Oracle® Internet Directory Administrator's Guide 10g (9.0.4) Part Number B12118-01 |
|
Directory Concepts and Architecture, 4 of 15
An object class is a group of attributes that define the structure of an entry. When you define a directory entry, you assign one or more object classes to it. Some of the attributes in these object classes are mandatory and must have values, others are optional and can be empty.
For example, the organizationalPerson
object class includes the mandatory attributes commonName
(cn
) and surname
(sn
), and the optional attributes telephoneNumber
, uid
, streetAddress
, and userPassword
. When you define an entry by using the organizationalPerson
object class, you must specify values for commonName
(cn
) and surname
(sn
). You do not need to provide values for telephoneNumber
, uid
, streetAddress
, and userPassword
.
This section contains these topics:
A subclass is an object class derived from another object class. The object class from which a subclass is derived is called its superclass. For example, the object class organizationalPerson
is a subclass of the object class person
. Conversely, the object class person
is the superclass of the object class organizationalPerson
.
Subclasses inherit all of the attributes belonging to their superclasses. For example, the subclass organizationalPerson
inherits the attributes of its superclass, person
. Entries also inherit attributes that their superclasses have inherited.
One special object class, called top
, has no superclasses. It is one of the superclasses of every object class in the directory, and its attribute definitions are inherited by every entry.
There are three types of object classes:
Structural object classes describe the basic aspects of an object. Most of the object classes that you use are structural object classes, and every entry should belong to at least one structural object class. Examples of structural object classes are person
and groupOfNames
.
These object classes model real-world entities and their physical or logical attributes. Examples include people, printers, and database connections.
Structural object classes use structure rules to place restrictions on the kinds of objects you can create under any given object class. For example, a structure rule might require all objects below the organization
(o
) object class to be organizational units
(ou
). Following this rule, you could not enter person
objects directly below an organization
object class. Similarly, a structure rule might disallow you from placing an organizational unit (ou
) object below a person
object.
Auxiliary object classes are groupings of optional attributes that expand the existing list of attributes in an entry. Unlike structural object classes, they do not place restrictions on where an entry may be stored, and you can attach them to any entry regardless of that entry's location in the DIT.
An abstract object class is a virtual object class. It is used only for convenience when specifying the highest levels of the object class hierarchy. It cannot be the only object class for an entry. For example, the object class top
is an abstract object class. It is required as a superclass for all structural object classes, but it cannot be used alone.
The top
object class includes the mandatory attribute objectClass
as well as several optional attributes. The optional attributes in top
are:
orclGuid
--Global identification which remains constant if the entry is moved
creatorsName
--Name of the creator of the object class
createTimestamp
--Time when the object class was created
modifiersName
--Name of the last person to modify the object class
modifyTimestamp
--Time when the object class was last modified
orclACI
--access control list (ACL) directives that apply to all entries in the subtree below the access control policy point where this attribute is defined
orclEntryLevelACI
--Access control policy pertaining to only a specific entity--for example, a special user
See Also:
|
![]() Copyright © 1999, 2003 Oracle Corporation. All Rights Reserved. |
|