR numericString", " SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.36{16} )", "olcAttributeTypes: {22}( 2.5.4.26 NAME 'registeredAddress' DESC 'RFC2256: regi", " stered postal address' SUP postalAddress SYNTAX 1.3.6.1.4.1.1466.115.121.1.41", " )", "olcAttributeTypes: {23}( 2.5.4.27 NAME 'destinationIndicator' DESC 'RFC2256: d", " estination indicator' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMat", " ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.44{128} )", "olcAttributeTypes: {24}( 2.5.4.28 NAME 'preferredDeliveryMethod' DESC 'RFC2256", " : preferred delivery method' SYNTAX 1.3.6.1.4.1.1466.115.121.1.14 SINGLE-VALU", " E )", "olcAttributeTypes: {25}( 2.5.4.29 NAME 'presentationAddress' DESC 'RFC2256: pr", " esentation address' EQUALITY presentationAddressMatch SYNTAX 1.3.6.1.4.1.1466", " .115.121.1.43 SINGLE-VALUE )", "olcAttributeTypes: {26}( 2.5.4.30 NAME 'supportedApplicationContext' DESC 'RFC", " 2256: supported application context' EQUALITY objectIdentifierMatch SYNTAX 1.", " 3.6.1.4.1.1466.115.121.1.38 )", "olcAttributeTypes: {27}( 2.5.4.31 NAME 'member' DESC 'RFC2256: member of a gro", " up' SUP distinguishedName )", "olcAttributeTypes: {28}( 2.5.4.32 NAME 'owner' DESC 'RFC2256: owner (of the ob", " ject)' SUP distinguishedName )", "olcAttributeTypes: {29}( 2.5.4.33 NAME 'roleOccupant' DESC 'RFC2256: occupant ", " of role' SUP distinguishedName )", "olcAttributeTypes: {30}( 2.5.4.36 NAME 'userCertificate' DESC 'RFC2256: X.509 ", " user certificate, use ;binary' EQUALITY certificateExactMatch SYNTAX 1.3.6.1.", " 4.1.1466.115.121.1.8 )", "olcAttributeTypes: {31}( 2.5.4.37 NAME 'cACertificate' DESC 'RFC2256: X.509 CA", " certificate, use ;binary' EQUALITY certificateExactMatch SYNTAX 1.3.6.1.4.1.", " 1466.115.121.1.8 )", "olcAttributeTypes: {32}( 2.5.4.38 NAME 'authorityRevocationList' DESC 'RFC2256", " : X.509 authority revocation list, use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.1", " 21.1.9 )", "olcAttributeTypes: {33}( 2.5.4.39 NAME 'certificateRevocationList' DESC 'RFC22", " 56: X.509 certificate revocation list, use ;binary' SYNTAX 1.3.6.1.4.1.1466.1", " 15.121.1.9 )", "olcAttributeTypes: {34}( 2.5.4.40 NAME 'crossCertificatePair' DESC 'RFC2256: X", " .509 cross certificate pair, use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.121.1.1", " 0 )", "olcAttributeTypes: {35}( 2.5.4.42 NAME ( 'givenName' 'gn' ) DESC 'RFC2256: fir", " st name(s) for which the entity is known by' SUP name )", "olcAttributeTypes: {36}( 2.5.4.43 NAME 'initials' DESC 'RFC2256: initials of s", " ome or all of names, but not the surname(s).' SUP name )", "olcAttributeTypes: {37}( 2.5.4.44 NAME 'generationQualifier' DESC 'RFC2256: na", " me qualifier indicating a generation' SUP name )", "olcAttributeTypes: {38}( 2.5.4.45 NAME 'x500UniqueIdentifier' DESC 'RFC2256: X", " .500 unique identifier' EQUALITY bitStringMatch SYNTAX 1.3.6.1.4.1.1466.115.1", " 21.1.6 )", "olcAttributeTypes: {39}( 2.5.4.46 NAME 'dnQualifier' DESC 'RFC2256: DN qualifi", " er' EQUALITY caseIgnoreMatch ORDERING caseIgnoreOrderingMatch SUBSTR caseIgno", " reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.44 )", "olcAttributeTypes: {40}( 2.5.4.47 NAME 'enhancedSearchGuide' DESC 'RFC2256: en", " hanced search guide' SYNTAX 1.3.6.1.4.1.1466.115.121.1.21 )", "olcAttributeTypes: {41}( 2.5.4.48 NAME 'protocolInformation' DESC 'RFC2256: pr", " otocol information' EQUALITY protocolInformationMatch SYNTAX 1.3.6.1.4.1.1466", " .115.121.1.42 )", "olcAttributeTypes: {42}( 2.5.4.50 NAME 'uniqueMember' DESC 'RFC2256: unique me", " mber of a group' EQUALITY uniqueMemberMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1", " .34 )", "olcAttributeTypes: {43}( 2.5.4.51 NAME 'houseIdentifier' DESC 'RFC2256: house ", " identifier' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX ", " 1.3.6.1.4.1.1466.115.121.1.15{32768} )", "olcAttributeTypes: {44}( 2.5.4.52 NAME 'supportedAlgorithms' DESC 'RFC2256: su", " pported algorithms' SYNTAX 1.3.6.1.4.1.1466.115.121.1.49 )", "olcAttributeTypes: {45}( 2.5.4.53 NAME 'deltaRevocationList' DESC 'RFC2256: de", " lta revocation list; use ;binary' SYNTAX 1.3.6.1.4.1.1466.115.121.1.9 )", "olcAttributeTypes: {46}( 2.5.4.54 NAME 'dmdName' DESC 'RFC2256: name of DMD' S", " UP name )", "olcAttributeTypes: {47}( 2.5.4.65 NAME 'pseudonym' DESC 'X.520(4th): pseudonym", " for the object' SUP name )", "olcAttributeTypes: {48}( 0.9.2342.19200300.100.1.3 NAME ( 'mail' 'rfc822Mailbo", " x' ) DESC 'RFC1274: RFC822 Mailbox' EQUALITY caseIgnoreIA5Match SUBSTR ca", " seIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )", "olcAttributeTypes: {49}( 0.9.2342.19200300.100.1.25 NAME ( 'dc' 'domainCompone", " nt' ) DESC 'RFC1274/2247: domain component' EQUALITY caseIgnoreIA5Match SUBST", " R caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VA", " LUE )", "olcAttributeTypes: {50}( 0.9.2342.19200300.100.1.37 NAME 'associatedDomain' DE", " SC 'RFC1274: domain associated with object' EQUALITY caseIgnoreIA5Match SUBST", " R caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {51}( 1.2.840.113549.1.9.1 NAME ( 'email' 'emailAddress' 'p", " kcs9email' ) DESC 'RFC3280: legacy attribute for email addresses in DNs' EQUA", " LITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.", " 1.1466.115.121.1.26{128} )", "olcObjectClasses: {0}( 2.5.6.2 NAME 'country' DESC 'RFC2256: a country' SUP to", " p STRUCTURAL MUST c MAY ( searchGuide $ description ) )", "olcObjectClasses: {1}( 2.5.6.3 NAME 'locality' DESC 'RFC2256: a locality' SUP ", " top STRUCTURAL MAY ( street $ seeAlso $ searchGuide $ st $ l $ description ) ", " )", "olcObjectClasses: {2}( 2.5.6.4 NAME 'organization' DESC 'RFC2256: an organizat", " ion' SUP top STRUCTURAL MUST o MAY ( userPassword $ searchGuide $ seeAlso $ b", " usinessCategory $ x121Address $ registeredAddress $ destinationIndicator $ pr", " eferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier $ telephoneNu", " mber $ internationaliSDNNumber $ facsimileTelephoneNumber $ street $ postOff", " iceBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ st $ l $ d", " escription ) )", "olcObjectClasses: {3}( 2.5.6.5 NAME 'organizationalUnit' DESC 'RFC2256: an org", " anizational unit' SUP top STRUCTURAL MUST ou MAY ( userPassword $ searchGuide", " $ seeAlso $ businessCategory $ x121Address $ registeredAddress $ destination", " Indicator $ preferredDeliveryMethod $ telexNumber $ teletexTerminalIdentifier", " $ telephoneNumber $ internationaliSDNNumber $ facsimileTelephoneNumber $ str", " eet $ postOfficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName", " $ st $ l $ description ) )", "olcObjectClasses: {4}( 2.5.6.6 NAME 'person' DESC 'RFC2256: a person' SUP top ", " STRUCTURAL MUST ( sn $ cn ) MAY ( userPassword $ telephoneNumber $ seeAlso $ ", " description ) )", "olcObjectClasses: {5}( 2.5.6.7 NAME 'organizationalPerson' DESC 'RFC2256: an o", " rganizational person' SUP person STRUCTURAL MAY ( title $ x121Address $ regis", " teredAddress $ destinationIndicator $ preferredDeliveryMethod $ telexNumber $", " teletexTerminalIdentifier $ telephoneNumber $ internationaliSDNNumber $ fac", " simileTelephoneNumber $ street $ postOfficeBox $ postalCode $ postalAddress $", " physicalDeliveryOfficeName $ ou $ st $ l ) )", "olcObjectClasses: {6}( 2.5.6.8 NAME 'organizationalRole' DESC 'RFC2256: an org", " anizational role' SUP top STRUCTURAL MUST cn MAY ( x121Address $ registeredAd", " dress $ destinationIndicator $ preferredDeliveryMethod $ telexNumber $ telete", " xTerminalIdentifier $ telephoneNumber $ internationaliSDNNumber $ facsimileTe", " lephoneNumber $ seeAlso $ roleOccupant $ preferredDeliveryMethod $ street $ p", " ostOfficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ ou $", " st $ l $ description ) )", "olcObjectClasses: {7}( 2.5.6.9 NAME 'groupOfNames' DESC 'RFC2256: a group of n", " ames (DNs)' SUP top STRUCTURAL MUST ( member $ cn ) MAY ( businessCategory $ ", " seeAlso $ owner $ ou $ o $ description ) )", "olcObjectClasses: {8}( 2.5.6.10 NAME 'residentialPerson' DESC 'RFC2256: an res", " idential person' SUP person STRUCTURAL MUST l MAY ( businessCategory $ x121Ad", " dress $ registeredAddress $ destinationIndicator $ preferredDeliveryMethod $ ", " telexNumber $ teletexTerminalIdentifier $ telephoneNumber $ internationaliSDN", " Number $ facsimileTelephoneNumber $ preferredDeliveryMethod $ street $ postOf", " ficeBox $ postalCode $ postalAddress $ physicalDeliveryOfficeName $ st $ l ) ", " )", "olcObjectClasses: {9}( 2.5.6.11 NAME 'applicationProcess' DESC 'RFC2256: an ap", " plication process' SUP top STRUCTURAL MUST cn MAY ( seeAlso $ ou $ l $ descri", " ption ) )", "olcObjectClasses: {10}( 2.5.6.12 NAME 'applicationEntity' DESC 'RFC2256: an ap", " plication entity' SUP top STRUCTURAL MUST ( presentationAddress $ cn ) MAY ( ", " supportedApplicationContext $ seeAlso $ ou $ o $ l $ description ) )", "olcObjectClasses: {11}( 2.5.6.13 NAME 'dSA' DESC 'RFC2256: a directory system ", " agent (a server)' SUP applicationEntity STRUCTURAL MAY knowledgeInformation )", "olcObjectClasses: {12}( 2.5.6.14 NAME 'device' DESC 'RFC2256: a device' SUP to", " p STRUCTURAL MUST cn MAY ( serialNumber $ seeAlso $ owner $ ou $ o $ l $ desc", " ription ) )", "olcObjectClasses: {13}( 2.5.6.15 NAME 'strongAuthenticationUser' DESC 'RFC2256", " : a strong authentication user' SUP top AUXILIARY MUST userCertificate )", "olcObjectClasses: {14}( 2.5.6.16 NAME 'certificationAuthority' DESC 'RFC2256: ", " a certificate authority' SUP top AUXILIARY MUST ( authorityRevocationList $ c", " ertificateRevocationList $ cACertificate ) MAY crossCertificatePair )", "olcObjectClasses: {15}( 2.5.6.17 NAME 'groupOfUniqueNames' DESC 'RFC2256: a gr", " oup of unique names (DN and Unique Identifier)' SUP top STRUCTURAL MUST ( uni", " queMember $ cn ) MAY ( businessCategory $ seeAlso $ owner $ ou $ o $ descript", " ion ) )", "olcObjectClasses: {16}( 2.5.6.18 NAME 'userSecurityInformation' DESC 'RFC2256:", " a user security information' SUP top AUXILIARY MAY ( supportedAlgorithms ) )", "olcObjectClasses: {17}( 2.5.6.16.2 NAME 'certificationAuthority-V2' SUP certif", " icationAuthority AUXILIARY MAY ( deltaRevocationList ) )", "olcObjectClasses: {18}( 2.5.6.19 NAME 'cRLDistributionPoint' SUP top STRUCTURA", " L MUST ( cn ) MAY ( certificateRevocationList $ authorityRevocationList $ del", " taRevocationList ) )", "olcObjectClasses: {19}( 2.5.6.20 NAME 'dmd' SUP top STRUCTURAL MUST ( dmdName ", " ) MAY ( userPassword $ searchGuide $ seeAlso $ businessCategory $ x121Address", " $ registeredAddress $ destinationIndicator $ preferredDeliveryMethod $ telex", " Number $ teletexTerminalIdentifier $ telephoneNumber $ internationaliSDNNumbe", " r $ facsimileTelephoneNumber $ street $ postOfficeBox $ postalCode $ postalAd", " dress $ physicalDeliveryOfficeName $ st $ l $ description ) )", "olcObjectClasses: {20}( 2.5.6.21 NAME 'pkiUser' DESC 'RFC2587: a PKI user' SUP", " top AUXILIARY MAY userCertificate )", "olcObjectClasses: {21}( 2.5.6.22 NAME 'pkiCA' DESC 'RFC2587: PKI certificate a", " uthority' SUP top AUXILIARY MAY ( authorityRevocationList $ certificateRevoca", " tionList $ cACertificate $ crossCertificatePair ) )", "olcObjectClasses: {22}( 2.5.6.23 NAME 'deltaCRL' DESC 'RFC2587: PKI user' SUP ", " top AUXILIARY MAY deltaRevocationList )", "olcObjectClasses: {23}( 1.3.6.1.4.1.250.3.15 NAME 'labeledURIObject' DESC 'RFC", " 2079: object that contains the URI attribute type' MAY ( labeledURI ) SUP top", " AUXILIARY )", "olcObjectClasses: {24}( 0.9.2342.19200300.100.4.19 NAME 'simpleSecurityObject'", " DESC 'RFC1274: simple security object' SUP top AUXILIARY MUST userPassword )", "olcObjectClasses: {25}( 1.3.6.1.4.1.1466.344 NAME 'dcObject' DESC 'RFC2247: do", " main component object' SUP top AUXILIARY MUST dc )", "olcObjectClasses: {26}( 1.3.6.1.1.3.1 NAME 'uidObject' DESC 'RFC2377: uid obje", " ct' SUP top AUXILIARY MUST uid )", "", "# {1}cosine, schema, config", "dn: cn={1}cosine,cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: {1}cosine", "olcAttributeTypes: {0}( 0.9.2342.19200300.100.1.2 NAME 'textEncodedORAddress' ", " EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.", " 1466.115.121.1.15{256} )", "olcAttributeTypes: {1}( 0.9.2342.19200300.100.1.4 NAME 'info' DESC 'RFC1274: g", " eneral information' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch", " SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{2048} )", "olcAttributeTypes: {2}( 0.9.2342.19200300.100.1.5 NAME ( 'drink' 'favouriteDri", " nk' ) DESC 'RFC1274: favorite drink' EQUALITY caseIgnoreMatch SUBSTR caseIgno", " reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {3}( 0.9.2342.19200300.100.1.6 NAME 'roomNumber' DESC 'RFC1", " 274: room number' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch S", " YNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {4}( 0.9.2342.19200300.100.1.7 NAME 'photo' DESC 'RFC1274: ", " photo (G3 fax)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.23{25000} )", "olcAttributeTypes: {5}( 0.9.2342.19200300.100.1.8 NAME 'userClass' DESC 'RFC12", " 74: category of user' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMat", " ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {6}( 0.9.2342.19200300.100.1.9 NAME 'host' DESC 'RFC1274: h", " ost computer' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTA", " X 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {7}( 0.9.2342.19200300.100.1.10 NAME 'manager' DESC 'RFC127", " 4: DN of manager' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115", " .121.1.12 )", "olcAttributeTypes: {8}( 0.9.2342.19200300.100.1.11 NAME 'documentIdentifier' D", " ESC 'RFC1274: unique identifier of document' EQUALITY caseIgnoreMatch SUBSTR ", " caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {9}( 0.9.2342.19200300.100.1.12 NAME 'documentTitle' DESC '", " RFC1274: title of document' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstri", " ngsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {10}( 0.9.2342.19200300.100.1.13 NAME 'documentVersion' DES", " C 'RFC1274: version of document' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSu", " bstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {11}( 0.9.2342.19200300.100.1.14 NAME 'documentAuthor' DESC", " 'RFC1274: DN of author of document' EQUALITY distinguishedNameMatch SYNTAX 1", " .3.6.1.4.1.1466.115.121.1.12 )", "olcAttributeTypes: {12}( 0.9.2342.19200300.100.1.15 NAME 'documentLocation' DE", " SC 'RFC1274: location of document original' EQUALITY caseIgnoreMatch SUBSTR c", " aseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {13}( 0.9.2342.19200300.100.1.20 NAME ( 'homePhone' 'homeTe", " lephoneNumber' ) DESC 'RFC1274: home telephone number' EQUALITY telephoneNumb", " erMatch SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121", " .1.50 )", "olcAttributeTypes: {14}( 0.9.2342.19200300.100.1.21 NAME 'secretary' DESC 'RFC", " 1274: DN of secretary' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.146", " 6.115.121.1.12 )", "olcAttributeTypes: {15}( 0.9.2342.19200300.100.1.22 NAME 'otherMailbox' SYNTAX", " 1.3.6.1.4.1.1466.115.121.1.39 )", "olcAttributeTypes: {16}( 0.9.2342.19200300.100.1.26 NAME 'aRecord' EQUALITY ca", " seIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {17}( 0.9.2342.19200300.100.1.27 NAME 'mDRecord' EQUALITY c", " aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {18}( 0.9.2342.19200300.100.1.28 NAME 'mXRecord' EQUALITY c", " aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {19}( 0.9.2342.19200300.100.1.29 NAME 'nSRecord' EQUALITY c", " aseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {20}( 0.9.2342.19200300.100.1.30 NAME 'sOARecord' EQUALITY ", " caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {21}( 0.9.2342.19200300.100.1.31 NAME 'cNAMERecord' EQUALIT", " Y caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {22}( 0.9.2342.19200300.100.1.38 NAME 'associatedName' DESC", " 'RFC1274: DN of entry associated with domain' EQUALITY distinguishedNameMatc", " h SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )", "olcAttributeTypes: {23}( 0.9.2342.19200300.100.1.39 NAME 'homePostalAddress' D", " ESC 'RFC1274: home postal address' EQUALITY caseIgnoreListMatch SUBSTR caseIg", " noreListSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.41 )", "olcAttributeTypes: {24}( 0.9.2342.19200300.100.1.40 NAME 'personalTitle' DESC ", " 'RFC1274: personal title' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstring", " sMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {25}( 0.9.2342.19200300.100.1.41 NAME ( 'mobile' 'mobileTel", " ephoneNumber' ) DESC 'RFC1274: mobile telephone number' EQUALITY telephoneNum", " berMatch SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.12", " 1.1.50 )", "olcAttributeTypes: {26}( 0.9.2342.19200300.100.1.42 NAME ( 'pager' 'pagerTelep", " honeNumber' ) DESC 'RFC1274: pager telephone number' EQUALITY telephoneNumber", " Match SUBSTR telephoneNumberSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1", " .50 )", "olcAttributeTypes: {27}( 0.9.2342.19200300.100.1.43 NAME ( 'co' 'friendlyCount", " ryName' ) DESC 'RFC1274: friendly country name' EQUALITY caseIgnoreMatch SUBS", " TR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", "olcAttributeTypes: {28}( 0.9.2342.19200300.100.1.44 NAME 'uniqueIdentifier' DE", " SC 'RFC1274: unique identifer' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.14", " 66.115.121.1.15{256} )", "olcAttributeTypes: {29}( 0.9.2342.19200300.100.1.45 NAME 'organizationalStatus", " ' DESC 'RFC1274: organizational status' EQUALITY caseIgnoreMatch SUBSTR caseI", " gnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {30}( 0.9.2342.19200300.100.1.46 NAME 'janetMailbox' DESC '", " RFC1274: Janet mailbox' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5Subst", " ringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )", "olcAttributeTypes: {31}( 0.9.2342.19200300.100.1.47 NAME 'mailPreferenceOption", " ' DESC 'RFC1274: mail preference option' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27", " )", "olcAttributeTypes: {32}( 0.9.2342.19200300.100.1.48 NAME 'buildingName' DESC '", " RFC1274: name of building' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstrin", " gsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )", "olcAttributeTypes: {33}( 0.9.2342.19200300.100.1.49 NAME 'dSAQuality' DESC 'RF", " C1274: DSA Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.19 SINGLE-VALUE )", "olcAttributeTypes: {34}( 0.9.2342.19200300.100.1.50 NAME 'singleLevelQuality' ", " DESC 'RFC1274: Single Level Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.13 SIN", " GLE-VALUE )", "olcAttributeTypes: {35}( 0.9.2342.19200300.100.1.51 NAME 'subtreeMinimumQualit", " y' DESC 'RFC1274: Subtree Mininum Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 13 SINGLE-VALUE )", "olcAttributeTypes: {36}( 0.9.2342.19200300.100.1.52 NAME 'subtreeMaximumQualit", " y' DESC 'RFC1274: Subtree Maximun Quality' SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 13 SINGLE-VALUE )", "olcAttributeTypes: {37}( 0.9.2342.19200300.100.1.53 NAME 'personalSignature' D", " ESC 'RFC1274: Personal Signature (G3 fax)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 23 )", "olcAttributeTypes: {38}( 0.9.2342.19200300.100.1.54 NAME 'dITRedirect' DESC 'R", " FC1274: DIT Redirect' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466", " .115.121.1.12 )", "olcAttributeTypes: {39}( 0.9.2342.19200300.100.1.55 NAME 'audio' DESC 'RFC1274", " : audio (u-law)' SYNTAX 1.3.6.1.4.1.1466.115.121.1.4{25000} )", "olcAttributeTypes: {40}( 0.9.2342.19200300.100.1.56 NAME 'documentPublisher' D", " ESC 'RFC1274: publisher of document' EQUALITY caseIgnoreMatch SUBSTR caseIgno", " reSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", "olcObjectClasses: {0}( 0.9.2342.19200300.100.4.4 NAME ( 'pilotPerson' 'newPilo", " tPerson' ) SUP person STRUCTURAL MAY ( userid $ textEncodedORAddress $ rfc822", " Mailbox $ favouriteDrink $ roomNumber $ userClass $ homeTelephoneNumber $ hom", " ePostalAddress $ secretary $ personalTitle $ preferredDeliveryMethod $ busine", " ssCategory $ janetMailbox $ otherMailbox $ mobileTelephoneNumber $ pagerTelep", " honeNumber $ organizationalStatus $ mailPreferenceOption $ personalSignature ", " ) )", "olcObjectClasses: {1}( 0.9.2342.19200300.100.4.5 NAME 'account' SUP top STRUCT", " URAL MUST userid MAY ( description $ seeAlso $ localityName $ organizationNam", " e $ organizationalUnitName $ host ) )", "olcObjectClasses: {2}( 0.9.2342.19200300.100.4.6 NAME 'document' SUP top STRUC", " TURAL MUST documentIdentifier MAY ( commonName $ description $ seeAlso $ loca", " lityName $ organizationName $ organizationalUnitName $ documentTitle $ docume", " ntVersion $ documentAuthor $ documentLocation $ documentPublisher ) )", "olcObjectClasses: {3}( 0.9.2342.19200300.100.4.7 NAME 'room' SUP top STRUCTURA", " L MUST commonName MAY ( roomNumber $ description $ seeAlso $ telephoneNumber ", " ) )", "olcObjectClasses: {4}( 0.9.2342.19200300.100.4.9 NAME 'documentSeries' SUP top", " STRUCTURAL MUST commonName MAY ( description $ seeAlso $ telephonenumber $ l", " ocalityName $ organizationName $ organizationalUnitName ) )", "olcObjectClasses: {5}( 0.9.2342.19200300.100.4.13 NAME 'domain' SUP top STRUCT", " URAL MUST domainComponent MAY ( associatedName $ organizationName $ descripti", " on $ businessCategory $ seeAlso $ searchGuide $ userPassword $ localityName $", " stateOrProvinceName $ streetAddress $ physicalDeliveryOfficeName $ postalAdd", " ress $ postalCode $ postOfficeBox $ streetAddress $ facsimileTelephoneNumber ", " $ internationalISDNNumber $ telephoneNumber $ teletexTerminalIdentifier $ tel", " exNumber $ preferredDeliveryMethod $ destinationIndicator $ registeredAddress", " $ x121Address ) )", "olcObjectClasses: {6}( 0.9.2342.19200300.100.4.14 NAME 'RFC822localPart' SUP d", " omain STRUCTURAL MAY ( commonName $ surname $ description $ seeAlso $ telepho", " neNumber $ physicalDeliveryOfficeName $ postalAddress $ postalCode $ postOffi", " ceBox $ streetAddress $ facsimileTelephoneNumber $ internationalISDNNumber $ ", " telephoneNumber $ teletexTerminalIdentifier $ telexNumber $ preferredDelivery", " Method $ destinationIndicator $ registeredAddress $ x121Address ) )", "olcObjectClasses: {7}( 0.9.2342.19200300.100.4.15 NAME 'dNSDomain' SUP domain ", " STRUCTURAL MAY ( ARecord $ MDRecord $ MXRecord $ NSRecord $ SOARecord $ CNAME", " Record ) )", "olcObjectClasses: {8}( 0.9.2342.19200300.100.4.17 NAME 'domainRelatedObject' D", " ESC 'RFC1274: an object related to an domain' SUP top AUXILIARY MUST associat", " edDomain )", "olcObjectClasses: {9}( 0.9.2342.19200300.100.4.18 NAME 'friendlyCountry' SUP c", " ountry STRUCTURAL MUST friendlyCountryName )", "olcObjectClasses: {10}( 0.9.2342.19200300.100.4.20 NAME 'pilotOrganization' SU", " P ( organization $ organizationalUnit ) STRUCTURAL MAY buildingName )", "olcObjectClasses: {11}( 0.9.2342.19200300.100.4.21 NAME 'pilotDSA' SUP dsa STR", " UCTURAL MAY dSAQuality )", "olcObjectClasses: {12}( 0.9.2342.19200300.100.4.22 NAME 'qualityLabelledData' ", " SUP top AUXILIARY MUST dsaQuality MAY ( subtreeMinimumQuality $ subtreeMaximu", " mQuality ) )", "", "# {2}nis, schema, config", "dn: cn={2}nis,cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: {2}nis", "olcAttributeTypes: {0}( 1.3.6.1.1.1.1.2 NAME 'gecos' DESC 'The GECOS field; th", " e common name' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatc", " h SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )", "olcAttributeTypes: {1}( 1.3.6.1.1.1.1.3 NAME 'homeDirectory' DESC 'The absolut", " e path to the home directory' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1", " 466.115.121.1.26 SINGLE-VALUE )", "olcAttributeTypes: {2}( 1.3.6.1.1.1.1.4 NAME 'loginShell' DESC 'The path to th", " e login shell' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.2", " 6 SINGLE-VALUE )", "olcAttributeTypes: {3}( 1.3.6.1.1.1.1.5 NAME 'shadowLastChange' EQUALITY integ", " erMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {4}( 1.3.6.1.1.1.1.6 NAME 'shadowMin' EQUALITY integerMatch", " SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {5}( 1.3.6.1.1.1.1.7 NAME 'shadowMax' EQUALITY integerMatch", " SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {6}( 1.3.6.1.1.1.1.8 NAME 'shadowWarning' EQUALITY integerM", " atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {7}( 1.3.6.1.1.1.1.9 NAME 'shadowInactive' EQUALITY integer", " Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {8}( 1.3.6.1.1.1.1.10 NAME 'shadowExpire' EQUALITY integerM", " atch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {9}( 1.3.6.1.1.1.1.11 NAME 'shadowFlag' EQUALITY integerMat", " ch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {10}( 1.3.6.1.1.1.1.12 NAME 'memberUid' EQUALITY caseExactI", " A5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 26 )", "olcAttributeTypes: {11}( 1.3.6.1.1.1.1.13 NAME 'memberNisNetgroup' EQUALITY ca", " seExactIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.11", " 5.121.1.26 )", "olcAttributeTypes: {12}( 1.3.6.1.1.1.1.14 NAME 'nisNetgroupTriple' DESC 'Netgr", " oup triple' SYNTAX 1.3.6.1.1.1.0.0 )", "olcAttributeTypes: {13}( 1.3.6.1.1.1.1.15 NAME 'ipServicePort' EQUALITY intege", " rMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {14}( 1.3.6.1.1.1.1.16 NAME 'ipServiceProtocol' SUP name )", "olcAttributeTypes: {15}( 1.3.6.1.1.1.1.17 NAME 'ipProtocolNumber' EQUALITY int", " egerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {16}( 1.3.6.1.1.1.1.18 NAME 'oncRpcNumber' EQUALITY integer", " Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {17}( 1.3.6.1.1.1.1.19 NAME 'ipHostNumber' DESC 'IP address", " ' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )", "olcAttributeTypes: {18}( 1.3.6.1.1.1.1.20 NAME 'ipNetworkNumber' DESC 'IP netw", " ork' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SI", " NGLE-VALUE )", "olcAttributeTypes: {19}( 1.3.6.1.1.1.1.21 NAME 'ipNetmaskNumber' DESC 'IP netm", " ask' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SI", " NGLE-VALUE )", "olcAttributeTypes: {20}( 1.3.6.1.1.1.1.22 NAME 'macAddress' DESC 'MAC address'", " EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )", "olcAttributeTypes: {21}( 1.3.6.1.1.1.1.23 NAME 'bootParameter' DESC 'rpc.bootp", " aramd parameter' SYNTAX 1.3.6.1.1.1.0.1 )", "olcAttributeTypes: {22}( 1.3.6.1.1.1.1.24 NAME 'bootFile' DESC 'Boot image nam", " e' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )", "olcAttributeTypes: {23}( 1.3.6.1.1.1.1.26 NAME 'nisMapName' SUP name )", "olcAttributeTypes: {24}( 1.3.6.1.1.1.1.27 NAME 'nisMapEntry' EQUALITY caseExac", " tIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.", " 1.26{1024} SINGLE-VALUE )", "olcObjectClasses: {0}( 1.3.6.1.1.1.2.0 NAME 'posixAccount' DESC 'Abstraction o", " f an account with POSIX attributes' SUP top AUXILIARY MUST ( cn $ uid $ uidNu", " mber $ gidNumber $ homeDirectory ) MAY ( userPassword $ loginShell $ gecos $ ", " description ) )", "olcObjectClasses: {1}( 1.3.6.1.1.1.2.1 NAME 'shadowAccount' DESC 'Additional a", " ttributes for shadow passwords' SUP top AUXILIARY MUST uid MAY ( userPassword", " $ shadowLastChange $ shadowMin $ shadowMax $ shadowWarning $ shadowInactive ", " $ shadowExpire $ shadowFlag $ description ) )", "olcObjectClasses: {2}( 1.3.6.1.1.1.2.2 NAME 'posixGroup' DESC 'Abstraction of ", " a group of accounts' SUP top STRUCTURAL MUST ( cn $ gidNumber ) MAY ( userPas", " sword $ memberUid $ description ) )", "olcObjectClasses: {3}( 1.3.6.1.1.1.2.3 NAME 'ipService' DESC 'Abstraction an I", " nternet Protocol service' SUP top STRUCTURAL MUST ( cn $ ipServicePort $ ipSe", " rviceProtocol ) MAY description )", "olcObjectClasses: {4}( 1.3.6.1.1.1.2.4 NAME 'ipProtocol' DESC 'Abstraction of ", " an IP protocol' SUP top STRUCTURAL MUST ( cn $ ipProtocolNumber $ description", " ) MAY description )", "olcObjectClasses: {5}( 1.3.6.1.1.1.2.5 NAME 'oncRpc' DESC 'Abstraction of an O", " NC/RPC binding' SUP top STRUCTURAL MUST ( cn $ oncRpcNumber $ description ) M", " AY description )", "olcObjectClasses: {6}( 1.3.6.1.1.1.2.6 NAME 'ipHost' DESC 'Abstraction of a ho", " st, an IP device' SUP top AUXILIARY MUST ( cn $ ipHostNumber ) MAY ( l $ desc", " ription $ manager ) )", "olcObjectClasses: {7}( 1.3.6.1.1.1.2.7 NAME 'ipNetwork' DESC 'Abstraction of a", " n IP network' SUP top STRUCTURAL MUST ( cn $ ipNetworkNumber ) MAY ( ipNetmas", " kNumber $ l $ description $ manager ) )", "olcObjectClasses: {8}( 1.3.6.1.1.1.2.8 NAME 'nisNetgroup' DESC 'Abstraction of", " a netgroup' SUP top STRUCTURAL MUST cn MAY ( nisNetgroupTriple $ memberNisNe", " tgroup $ description ) )", "olcObjectClasses: {9}( 1.3.6.1.1.1.2.9 NAME 'nisMap' DESC 'A generic abstracti", " on of a NIS map' SUP top STRUCTURAL MUST nisMapName MAY description )", "olcObjectClasses: {10}( 1.3.6.1.1.1.2.10 NAME 'nisObject' DESC 'An entry in a ", " NIS map' SUP top STRUCTURAL MUST ( cn $ nisMapEntry $ nisMapName ) MAY descri", " ption )", "olcObjectClasses: {11}( 1.3.6.1.1.1.2.11 NAME 'ieee802Device' DESC 'A device w", " ith a MAC address' SUP top AUXILIARY MAY macAddress )", "olcObjectClasses: {12}( 1.3.6.1.1.1.2.12 NAME 'bootableDevice' DESC 'A device ", " with boot parameters' SUP top AUXILIARY MAY ( bootFile $ bootParameter ) )", "", "# {3}inetorgperson, schema, config", "dn: cn={3}inetorgperson,cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: {3}inetorgperson", "olcAttributeTypes: {0}( 2.16.840.1.113730.3.1.1 NAME 'carLicense' DESC 'RFC279", " 8: vehicle license or registration plate' EQUALITY caseIgnoreMatch SUBSTR cas", " eIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", "olcAttributeTypes: {1}( 2.16.840.1.113730.3.1.2 NAME 'departmentNumber' DESC '", " RFC2798: identifies a department within an organization' EQUALITY caseIgnoreM", " atch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", "olcAttributeTypes: {2}( 2.16.840.1.113730.3.1.241 NAME 'displayName' DESC 'RFC", " 2798: preferred name to be used when displaying entries' EQUALITY caseIgnoreM", " atch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SI", " NGLE-VALUE )", "olcAttributeTypes: {3}( 2.16.840.1.113730.3.1.3 NAME 'employeeNumber' DESC 'RF", " C2798: numerically identifies an employee within an organization' EQUALITY ca", " seIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.12", " 1.1.15 SINGLE-VALUE )", "olcAttributeTypes: {4}( 2.16.840.1.113730.3.1.4 NAME 'employeeType' DESC 'RFC2", " 798: type of employment for a person' EQUALITY caseIgnoreMatch SUBSTR caseIgn", " oreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )", "olcAttributeTypes: {5}( 0.9.2342.19200300.100.1.60 NAME 'jpegPhoto' DESC 'RFC2", " 798: a JPEG image' SYNTAX 1.3.6.1.4.1.1466.115.121.1.28 )", "olcAttributeTypes: {6}( 2.16.840.1.113730.3.1.39 NAME 'preferredLanguage' DESC", " 'RFC2798: preferred written or spoken language for a person' EQUALITY caseIg", " noreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.", " 15 SINGLE-VALUE )", "olcAttributeTypes: {7}( 2.16.840.1.113730.3.1.40 NAME 'userSMIMECertificate' D", " ESC 'RFC2798: PKCS#7 SignedData used to support S/MIME' SYNTAX 1.3.6.1.4.1.14", " 66.115.121.1.5 )", "olcAttributeTypes: {8}( 2.16.840.1.113730.3.1.216 NAME 'userPKCS12' DESC 'RFC2", " 798: personal identity information, a PKCS #12 PFX' SYNTAX 1.3.6.1.4.1.1466.1", " 15.121.1.5 )", "olcObjectClasses: {0}( 2.16.840.1.113730.3.2.2 NAME 'inetOrgPerson' DESC 'RFC2", " 798: Internet Organizational Person' SUP organizationalPerson STRUCTURAL MAY ", " ( audio $ businessCategory $ carLicense $ departmentNumber $ displayName $ em", " ployeeNumber $ employeeType $ givenName $ homePhone $ homePostalAddress $ ini", " tials $ jpegPhoto $ labeledURI $ mail $ manager $ mobile $ o $ pager $ photo ", " $ roomNumber $ secretary $ uid $ userCertificate $ x500uniqueIdentifier $ pre", " ferredLanguage $ userSMIMECertificate $ userPKCS12 ) )", "", "# {4}ppolicy, schema, config", "dn: cn={4}ppolicy,cn=schema,cn=config", "objectClass: olcSchemaConfig", "cn: {4}ppolicy", "olcAttributeTypes: {0}( 1.3.6.1.4.1.42.2.27.8.1.1 NAME 'pwdAttribute' EQUALITY", " objectIdentifierMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.38 )", "olcAttributeTypes: {1}( 1.3.6.1.4.1.42.2.27.8.1.2 NAME 'pwdMinAge' EQUALITY in", " tegerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {2}( 1.3.6.1.4.1.42.2.27.8.1.3 NAME 'pwdMaxAge' EQUALITY in", " tegerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {3}( 1.3.6.1.4.1.42.2.27.8.1.4 NAME 'pwdInHistory' EQUALITY", " integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {4}( 1.3.6.1.4.1.42.2.27.8.1.5 NAME 'pwdCheckQuality' EQUAL", " ITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {5}( 1.3.6.1.4.1.42.2.27.8.1.6 NAME 'pwdMinLength' EQUALITY", " integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {6}( 1.3.6.1.4.1.42.2.27.8.1.7 NAME 'pwdExpireWarning' EQUA", " LITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {7}( 1.3.6.1.4.1.42.2.27.8.1.8 NAME 'pwdGraceAuthNLimit' EQ", " UALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {8}( 1.3.6.1.4.1.42.2.27.8.1.9 NAME 'pwdLockout' EQUALITY b", " ooleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )", "olcAttributeTypes: {9}( 1.3.6.1.4.1.42.2.27.8.1.10 NAME 'pwdLockoutDuration' E", " QUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {10}( 1.3.6.1.4.1.42.2.27.8.1.11 NAME 'pwdMaxFailure' EQUAL", " ITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )", "olcAttributeTypes: {11}( 1.3.6.1.4.1.42.2.27.8.1.12 NAME 'pwdFailureCountInter", " val' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ", " )", "olcAttributeTypes: {12}( 1.3.6.1.4.1.42.2.27.8.1.13 NAME 'pwdMustChange' EQUAL", " ITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )", "olcAttributeTypes: {13}( 1.3.6.1.4.1.42.2.27.8.1.14 NAME 'pwdAllowUserChange' ", " EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )", "olcAttributeTypes: {14}( 1.3.6.1.4.1.42.2.27.8.1.15 NAME 'pwdSafeModify' EQUAL", " ITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )", "olcAttributeTypes: {15}( 1.3.6.1.4.1.4754.1.99.1 NAME 'pwdCheckModule' DESC 'L", " oadable module that instantiates \"check_password() function' EQUALITY caseExa", " ctIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )", "olcObjectClasses: {0}( 1.3.6.1.4.1.4754.2.99.1 NAME 'pwdPolicyChecker' SUP top", " AUXILIARY MAY pwdCheckModule )", "olcObjectClasses: {1}( 1.3.6.1.4.1.42.2.27.8.2.1 NAME 'pwdPolicy' SUP top AUXI", " LIARY MUST pwdAttribute MAY ( pwdMinAge $ pwdMaxAge $ pwdInHistory $ pwdCheck", " Quality $ pwdMinLength $ pwdExpireWarning $ pwdGraceAuthNLimit $ pwdLockout $", " pwdLockoutDuration $ pwdMaxFailure $ pwdFailureCountInterval $ pwdMustChange", " $ pwdAllowUserChange $ pwdSafeModify ) )", "", "# {0}hdb, config", "dn: olcBackend={0}hdb,cn=config", "objectClass: olcBackendConfig", "olcBackend: {0}hdb", "", "# {-1}frontend, config", "dn: olcDatabase={-1}frontend,cn=config", "objectClass: olcDatabaseConfig", "objectClass: olcFrontendConfig", "olcDatabase: {-1}frontend", "olcAccess: {0}to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external", " ,cn=auth manage by * break", "olcAccess: {1}to dn.exact=\"\" by * read", "olcAccess: {2}to dn.base=\"cn=Subschema\" by * read", "olcSizeLimit: 500", "", "# {0}config, config", "dn: olcDatabase={0}config,cn=config", "objectClass: olcDatabaseConfig", "olcDatabase: {0}config", "olcAccess: {0}to * by dn.exact=gidNumber=0+uidNumber=0,cn=peercred,cn=external", " ,cn=auth manage by * break", "olcRootDN: cn=admin,cn=config", "", "# {1}hdb, config", "dn: olcDatabase={1}hdb,cn=config", "objectClass: olcDatabaseConfig", "objectClass: olcHdbConfig", "olcDatabase: {1}hdb", "olcDbDirectory: /var/lib/ldap", "olcLastMod: TRUE", "olcDbCheckpoint: 512 30", "olcDbConfig: {0}set_cachesize 0 2097152 0", "olcDbConfig: {1}set_lk_max_objects 1500", "olcDbConfig: {2}set_lk_max_locks 1500", "olcDbConfig: {3}set_lk_max_lockers 1500", "olcDbIndex: objectClass eq", "olcAccess: {0}to attrs=userPassword,shadowLastChange by self write by anonymou", " s auth by dn=\"cn=admin,dc=local\" write by group/groupOfUniqueNames/uniqueMemb", " er=\"cn=Administrator,ou=Group,dc=idp,ou=Services,dc=local\" write by * none", "olcAccess: {1}to dn.base=\"\" by * read", "olcAccess: {2}to * by self write by dn=\"cn=admin,dc=local\" write by group/grou", " pOfUniqueNames/uniqueMember=\"cn=Administrator,ou=Group,dc=idp,ou=Services,dc=", " local\" write by * read", "olcSuffix: dc=local", "olcRootDN: cn=admin,dc=local", "olcRootPW: {SSHA}jmCpKQYSdLhShP0FnvFHjd9dYc9z73PX", "", "# {0}ppolicy, {1}hdb, config", "dn: olcOverlay={0}ppolicy,olcDatabase={1}hdb,cn=config", "objectClass: top", "objectClass: olcConfig", "objectClass: olcOverlayConfig", "objectClass: olcPPolicyConfig", "olcOverlay: {0}ppolicy", "olcPPolicyDefault: cn=default,ou=policies,dc=local", "olcPPolicyHashCleartext: TRUE", "", "# {1}memberof, {1}hdb, config", "dn: olcOverlay={1}memberof,olcDatabase={1}hdb,cn=config", "objectClass: top", "objectClass: olcConfig", "objectClass: olcOverlayConfig", "objectClass: olcMemberOf", "olcOverlay: {1}memberof", "olcMemberOfDangling: drop", "olcMemberOfRefInt: TRUE", "olcMemberOfGroupOC: groupOfUniqueNames", "olcMemberOfMemberAD: uniqueMember", "", "# search result", "search: 2", "result: 0 Success", "", "# numResponses: 15", "# numEntries: 14"]}

TASK: [ldap | Copy modules file LDIF] ***** skipping: [ldap.ugb.sn]

TASK: [ldap | Add modules (Debian)] *** skipping: [ldap.ugb.sn]

TASK: [ldap | Add modules (RedHat)] *** skipping: [ldap.ugb.sn]

TASK: [ldap | Restart ldap server] **** skipping: [ldap.ugb.sn]

TASK: [ldap | Create db LDIF] ***** ok: [ldap.ugb.sn] => {"changed": false, "gid": 0, "group": "root", "mode": "0644", "owner": "root", "path": "/tmp/db.ldif", "size": 670, "state": "file", "uid": 0}

TASK: [ldap | Customise DB] *** skipping: [ldap.ugb.sn]

TASK: [ldap | Copy Password Policy Schema ldap server (Debian)] *** skipping: [ldap.ugb.sn]

TASK: [ldap | Apply ppolicy schema] *** skipping: [ldap.ugb.sn]

TASK: [ldap | Copy Overlay LDIF] ****** skipping: [ldap.ugb.sn]

TASK: [ldap | Apply overlays] ***** skipping: [ldap.ugb.sn]

TASK: [ldap | Enable Secure Communications with the LDAP server (RedHat)] ***\ skipping: [ldap.ugb.sn] => (item=SLAPD_LDAPI) skipping: [ldap.ugb.sn] => (item=SLAPD_LDAPS)

TASK: [ldap | Enable protocols in sysconfig startup script (RedHat)] ****** skipping: [ldap.ugb.sn] => (item=SLAPD_LDAPI) skipping: [ldap.ugb.sn] => (item=SLAPD_LDAPS)

TASK: [ldap | Enable Secure Communications with the LDAP server] ****** ok: [ldap.ugb.sn] => (item=SLAPD_SERVICES) => {"backup": "", "changed": false, "item": "SLAPD_SERVICES", "msg": ""}

TASK: [ldap | Create the directory for ldap certificates] ***** ok: [ldap.ugb.sn] => {"changed": false, "gid": 105, "group": "openldap", "mode": "0755", "owner": "openldap", "path": "/etc/ldap/certs/", "size": 4096, "state": "directory", "uid": 102}

TASK: [ldap | Generate the private key for certificate request] *** skipping: [ldap.ugb.sn] ok: [ldap.ugb.sn] => {"changed": false, "cmd": "openssl genrsa -des3 -passout pass:password -out my1.key 1024", "rc": 0, "skipped": true, "stderr": false, "stdout": "skipped, since /etc/ldap/certs/my1.key exists"}

TASK: [ldap | Strip the passphrase from the key] ****** skipping: [ldap.ugb.sn] ok: [ldap.ugb.sn] => {"changed": false, "cmd": "openssl rsa -in my1.key -passin pass:password -out my.key", "rc": 0, "skipped": true, "stderr": false, "stdout": "skipped, since /etc/ldap/certs/my.key exists"}

TASK: [ldap | Create and sign the the new certificate] **** failed: [ldap.ugb.sn] => {"failed": true, "rc": 258} msg: cannot change to directory '/root/{# ldap_config_path #}/certs': path does not exist

FATAL: all hosts have already failed -- aborting

PLAY RECAP **** to retry, use: --limit @/root/idp-ldap.retry

ldap.ugb.sn : ok=15 changed=0 unreachable=0 failed=1

root@ansible:~/DevOps/Ansible#

shibboleth-idps

root@ansible:~/DevOps/Ansible/group_vars# vi identity-ugb I noticed that with [identity-ugb:chldren] not commented out. I get an error. and no openldap package is installed with with that commented out the installation goes through and stop at the cert directory error thing Could this be where my error is coming from.

What should be contained in inventories and group_vars

Thanks

AAROC / DevOps