JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
Oracle Directory Server Enterprise Edition Man Page Reference 11g Release 1 (11.1.1.5.0)
search filter icon
search icon

Document Information

Preface

User Commands

Administration Commands

Directory Server Configuration

Directory Proxy Server Configuration

File Formats

LDAP Schema Collections

LDAP Schema Attribute Types

abstract(5dsat)

accountUnlockTime(5dsat)

aci(5dsat)

aliasedObjectName(5dsat)

associatedDomain(5dsat)

associatedName(5dsat)

attributeTypes(5dsat)

audio(5dsat)

authorCn(5dsat)

authorityRevocationList(5dsat)

authorSn(5dsat)

bootFile(5dsat)

bootParameter(5dsat)

buildingName(5dsat)

businessCategory(5dsat)

c(5dsat)

cACertificate(5dsat)

carLicense(5dsat)

certificateRevocationList(5dsat)

changeHasReplFixupOp(5dsat)

changeIsReplFixupOp(5dsat)

changeLog(5dsat)

changeNumber(5dsat)

changes(5dsat)

changeTime(5dsat)

changeType(5dsat)

cn(5dsat)

co(5dsat)

commonName(5dsat)

copiedFrom(5dsat)

copyingFrom(5dsat)

cosAttribute(5dsat)

cosIndirectSpecifier(5dsat)

cosPriority(5dsat)

cosspecifier(5dsat)

costargettree(5dsat)

costemplatedn(5dsat)

countryName(5dsat)

crossCertificatePair(5dsat)

dc(5dsat)

deletedEntryAttrs(5dsat)

deleteOldRdn(5dsat)

deltaRevocationList(5dsat)

departmentNumber(5dsat)

description(5dsat)

destinationIndicator(5dsat)

displayName(5dsat)

distinguishedName(5dsat)

dITContentRules(5dsat)

ditRedirect(5dsat)

dITStructureRules(5dsat)

dmdName(5dsat)

dn(5dsat)

dNSRecord(5dsat)

documentAuthor(5dsat)

documentauthorcommonname(5dsat)

documentauthorsurname(5dsat)

documentIdentifier(5dsat)

documentLocation(5dsat)

documentPublisher(5dsat)

documentStore(5dsat)

documentTitle(5dsat)

documentVersion(5dsat)

domaincomponent(5dsat)

drink(5dsat)

dSAQuality(5dsat)

ds-pluginDigest(5dsat)

ds-pluginSignature(5dsat)

dsSaslMaxBufSize(5dsat)

dsSaslMaxSSF(5dsat)

dsSaslMinSSF(5dsat)

dsSaslPluginsEnable(5dsat)

dsSaslPluginsPath(5dsat)

employeeNumber(5dsat)

employeeType(5dsat)

enhancedSearchGuide(5dsat)

facsimileTelephoneNumber(5dsat)

favouriteDrink(5dsat)

fax(5dsat)

friendlycountryname(5dsat)

gecos(5dsat)

generationQualifier(5dsat)

gidNumber(5dsat)

givenName(5dsat)

homeDirectory(5dsat)

homePhone(5dsat)

homePostalAddress(5dsat)

host(5dsat)

houseIdentifier(5dsat)

info(5dsat)

initials(5dsat)

internationaliSDNNumber(5dsat)

ipHostNumber(5dsat)

ipNetmaskNumber(5dsat)

ipNetworkNumber(5dsat)

ipProtocolNumber(5dsat)

ipServicePort(5dsat)

ipServiceProtocol(5dsat)

isMemberOf(5dsat)

janetMailbox(5dsat)

javaClassName(5dsat)

javaClassNames(5dsat)

javaCodebase(5dsat)

javaDoc(5dsat)

javaFactory(5dsat)

javaReferenceAddress(5dsat)

javaSerializedData(5dsat)

jpegPhoto(5dsat)

keyWords(5dsat)

knowledgeInformation(5dsat)

l(5dsat)

labeledUri(5dsat)

labeledurl(5dsat)

lastModifiedBy(5dsat)

lastModifiedTime(5dsat)

ldapSyntaxes(5dsat)

locality(5dsat)

localityname(5dsat)

loginShell(5dsat)

macAddress(5dsat)

mail(5dsat)

mailPreferenceOption(5dsat)

manager(5dsat)

matchingRules(5dsat)

matchingRuleUse(5dsat)

member(5dsat)

memberCertificateDescription(5dsat)

memberNisNetgroup(5dsat)

memberUid(5dsat)

memberURL(5dsat)

mobile(5dsat)

mobileTelephoneNumber(5dsat)

multiLineDescription(5dsat)

name(5dsat)

nameForms(5dsat)

namingContexts(5dsat)

newRdn(5dsat)

newSuperior(5dsat)

nisMapEntry(5dsat)

nisMapName(5dsat)

nisNetgroupTriple(5dsat)

nsds5ReplConflict(5dsat)

nsIdleTimeout(5dsat)

nsLicensedFor(5dsat)

nsLicenseEndTime(5dsat)

nsLicenseStartTime(5dsat)

nsLookThroughLimit(5dsat)

nsRole(5dsat)

nsRoleDN(5dsat)

nsRoleFilter(5dsat)

nsRoleScopeDn(5dsat)

nsSizeLimit(5dsat)

nsTimeLimit(5dsat)

numSubordinates(5dsat)

o(5dsat)

objectClass(5dsat)

objectClasses(5dsat)

obsoletedByDocument(5dsat)

obsoletesDocument(5dsat)

oncRpcNumber(5dsat)

organizationalStatus(5dsat)

organizationalUnitName(5dsat)

organizationname(5dsat)

otherMailbox(5dsat)

ou(5dsat)

owner(5dsat)

pager(5dsat)

pagerTelephoneNumber(5dsat)

passwordAllowChangeTime(5dsat)

passwordChange(5dsat)

passwordCheckSyntax(5dsat)

passwordExp(5dsat)

passwordExpirationTime(5dsat)

passwordExpireWithoutWarning(5dsat)

passwordExpWarned(5dsat)

passwordHistory(5dsat)

passwordInHistory(5dsat)

passwordLockout(5dsat)

passwordLockoutDuration(5dsat)

passwordMaxAge(5dsat)

passwordMaxFailure(5dsat)

passwordMinAge(5dsat)

passwordMinLength(5dsat)

passwordMustChange(5dsat)

passwordNonRootMayResetUserpwd(5dsat)

passwordPolicySubentry(5dsat)

passwordResetDuration(5dsat)

passwordResetFailureCount(5dsat)

passwordRetryCount(5dsat)

passwordRootdnMayBypassModsChecks(5dsat)

passwordStorageScheme(5dsat)

passwordUnlock(5dsat)

passwordWarning(5dsat)

personalSignature(5dsat)

personalTitle(5dsat)

photo(5dsat)

physicalDeliveryOfficeName(5dsat)

postalAddress(5dsat)

postalCode(5dsat)

postOfficeBox(5dsat)

preferredDeliveryMethod(5dsat)

preferredLanguage(5dsat)

presentationAddress(5dsat)

protocolInformation(5dsat)

pwdAccountLockedTime(5dsat)

pwdAllowUserChange(5dsat)

pwdAttribute(5dsat)

pwdChangedTime(5dsat)

pwdCheckQuality(5dsat)

pwdExpireWarning(5dsat)

pwdFailureCountInterval(5dsat)

pwdFailureTime(5dsat)

pwdGraceAuthNLimit(5dsat)

pwdGraceUseTime(5dsat)

pwdHistory(5dsat)

pwdInHistory(5dsat)

pwdIsLockoutPrioritized(5dsat)

pwdKeepLastAuthTime(5dsat)

pwdLastAuthTime(5dsat)

pwdLockout(5dsat)

pwdLockoutDuration(5dsat)

pwdMaxAge(5dsat)

pwdMaxFailure(5dsat)

pwdMinAge(5dsat)

pwdMinLength(5dsat)

pwdMustChange(5dsat)

pwdPolicySubentry(5dsat)

pwdReset(5dsat)

pwdSafeModify(5dsat)

ref(5dsat)

registeredAddress(5dsat)

replicaIdentifier(5dsat)

replicationCSN(5dsat)

retryCountResetTime(5dsat)

rfc822mailbox(5dsat)

roleOccupant(5dsat)

roomNumber(5dsat)

searchGuide(5dsat)

secretary(5dsat)

seeAlso(5dsat)

serialNumber(5dsat)

shadowExpire(5dsat)

shadowFlag(5dsat)

shadowInactive(5dsat)

shadowLastChange(5dsat)

shadowMax(5dsat)

shadowMin(5dsat)

shadowWarning(5dsat)

singleLevelQuality(5dsat)

sn(5dsat)

st(5dsat)

stateOrProvinceName(5dsat)

street(5dsat)

streetaddress(5dsat)

subject(5dsat)

subschemaSubentry(5dsat)

subtreeMaximumQuality(5dsat)

subtreeMinimumQuality(5dsat)

supportedAlgorithms(5dsat)

supportedApplicationContext(5dsat)

supportedControl(5dsat)

supportedExtension(5dsat)

supportedLDAPVersion(5dsat)

supportedSASLMechanisms(5dsat)

supportedSSLCiphers(5dsat)

surName(5dsat)

targetDn(5dsat)

targetUniqueId(5dsat)

telephoneNumber(5dsat)

teletexTerminalIdentifier(5dsat)

telexNumber(5dsat)

textEncodedORAddress(5dsat)

title(5dsat)

uid(5dsat)

uidNumber(5dsat)

uniqueIdentifier(5dsat)

uniqueMember(5dsat)

updatedByDocument(5dsat)

updatesDocument(5dsat)

userCertificate(5dsat)

userClass(5dsat)

userid(5dsat)

userPassword(5dsat)

userPKCS12(5dsat)

userSMIMECertificate(5dsat)

vendorName(5dsat)

vendorVersion(5dsat)

vlvBase(5dsat)

vlvEnabled(5dsat)

vlvFilter(5dsat)

vlvScope(5dsat)

vlvSort(5dsat)

vlvUses(5dsat)

x121Address(5dsat)

x500UniqueIdentifier(5dsat)

LDAP Schema Object Classes

Index

nsRoleDN

- Sun ONE defined attribute type

Synopsis

( 2.16.840.1.113730.3.1.575
 NAME 'nsRoleDN'
 DESC 'Sun ONE defined attribute type'
 SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
 USAGE directoryOperation
 X-DS-USE 'internal'
 X-ORIGIN 'Sun ONE Directory Server' )

Description

This attribute contains the distinguished name of each managed role to which the entry belongs. Membership of a managed role is conferred upon an entry by adding the role's DN to the entry's nsRoleDN attribute.

This attribute is not to be confused with the generated nsRole attribute that contains the DN of all roles to which the entry belongs, as computed by Directory Server. Use nsRoleDN to set managed role membership, and use nsRole to evaluate role membership.

SYNTAX

DN, multi-valued.

Usage

Attribute specific to this Directory Server instance and version of the schema.

Operational attribute used by the directory service; returned in ldapsearch only when specifically requested.

Examples

dn: cn=staff,ou=People,dc=example,dc=com
objectclass: LDAPsubentry
objectclass: nsRoleDefinition
objectclass: nsSimpleRoleDefinition
objectclass: nsManagedRoleDefinition

dn: uid=bjensen,ou=People,dc=example,dc=com
objectclass: top
objectclass: person
sn: Jensen
cn: Babs Jensen
uid: bjensen
nsroledn: cn=staff,ou=People,dc=example,dc=com

A nested role specifies containment of one or more roles of any type. In that case, nsRoleDN defines the DN of the contained roles.

dn: cn=everybody,o=example.com
objectclass: LDAPsubentry
objectclass: nsRoleDefinition
objectclass: nsComplexRoleDefinition
objectclass: nsNestedRoleDefinition
nsroledn: cn=manager,ou=People,dc=example,dc=com
nsroledn: cn=staff,ou=People,dc=example,dc=com

Attributes

See attributes(5) for descriptions of the following attributes:

ATTRIBUTE TYPE
ATTRIBUTE VALUE
Availability
SUNWdsee7
Stability Level
Evolving