This chapter describes LDAP object classes for Communications Suite products (Messaging Server and Calendar Server). The objects are listed alphabetically.
The object classes and attributes specific to the following products and tools are found in separate chapters:
For object classes and attributes specific only to Access Manager, see Chapter 4, Access Manager Classes and Attributes
For object classes and attributes specific only to Communications Suite Delegated Administrator, see Chapter 5, Communications Suite Delegated Administrator Classes and Attributes (Schema 2)
For object classes and attributes specific only to iPlanet Delegated Administrator for Messaging, see Chapter 6, iPlanet Delegated Administrator Classes and Attributes (Schema 1)
This chapter describes the following object classes:
Messaging Server 5.0, Calendar Server 5.1
Object class used to define entries that represent DNS domains.
This class can only be used with an entry that doe not correspond to an organization, organizational unit, or other type of object for which an object class has been defined.
This is a core class for both Messaging and Calendar products.
top
structural
0.9.2342.19200300.100.4.13
associatedName, businessCategory, description, destinationIndicator, fax (facsimileTelephoneNumber), internationalIsdnNumber, localityName, manager, o (organizationName (see o)), physicalDeliveryOfficeName, postOfficeBox, postalAddress, postalCode, preferredDeliveryMethod, registeredAddress, searchGuide, seeAlso, st, street, telephoneNumber, telexTerminalIdentifier, telexNumber, userPassword, x121Address
Messaging Server 5.0, Calendar Server 5.1
Defines entries for a group of unique names. A static group entry must be extended by this class. A group entry may also be extended by inetUser. Use roles to define dynamic groups.
top
structural
2.5.6.17
businessCategory, description, o, ou, owner, seeAlso
Not currently used.
Specifies a calendar administrator. Must be used in conjunction with other object classes.
Not currently assigned.
structural
2.16.840.1.113730.3.2.145
none
icsAdminRole, icsExtended, icsExtendedGroupPrefs
Calendar Server 5.1.1
Specifies a calendar domain. Must be used in conjunction with inetDomain.
top
structural
1.3.6.1.4.1.42.2.27.9.2.4
none
The following attributes are currently used:
icsAllowedServiceAccess, icsAllowRights, icsDefaultAccess, icsDomainNames, icsExtendedDomainPrefs, icsStatus, icsTimezone
The following attributes are reserved but not implemented for this object class:
icsAnonymousAllowWrite, icsAnonymousCalendar, icsAnonymousDefaultSet, icsAnonymousLogin, icsAnonymousSet, icsDomainAllowed, icsDomainNotAllowed, icsDWPBackEndHosts, icsExtended, icsMandatorySubscribed, icsMandatoryView, icsPreferredHost, icsQuota, icsRecurrenceBound, icsRecurrenceDate, icsSessionTimeout, icsSourceHtml,
Calendar Server 5.1.1
Reserved; not implemented.
Contains configuration and other information specific to one DWP server. Each entry tracks which domain it serves. The domain names are used to scope searches.
Not currently assigned.
structural
1.3.6.1.4.1.42.2.27.9.2.1
none
cn,description, icsDomainNames, icsDWPHost, icsExtended, icsRegularExpressions, icsStatus
Calendar Server 5.1
Specifies a calendar group; that is, a calendar created for, and used by, a group. Must be used in conjunction with groupOfUniqueNames or groupOfURLs.
top
auxiliary
1.3.6.1.4.1.42.2.27.9.2.113
icsAutoaccept, icsCalendar, icsDefaultacl, icsDoublebooking, icsDWPHost, icsSecondaryowners, icsStatus, icsTimezone, mail
Calendar Server 5.1, Sun Java System Communication Services Delegated Administrator
Specifies a calendar resource, such as a conference room or piece of equipment that must be scheduled.
Access Manager 6.1 reserves this as a marker class for calendar resources but does not support calendar resources yet.
top
structural
1.3.6.1.4.1.42.2.27.9.2.114
none
The following attributes are currently used:
icsAutoaccept, cn, description, icsCalendar, icsDefaultacl, icsDoublebooking, icsDWPHost, icsPartition, icsSecondaryowners, icsStatus, icsTimezone, mail, mailAlternateAddress, owner, uid
The following attributes are reserved but not implemented for this object class:
icsAlias, icsCapacity, icsContact, icsExtended, icsExtendedResourcePrefs, icsGeo, icsPreferredHost, icsQuota
Calendar Server 5.1
Specifies a calendar user, including the DWP host name.
top
structural
1.3.6.1.4.1.42.2.27.9.2.115
none
These attributes are currently in use:
aclGroupAddr, cn, givenName, icsAllowedServiceAccess, icsCalendar, icsCalendarOwned, icsDWPHost, icsExtendedUserPrefs,icsFirstDay, icsPartition, icsSet, icsStatus, icsSubscribed, icsTimezone, mail, mailAlternateAddress, preferredLanguage, sn, uid, userPassword
These attributes are reserved but not currently used:
icsDefaultSet, icsExtended, icsFreeBusy, icsGeo, icsPreferredHost, icsQuota, nswcalDisallowAccess
Messaging Server 5.0
Identifies administrator user or group.
top
Auxiliary
2.16.840.1.113730.3.2.112
Messaging Server 5.0
Used in two-tree LDAP data models to extend the base entry created by domain in the DC Tree. It represents a hosted domain account and is used in conjunction with mailDomain and (optionally inetDomainAuthInfo) for creating a hosted domain node in the DC Tree suitable for mail services for the hosted organization. This object class must be used for all hosted domain entries in the DC Tree.
Access Manager uses this as a marker class for domains in the DC Tree.
top
auxiliary
2.16.840.1.113730.3.2.129
Messaging Server 5.0
Structural class for creating domain alias entries in the DC Tree for the compatibility mode LDAP data model. Entries may be created that point at other hosted domain objects. Such domain alias entries must be extended by this object class. Attribute aliasedObjectName, inherited from the parent object class alias (see RFC 2256), holds the DN of the LDAP entry for which the node is an alias.
Use this object class when you want two identical domains with different names. If you want two domains that have different attribute settings, create two inetDomain entries and use the inetCanonicalDomainName attribute to decorate the domain to use for mail routing.
This object class is not used in the native mode LDAP data model. Instead, to show the aliases for a domain, the (Organization Tree) domain entry is extended by sunManagedOrganization and decorated with the businessCategory attribute.
alias
structural
2.16.840.1.113730.3.2.131
none
Messaging Server 5.0
This object class is used to extend the domain entry with search filter, domain certmap, and a canonical domain name if more than one hosted domain refers to the same organization subtree.
top
auxiliary
2.16.840.1.113730.3.2.133
none
domainUidSeparator, inetDomainSearchFilter, inetDomainCertMap, inetCanonicalDomainName
Messaging Server 5.0
Stores information that provides a way to designate an LDAP entry as one that represents a local (intra-organizational) email recipient, to specify the recipient’s email address(es), and to provide routing information pertinent to the recipient. This is intended to support SMTP message transfer agents in routing RFC 822-based email within a private enterprise only, and is not to be used in the process of routing email across the public Internet.
top
auxiliary
2.16.840.1.113.730.3.2.147
none
mail, mailAlternateAddress, mailHost, mailRoutingAddress
Messaging Server 5.0
LDAP group defined with groupOfUniqueNames can be overlaid with this object class. Members (listed in the attribute uniqueMember) of a group overlaid with this object class and where mailAdminRole is set to storeAdmin get IMAP proxyauth (proxy authentication) rights over all users in the same domain in which the group entry exists.
top
auxiliary
2.16.840.1.113730.3.2.148
none
Messaging Server 5.0
Used to extend the base entry created by groupOfUniqueNames to define a group of mail recipients. inetMailGroup is used to store attributes of a mailing list. It is used in conjunction with inetLocalMailRecipient and inetMailGroupManagement (for mailing lists managed by the Delegated Administrator).
top
auxiliary
1.3.6.1.4.1.42.2.27.2.2.2
none
dataSource, inetMailGroupStatus, mailConversionTag, mailDeferProcessing, mailDeliveryFileURL, mailDeliveryOption, mailEquivalentAddress, mailMsgMaxBlocks, mailProgramDeliveryInfo, mailRejectText, mailSieveRuleSource, mgrpAddHeader, mgrpAllowedBroadcaster, mgrpAllowedDomain, mgrpAuthPassword, mgrpBroadcasterPolicy, mgrpDeliverTo, mgrpDisallowedBroadcaster, mgrpDisallowedDomain, mgrpErrorsTo, mgrpModerator, mgrpMsgMaxSize, mgrpMsgPrefixText, mgrpMsgRejectAction, mgrpMsgRejectText, mgrpMsgSuffixText, mgrpNoDuplicateChecks, mgrpRemoveHeader, mgrpRFC822MailMember, preferredLanguage, uniqueMember,mgrpErrorsTo
Messaging Server 5.0
Used to extend the base entry created by inetOrgPerson to define a messaging service user. It represents a mail account and is used in conjunction with inetUser and inetLocalMailRecipient. Optionally, inetSubscriber may also be used for general account management purposes.
top
auxiliary
2.16.840.1.113730.3.2.146
none
aclGroupAddr, cn, dataSource, icsQuota, mailAllowedServiceAccess,mailAntiUBEService, mailAutoReplyMode, mailAutoReplySubject, mailAutoReplyTimeOut, mailAutoReplyText, mailAutoReplyTextInternal, mailConversionTag, mailDeferProcessing, mailDeliveryOption, mailEquivalentAddress, mailForwardingAddress, mailMessageStore, mailMsgMaxBlocks, mailMsgQuota, mailProgramDeliveryInfo, mailQuota, mailSieveRuleSource, mailSMTPSubmitChannel, mailUserStatus, nswmExtendedUserPrefs
Specified here for reference only.
All user entries are created with this object class. Refer to the internet draft The LDAP inetOrgPerson Object Class for further details.
organizationalPerson
structural
2.16.840.1.113730.3.2.2
none
businessCategory, givenName, mail, uid, preferredLanguage
Calendar Server 5.1
Specifies a resource, which is defined as an object to which calendar services are provided. For example, a conference room, or a piece of equipment shared by many that needs to be scheduled.
top
structural
2.16.840.1.113730.3.2.142
facsimileTelephoneNumber, inetResourceStatus, mail, postalAddress, telephoneNumber
Messaging Server 5.0
Used to extend the base entry created by inetOrgPerson to define a user. It represents a subscriber account and may be used in conjunction with inetUser, inetMailUser, and ipUser for creating a mail account.
top
auxiliary
2.16.840.1.113730.3.2.134
none
inetSubscriberAccountId,inetSubscriberChallenge, inetSubscriberResponse
Messaging Server 5.0, Calendar Server 5.1.1
It represents a user account, or a resource (defined as any object to which services are provided) account, and is used in conjunction with inetMailUser and ipUser for creating a mail account. When creating user accounts, this object class extends the base entry created by inetOrgPerson.
This attribute can be used with icsCalendarUser for creating a calendar user account. (Note that inetResource is used by Calendar Server to create resource accounts.)
User and resource entries must be extended by this object class. Group entries may be extended with this class.
top
auxiliary
2.16.840.1.113730.3.2.130
none.
inetUserHttpURL (see note),inetUserStatus, memberOf (see note),uid, userPassword
The attributes inetUserHttpURL, and memberOf are deprecated for this object class and are likely to be removed from the class in future versions of the schema.
Messaging Server 5.0
top
Object class for services like mail and calendar. Used to extend the base entry created by inetOrgPerson and inetUser. This object class holds the reference to the personal address book container and the class of service specifier.
auxiliary
2.16.840.1.113730.3.2.135
none
inetCoS, memberOfPAB, maxPabEntries, pabURI
Messaging Server 5.0
Auxiliary class used to extend the base entry created by domain and inetDomain for enabling messaging services for the hosted domain. It represents a hosted domain account with access to Messaging Service. This object class must be used for all hosted domain entries.
In the absence of the mailPublicFolderDefaultRights attribute for a maliPublicFolder entry, the presence of the attribute in the mailDomain entry allows administrators to specify the default rights to assign to the public folder.
top
auxiliary
2.16.840.1.113730.3.2.151
none
mailAccessProxyPreAuth, mailAccessProxyReplay, mailClientAttachmentQuota, mailDomainAllowedServiceAccess, mailDomainConversionTag, mailDomainCatchallAddress, mailDomainDiskQuota, mailDomainMsgMaxBlocks, mailDomainMsgQuota, mailDomainReportAddress, mailDomainSieveRuleSource,mailDomainStatus, mailDomainWelcomeMessage, mailPublicFolderDefaultRights, mailQuota,mailRoutingHosts, mailRoutingSmartHost, preferredLanguage, preferredMailHost, preferredMailMessageStore
Messaging Server 6.2
Defines a public folder.
top
structural
Not currently assigned.
mailMessageStore, mailPublicFolderDefaultRights, mailDeliveryOption
Messaging Server 5.0
This object class and its attribute are deprecated in the current release, and may not be supported in future releases. Sites should stop using this feature and consider migrating current vanity domains to hosted domains.
Auxiliary class for supporting the notion of a vanity domain for messaging. Used to extend the base mail user entry to assign a vanity domain to the user.
top
auxiliary
2.16.840.1.113730.3.2.150
none
Messaging Server 5.0
Defines entries that represent organizations. An organization is generally assumed to be a large, relatively static grouping within a larger corporation or enterprise.
top
2.5.6.4
objectClass, o (organizationName)
businessCategory, description, destinationIndicator, facsimileTelephoneNumber, internationalIsdnNumber, l (localityName), physicalDeliveryOfficeName, postalAddress, postalCode, postOfficeBox, preferredDeliveryMethod, registeredAddress, searchGuide, seeAlso, st, street, telephoneNumber, teletexTerminalIdentifier, telexNumber, userPassword
Messaging Server 5.0
Defines entries that represent organizations. An organization is generally assumed to be a large, relatively static grouping within a larger corporation or enterprise.
top
2.5.6.5
businessCategory, description, destinationIndicator, facsimileTelephoneNumber, internationalIsdnNumber, l (localityName), physicalDeliveryOfficeName, postalAddress, postalCode, postOfficeBox, preferredDeliveryMethod, registeredAddress, searchGuide, seeAlso, st, street, telephoneNumber, teletexTerminalIdentifier, telexNumber, userPassword
Messaging Server 5.0
The data model used is as follows:
pabPerson is a user entry in the personal address book.
pabGroup is the group entry and corresponds to a personal distribution list. For example, the pabGroup “pab-notes” may contain pabPersons micky and john.
pab is the address book that contains zero or more pabPerson and zero or more pabGroup entries. This is the top level logical container. pab may contain pabPerson and/or pabGroup. A pabPerson may belong in zero or more pabGroup and zero or more pab.
pabPerson may belong to zero or more pabGroup entries. This link is established by memberOfPABGroup, a multi-valued attribute holding the DN of the pabGroup in which the pabPerson belongs. A pabPerson may also belong to many personal address book’s. This link is established by having the DN of the pab listed as a value of the attribute memberOfPAB.
All users and groups belong in the default personal address book called “All.”
top
structural
2.16.840.1.113730.3.2.140
Messaging Server 5.0
pabGroup is a group entry in a personal address book (pab) and corresponds to a personal distribution list. For example, the pabGroup “pab-notes” may contain pabPersons micky and john.
top
structural
2.16.840.1.113730.3.2.139
description, memberOfPAB, nickName, un
Messaging Server 5.0
A user entry in the personal address book (pab).
inetOrgPerson
structural
2.16.840.1.113730.3.2.138
none
calCalURI, calFBURL, co, dateOfBirth, mailAlternateAddress, memberOfPAB, memberOfPABGroup, nickName, organizationName (see o), ou (oranizationalUnitName), un
Messaging Server 5.0
Used to store the presence information for a user.
top
auxiliary
2.16.840.1.113730.3.2.136
none