|
| |
| Sun Java(TM) System Directory Server 5.2 2005Q1 Administration Reference | |
Chapter 10
Attribute ReferenceThis chapter contains an alphabetic list of the standard attributes. It provides a definition of each attribute, the attribute syntax and the OID.
abstractDefinition
Provides an abstract of a document entry.
This attribute is defined in Internet White Pages Pilot.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.102.1.9
aliasedObjectNameDefinition
This attribute is defined in RFC 2256, but Directory Server does not support alias de-referencing. The value of aliasedObjectName attributes are never used by Directory Server.
Syntax
DN, single-valued.
OID
2.5.4.1
associatedDomainDefinition
Specifies a DNS domain associated with an object in the directory tree. For example, the entry in the directory tree with a distinguished name c=US, o=example Corporation might be associated to the domain example.com. Note that all domains should be represented in rfc822 order.
For example:
associatedDomain: example.com
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.37
associatedNameDefinition
Specifies an entry in the organizational directory tree associated with a DNS domain.
For example:
associatedName: c=us
This attribute is defined in RFC 1274.
Syntax
DN, multi-valued.
OID
0.9.2342.19200300.100.1.38
audioDefinition
Contains a sound file in binary format. The attribute uses a u-law encoded sound file.
For example:
audio:: AAAAAA==
This attribute is defined in RFC 1274.
Syntax
Binary, multi-valued.
OID
0.9.2342.19200300.100.1.55
authorCnDefinition
Contains the common name of the author of a document entry.
For example:
authorCn: Kacey
This attribute is defined in Internet White Pages Pilot.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.102.1.11
authorSnDefinition
Contains the surname of the author of a document entry.
For example:
authorSn: Doe
This attribute is defined in Internet White Pages Pilot.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.102.1.12
authorityRevocationListDefinition
Contains a list of CA certificates that have been revoked. This attribute is to be stored and requested in the binary form, as authorityRevocationList;binary.
For example:
authorityRevocationList;binary:: AAAAAA==
This attribute is defined in RFC 2256.
Syntax
Binary, multi-valued.
OID
2.5.4.38
bootFileDefinition
The name of the boot image.
For example:
bootFile: mach
This attribute is defined in RFC 2307.
Syntax
String, multi-valued.
OID
1.3.6.1.1.1.1.24
bootParameterDefinition
Specified boot parameters.
For example:
bootParameter: root=fs:/nfsroot/peg
bootParameter: swap=fs:/nfsswap/peg
bootParameter: dump=fs:/nfsdump/peg
This attribute is defined in RFC 2307.
Syntax
bootParameterSyntax
OID
1.3.6.1.1.1.1.23
buildingNameDefinition
Defines the building name associated with the entry.
For example:
buildingName: B14
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.48
businessCategoryDefinition
Identifies the type of business in which the entry is engaged. This should be a broad generalization such as is made at the corporate division level.
For example:
businessCategory: Engineering
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.15
c (countryName)Definition
Contains the two-character code representing country names, as defined in ISO-3166.
For example:
countryName: IE
or
c: IE
This attribute is defined in RFC 2256.
Syntax
DirectoryString, single-valued.
OID
2.5.4.6
CACertificateDefinition
Contains the CA's certificate. This attribute is to be stored and requested in the binary form, as CACertificate;binary.
For example:
CACertificate;binary:: AAAAAA==
This attribute is defined in RFC 2256.
Syntax
Binary, multi-valued.
OID
2.5.4.37
carLicenseDefinition
Identifies the entry's automobile license plate number.
For example:
carLicense: 4MCS389
This attribute is defined in RFC 2798.
Syntax
DirectoryString, multi-valued.
OID
2.16.840.1.113730.3.1.1
certificateRevocationListDefinition
Contains a list of revoked user certificates. This attribute is to be stored and requested in the binary form, as certificateRevocationList;binary.
For example:
certificateRevocationList;binary:: AAAAAA==
This attribute is defined in RFC 2256.
Syntax
Binary, multi-valued.
OID
2.5.4.39
changesDescription
For add and modify operations, contains the changes made to the entry, in LDIF format.
This attribute is defined in Changelog Internet Draft.
Syntax
Binary, multi-valued.
OID
2.16.840.1.113730.3.1.8
changeIsReplFixupOpDefinition
A retro change log attribute.
When the retro change log is enabled and replication is in progress, this attribute identifies whether a record is a replication operation generated to resolve a conflict.
This attribute must be specifically requested in an ldapsearch operation.
Syntax
Boolean - TRUE/FALSE
OID
1.3.6.1.4.1.42.2.27.9.1.726
changeLogDescription
The distinguished name of the entry that contains the set of entries comprising the server change log.
This attribute is defined in Changelog Internet Draft.
Syntax
DN, multi-valued.
OID
2.16.840.1.113730.3.1.35
changeNumberDescription
This single-valued attribute is always present. It contains an integer that uniquely identifies each change made to a directory entry. This number is related to the order in which the change occurred. The higher the number, the later the change.
This attribute is defined in the Changelog Internet Draft.
Syntax
Integer, single-valued.
OID
2.16.840.1.113730.3.1.5
changeTimeDescription
Defines a time, in a YYMMDDHHMMSS format, when the entry was added.
This attribute is defined in the Changelog Internet Draft.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.77
changeTypeDescription
Specifies the type of LDAP operation. This attribute can have one of the following values: add, delete, modify, or modRDN.
For example:
changeType: modify
This attribute is defined in the Changelog Internet Draft.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.7
cn (commonName)Definition
Identifies the name of an object in the directory. When the object corresponds to a person, the cn is typically the person's full name.
When identifying the entry's common name or full name:
commonName: Bill Anderson
or
cn: Bill Anderson
When in reference to LDAPReplica or LDAPServer object classes:
commonName: replicater.example.com:17430/dc%3Dexample%2Cdc%3Dcom
or
cn: replicater.example.com:17430/dc%3Dexample%2Cdc%3Dcom
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.3
co (friendlyCountryName)Definition
Contains the name of a country. Often, the country attribute is used to describe a two-character code for a country, and the friendlyCountryName attribute is used to describe the actual country name.
For example:
friendlyCountryName: Ireland
or
co: Ireland
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.43
cosAttributeDescription
Provides the name of the attribute for which you want to generate a value. You can specify more than one cosAttribute value. This attribute is used by all types of CoS definition entries.
The cosAttribute attribute allows two qualifiers following the name of the CoS attribute. The override qualifier has one of the following values:
- default (or no qualifier) - Indicates that the server does not override a real attribute value stored in the entry when it has the same type as the virtual attribute.
- override - Indicates that the server always returns the value generated by the CoS, even when there is a value stored with the entry.
- operational - Indicates that the attribute will only be returned if it is explicitly requested in the search. Operational attributes do not need to pass a schema check in order to be returned. It also has the same behavior as the override qualifier.
The merge qualifier is either absent or given with the following value:
- merge-schemes - Allows the virtual CoS attribute to be multivalued, either from multiple templates or multiple CoS definitions. For more information, refer to "Managing CoS From the Command Line" in the Directory Server Administration Guide.
This attribute is defined in Directory Server.
Syntax
Directory String, multi-valued.
OID
2.16.840.1.113730.3.1.550
cosIndirectSpecifierDescription
Specifies the attribute values used by an indirect CoS to identify the template entry.
This attribute is defined in Directory Server.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.577
cosPriorityDefinition
Specifies which template provides the attribute value, when CoS templates compete to provide an attribute value. This attribute represents the global priority of a particular template. A priority of zero is the highest priority.
This attribute is defined in Sun Java System Directory Server.
Syntax
Integer, single-valued.
OID
2.16.840.1.113730.3.1.569
cosSpecifierDescription
Specifies the attribute value used by a classic CoS, which, along with the template entry's DN, identifies the template entry.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.551
cosTargetTreeDefinition
Determines the subtree of the DIT to which the CoS schema applies. The values for this attribute for the schema and for multiple CoS schema may overlap their target trees in an arbitrary fashion.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.552
cosTemplateDnDefinition
Points to the entry that contains the CoS template.
This attribute is defined in Sun Java System Directory Server.
Syntax
Distinguished Name, single-valued.
OID
2.16.840.1.113730.3.1.553
crossCertificatePairDefinition
This attribute contains a pair of cross signed certificates. It is to be stored and requested in the binary form, as crossCertificatePair;binary.
For example:
crossCertificatePair;binary:: AAAAAA==
This attribute is defined in RFC 2256.
Syntax
Binary, multi-valued.
OID
2.5.4.40
dc (domainComponent)Definition
Specifies one component of a domain name.
For example:
domainComponent: example
or
dc: example
This attribute is defined in RFC 2247.
Syntax
DirectoryString, single-valued.
OID
0.9.2342.19200300.100.1.25
deletedEntryAttrsDescription
A retro change log attribute.
When the deletedEntryAttributes attribute is configured and the retro change log is enabled, the retro change log records the following information about an entry that is deleted:
The value of this attribute is base64 encoded.
This attribute must be specifically requested in an ldapsearch operation.
Syntax
Binary
OID
1.3.6.1.4.1.42.2.27.9.1.595
deleteOldRdnDescription
In the case of modrdn operations, specifies whether the old RDN was deleted.
This attribute is defined in Changelog Internet Draft.
Syntax
Boolean, multi-valued.
OID
2.16.840.1.113730.3.1.10
deltaRevocationListDefinition
This attribute contains the delta revocation list, a list of newly revoked certificates. It is stored and requested in the binary form, as deltaRevocationList;binary.
For example:
deltaRevocationList;binary:: AAAAAA==
This attribute is defined in RFC 2256.
Syntax
Binary, multi-valued.
OID
2.5.4.53
departmentNumberDefinition
Identifies the entry's department number.
For example:
departmentNumber: 2604
This attribute is defined in RFC 2798.
Syntax
DirectoryString, multi-valued.
OID
2.16.840.1.113730.3.1.2
descriptionDefinition
Provides a human-readable description of the object. For people and organizations this often includes their role or work assignment.
For example:
description: Quality control inspector for the ME2873 product line
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.13
destinationIndicatorDefinition
The country and city associated with the entry needed to provide Public Telegram Service. Generally used in conjunction with registeredAddress.
For example:
destinationIndicator: Stow, Ohio, USA
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.27
displayNameDefinition
Preferred name of a person to be used when displaying entries. Especially useful in displaying a preferred name for an entry within a one-line summary list. Since other attribute types, such as cn, are multi-valued, they cannot be used to display a preferred name.
For example:
displayName: Michigan Smith
This attribute is defined in RFC 2798.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.241
ditRedirectDefinition
Used to indicate that the object described by one entry now has a newer entry in the directory tree. This attribute may be used when an individual's place of work changes, and the individual acquires a new organizational DN.
For example:
ditRedirect: cn=jdoe, dc=example, dc=com
This attribute is defined in RFC 1274.
Syntax
DN
OID
0.9.2342.19200300.100.1.54
dmdNameDefinition
The value of this attribute specifies a directory management domain (DMD), the administrative authority that operates Directory Server.
For example:
dmdName: example.com
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.54
dn (distinguishedName)Definition
Defines the distinguished name (dn) for the entry. Note that the dn is not always a mandatory attribute in an entry.
For example:
dn: cn=Jane Doe, ou=Quality Control, dc=example, dc=com
This attribute is defined in RFC 2256.
Syntax
DN
OID
2.5.4.49
dNSRecordDefinition
Specifies DNS resource records, including type A (Address), type MX (Mail Exchange), type NS (Name Server), and type SOA (Start Of Authority) resource records.
For example:
dNSRecord: IN NS ns.uu.net
This attribute is defined in Internet directory pilot.
Syntax
IA5String, multi-valued.
OID
0.9.2342.19200300.100.1.26
documentAuthorDefinition
Contains the distinguished name of the author of a document entry.
For example:
documentAuthor: cn=John Doe, dc=example, dc=com
This attribute is defined in RFC 1274.
Syntax
DN, multi-valued.
OID
0.9.2342.19200300.100.1.14
documentIdentifierDefinition
Specifies a unique identifier for a document.
For example:
documentIdentifier: L3204REV1
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.11
documentLocationDefinition
Defines the location of the original copy of a document entry.
For example:
documentLocation: Department Library
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.15
documentPublisherDefinition
The person and/or organization that published a document.
For example:
documentPublisher: Southeastern Publishing
This attribute is defined in RFC 1274.
Syntax
DirectoryString, single-valued.
OID
0.9.2342.19200300.100.1.56
documentStoreDefinition
Defines the place in which a document is stored. This attribute is defined in the Internet White Pages Pilot.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.102.1.10
documentTitleDefinition
Contains the title of a document entry.
For example:
documentTitle: Directory Server Administration Guide
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.12
documentVersionDefinition
Defines the version of a document entry.
For example:
documentVersion: 1.1
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.13
drink (favoriteDrink)Definition
Describes the favorite drink of a person entry.
For example:
drink: gin
or
favoriteDrink: gin
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.5
dSAQualityDefinition
Specifies the purported quality of a DSA. This attribute allows a DSA manager to indicate the expected level of availability of the DSA.
For example:
dSAQuality: high
This attribute is defined in RFC 1274.
Syntax
DirectoryString, single-valued.
OID
0.9.2342.19200300.100.1.49
employeeNumberDefinition
Identifies the entry's employee number.
For example:
employeeNumber: 3440
This attribute is defined in RFC 2798.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.3
employeeTypeDefinition
Identifies the entry's type of employment.
For example:
employeeType: Full time
This attribute is defined in RFC 2798.
Syntax
DirectoryString, multi-valued.
OID
2.16.840.1.113730.3.1.4
enhancedSearchGuideDefinition
Used by X.500 clients when constructing search filters.
For example:
enhancedSearchGuide: (uid=mhughes)
This attribute is defined in RFC 2798.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.47
fax (facsimileTelephoneNumber)Definition
Identifies the fax number at which the entry can be reached. Abbreviation: fax.
For example:
facsimileTelephoneNumber: 415-555-1212
or:
fax: 415-555-1212
This attribute is defined in RFC 2256.
Syntax
TelephoneNumber, multi-valued.
OID
2.5.4.23
gecosDefinition
The default GECOS.
This attribute is defined in RFC 2307.
Syntax
String, single-valued.
OID
1.3.6.1.1.1.1.2
generationQualifierDefinition
Contains the generation Qualifier part of the name, typically appearing in the suffix.
For example:
generationQualifier: Jr
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.44
gidNumberDefinition
Group ID number.
For example:
gidNumber: 162035
This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.1
givenNameDefinition
Identifies the entry's given name, usually a person's first name.
For example:
givenName: Hecuba
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.42
homeDirectoryDefinition
The home directory of the account.
For example:
homeDirectory: /home/bsmith
This attribute is defined in RFC 2307.
Syntax
String, single-valued.
OID
1.3.6.1.1.1.1.3
homePhoneDefinition
Identifies the entry's home phone number.
For example:
homePhone: 415-555-1212
This attribute is defined in RFC 1274.
Syntax
TelephoneNumber, multi-valued.
OID
0.9.2342.19200300.100.1.20
homePostalAddressDefinition
Identifies the entry's home mailing address. This field is intended to include multiple lines, but each line within the entry should be separated by a dollar sign ($). To represent an actual dollar sign ($) or backslash (\) within this text, use the escaped hex values \24 and \5c respectively.
To identify an entry's home mailing address:
homePostalAddress: 1234 Ridgeway Drive$Santa Clara, CA$99555
Additionally, to represent the string:
The dollar ($) value can be found
in the c:\cost file.provide the string:
The dollar (\24) value can be found$in the c:\5ccost file.
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.39
hostDefinition
Defines the hostname of a computer.
For example:
host: myServer
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.9
houseIdentifierDefinition
Identifies a building in a location.
For example:
houseIdentifier: B105
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.51
infoDefinition
Specifies any general information pertinent to an object. It is recommended that specific usage of this attribute type is avoided, and that specific requirements are met by other (possibly additional) attribute types.
For example:
info: not valid
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.4
initialsDefinition
Identifies the entry's initials. Does not identify the entry's surname.
For example:
initials: BFA
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.43
internationaliSDNNumberDefinition
Contains the ISDN number of the entry. This is in the internationally agreed format for ISDN addresses given in CCITT Rec. E. 164.
For example:
internationaliSDNNumber: +SO 812467
This attribute is defined in RFC 2256.
Syntax
IA5String, multi-valued.
OID
2.5.4.25
ipHostNumberDefinition
IP address, expressed as a dotted decimal, omitting leading zeros.
For example:
ipHostNumber: 10.0.0.1
This attribute is defined in RFC 2307.
Syntax
IA5String{128}
OID
1.3.6.1.1.1.1.19
ipNetmaskNumberDefinition
IP netmask, expressed as a dotted decimal, omitting leading zeros.
For example:
ipNetmaskNumber: 255.255.255.0
This attribute is defined in RFC 2307.
Syntax
IA5String{128}, single-valued.
OID
1.3.6.1.1.1.1.21
ipNetworkNumberDefinition
IP network, expressed as a dotted decimal, omitting leading zeros.
For example:
ipNetworkNumber: 192.168
This attribute is defined in RFC 2307.
Syntax
IA5String{128}, single-valued.
OID
1.3.6.1.1.1.1.20
ipProtocolNumberDefinition
The IP protocol number. This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.17
ipServicePortDefinition
The IP service port number. This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.15
ipServiceProtocolDefinition
The IP service protocol.
For example:
ipServiceProtocol: tcp
ipServiceProtocol: udp
This attribute is defined in RFC 2307.
Syntax
String, multi-valued.
OID
1.3.6.1.1.1.1.16
janetMailboxDefinition
Specifies an email address. This attribute is intended for the convenience of UK users unfamiliar with rfc822 mail addresses. Entries using this attribute must also include an rfc822Mailbox attribute.
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.46
javaClassNameDefinition
Stores the fully qualified name of the Java object's distinguished class or interface.
For example:
javaClassName: java.lang.String
This attribute is defined in RFC 2713.
Syntax
Directory String, single-valued.
OID
1.3.6.1.4.1.42.2.27.4.1.6
javaClassNamesDefinition
Stores the Java object's fully qualified class or interface names. It is a multivalued attribute. When more than one value is present, each is the name of a class or interface, or ancestor class or interface, of this object.
This attribute is defined in RFC 2713.
Syntax
Directory String, multi-valued.
OID
1.3.6.1.4.1.42.2.27.4.1.13
javaCodebaseDefinition
Stores the Java class definition's locations. It specifies the locations from which to load the class definition for the class specified by the javaClassName attribute. If this attribute contains more than one value, each value is an independent codebase.
This attribute is defined in RFC 2713.
Syntax
IA5String, multi-valued.
OID
1.3.6.1.4.1.42.2.27.4.1.7
javaDocDefinition
This attribute stores a pointer to the Java documentation for the class. Its value is a URL.
For example:
javaDoc: http://java.sun.com/products/jdk/1.2/docs/api/java/lang/String.html
This attribute is defined in RFC 2713.
Syntax
IA5String, multi-valued.
OID
1.3.6.1.4.1.42.2.27.4.1.12
javaFactoryDefinition
Stores the fully qualified class name of the object factory that can be used to create an instance of the object identified by the javaClassName attribute.
For example:
javaFactory: com.example.jndi.ExampleObjectFactory
This attribute is defined in RFC 2713.
Syntax
String, multi-valued.
OID
1.3.6.1.4.1.42.2.27.4.1.10
javaReferenceAddressDefinition
Represents the sequence of addresses of a JNDI reference. Each of its values represents one address, a Java object of type javax.naming.RefAddr. Its value is a concatenation of the address type and address contents, preceded by a sequence number.
For example:
This attribute is defined in RFC 2713.
Syntax
Directory String, multi-valued.
OID
1.3.6.1.4.1.42.2.27.4.1.11
javaSerializedDataDefinition
Stores the serialized form of a Java object.
This attribute is defined in RFC 2713.
Syntax
Octet String, single-valued.
OID
1.3.6.1.4.1.42.2.27.4.1.8
jpegPhotoDefinition
Contains a JPEG photo of the entry.
For example:
jpegPhoto:: AAAAAA==
This attribute is defined in RFC 2798.
Syntax
Binary, multi-valued.
OID
0.9.2342.19200300.100.1.60
keyWordsDefinition
Contains keywords for the entry.
For example:
keyWords: directory LDAP X.500
This attribute is defined in Internet White Pages Pilot.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.102.1.7
knowledgeInformationDefinition
This attribute is no longer used.
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.2
l (localityName)Definition
Identifies the county, city, or other geographical area in which the entry is located or with which it is in some other way associated.
For example:
localityName: Santa Clara
or
l: Santa Clara
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.7
labeledURIDefinition
Specifies a Uniform Resource Identifier (URI) that is relevant in some way to the entry. Values placed in the attribute should consist of a URI (currently only URLs are supported) optionally followed by one or more space characters and a label.
For example:
labeledURI: http://www.sun.com
labeledURI: http://www.sun.com Sun website
This attribute is defined in RFC 2079.
Syntax
IA5String, multi-valued.
OID
1.3.6.1.4.1.250.1.57
lastModifiedByDefinition
Specifies the distinguished name of the last user to modify the associated entry.
For example:
lastModifiedBy: cn=Jane Doe,ou=Quality Control,dc=example,dc=com
This attribute is defined in RFC 1274.
Syntax
DN, single-valued.
OID
0.9.2342.19200300.100.1.24
lastModifiedTimeDefinition
Defines the last time, in UTC format, that a change was made to the entry.
For example:
lastModifiedTime: Thursday, 22-Sep-03 14:15:00 GMT
This attribute is defined in RFC 1274.
Syntax
DirectoryString, single-valued.
OID
0.9.2342.19200300.100.1.23
loginShellDefinition
The path to the login shell.
For example:
loginShell: /bin/csh
This attribute is defined in RFC 2307.
Syntax
IA5String, single-valued.
OID
1.3.6.1.1.1.1.4
macAddressDefinition
The MAC address in maximal, colon separated hex notation, for example 00:00:92:90:ee:e2.
For example:
macAddress: 00:00:92:90:ee:e2
This attribute is defined in RFC 2307.
Syntax
String, multi-valued.
OID
1.3.6.1.1.1.1.22
Definition
Identifies a user's primary email address (the email address retrieved and displayed by "white-pages" lookup applications).
For example:
mail: banderson@example.com
This attribute is defined in RFC 1274.
Syntax
DirectoryString, single-valued.
OID
0.9.2342.19200300.100.1.3
mailPreferenceOptionDefinition
Not used in Messaging Server 4.0.
Indicates a preference for the inclusion of user names on mailing lists (electronic or physical). Accepted values include:
The absence of this attribute for a person should be interpreted as if the attribute were present with the value no-list-inclusion. This attribute should be interpreted by anyone using the directory to derive mailing lists, and its value respected.
For example:
mailPreferenceOption:0
This attribute is defined in RFC 1274.
Syntax
Integer, single-valued.
OID
0.9.2342.19200300.100.1.47
managerDefinition
Identifies the distinguished name of the entry's manager.
For example:
manager:cn=Jane Doe, ou=Quality Control, dc=example, dc=com
This attribute is defined in RFC 1274.
Syntax
DN, multi-valued.
OID
0.9.2342.19200300.100.1.10
memberDefinition
Identifies the distinguished names for each member of the group.
For example:
member: cn=John Doe, dc=example, dc=com
This attribute is defined in RFC 2256.
Syntax
DN, multi-valued.
OID
2.5.4.31
memberCertificateDescriptionDefinition
A multi-valued attribute, for which each value is a description, a pattern, or a filter matching the subject DN of a certificate (usually certificates used for SSL client authentication).
memberCertificateDescription matches any certificate that contains a subject DN with the same AVAs as the description. The description may contain multiple ou= AVAs. A matching DN must contain those same ou= AVAs, in the same order, although it may contain other AVAs (including other ou= AVAs) interspersed. For any other attribute type (not ou), there should be at most one AVA of that type in the description. If there are several, all but the last are ignored.
A matching DN must contain that same AVA, but no other AVA of the same type nearer the root (later, syntactically).
AVAs are considered the same if they contain the same attribute description (case-insensitive comparison) and the same attribute value (case-insensitive comparison, leading and trailing whitespace ignored, and consecutive whitespace characters treated as a single SP).
In order to be considered a member of a group with the following memberCertificateDescription, a certificate would need to include ou=x, ou=A, and o=example, but not o=company.
memberCertificateDescription: {ou=x, ou=A, o=company, o=example}
In order to match the group's requirements, a certificate's subject DNs must contain the same ou attribute types in the same order as defined in the memberCertificateDescription attribute.
This attribute is defined in Sun Java System Directory Server.
Syntax
IA5String, multi-valued.
OID
2.16.840.1.113730.3.1.199
memberNisNetgroupDefinition
The name of a netgroup. This attribute is defined in RFC 2307.
Syntax
IA5String, multi-valued.
OID
1.3.6.1.1.1.1.13
memberUidDefinition
The user id of the member. This attribute is defined in RFC 2307.
Syntax
IA5String, multi-valued.
OID
1.3.6.1.1.1.1.12
memberURLDefinition
Identifies a URL associated with each member of a group. Any type of labeled URL can be used.
For example:
memberURL: ldap:///cn=jdoe,dc=example,dc=com
This attribute is defined in Sun Java System Directory Server.
Syntax
IA5String, multi-valued.
OID
2.16.840.1.113730.3.1.198
mobileDefinition
Identifies the entry's mobile or cellular phone number. Abbreviation: mobile.
For example:
mobileTelephoneNumber: 415-555-4321
mobile: 415-555-4321
This attribute is defined in RFC 1274.
Syntax
TelephoneNumber, multi-valued.
OID
0.9.2342.19200300.100.1.41
multiLineDescriptionDefinition
Provides descriptive text for a mail user. When represented in LDIF format, each line should be separated by a dollar sign ($). Directory Server expects 0 or 1 occurrences of this attribute per mail account.
For example:
multiLineDescription: Account Administrator and$directory manager.
To represent an actual dollar sign ($) or backslash (\) within this text, use the escaped hex values \24 and \5c respectively. For example, to represent the string:
The dollar ($) value can be found in the c:\cost file.
provide the string:
The dollar (\24) value can be found$in the c:\5ccost file.
This attribute is defined in Internet White Pages Pilot.
Syntax
DirectoryString, multi-valued.
OID
1.3.6.1.4.1.250.1.2
nameDefinition
Identifies the attribute supertype from which string attribute types used for naming may be formed. It is unlikely that values of this type will occur in an entry. LDAP server implementations that do not support attribute subtyping do not need to recognize this attribute in requests. Client implementations should not assume that LDAP servers are capable of performing attribute subtyping.
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.41
newRdnDescription
In the case of modrdn operations, specifies the new RDN of the entry.
This attribute is defined in Changelog Internet Draft.
Syntax
DN, single-valued.
OID
2.16.840.1.113730.3.1.9
newSuperiorDescription
In the case of modrdn operations, specifies the newSuperior attribute of the entry.
This attribute is defined in Changelog Internet Draft.
Syntax
DN, single-valued.
OID
2.16.840.1.113730.3.1.11
nisMapEntryDefinition
The NIS map entry ID.
This attribute is defined in RFC 2307.
Syntax
IA5String{1024}, single-valued
OID
1.3.6.1.1.1.1.27
nisMapNameDefinition
The name of the NIS map. This attribute is defined in RFC 2307.
Syntax
String, multi-valued.
OID
1.3.6.1.1.1.1.26
nisNetgroupTripleDefinition
Defines a NIS netgroup with the syntax hostname,username,domainname.
For example:
nisNetgroupTriple: (myserver,jsmith,example.com)
This attribute is defined in RFC 2307.
Syntax
nisNetgroupTripleSyntax
OID
1.3.6.1.1.1.1.14
nsLicensedForDefinition
Identifies the server the user is licensed to use. The Administration Server expects each nsLicenseUser entry to contain zero or more instances of this attribute. Valid keywords for this attribute are currently:
For example:
nsLicensedFor: slapd
This attribute is defined in Sun Java System Administration Services.
Syntax
DirectoryString, multi-valued.
OID
2.16.840.1.113730.3.1.36
nsRoleScopeDnDefinition
Determines the scope of a role entry. If this attribute is not present, the scope of the role is defined by the LDAPsubentry. Otherwise, the scope is the union of the scope defined by the LDAPsubentry and the scope defined in this attribute.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued.
OID
1.3.6.1.4.1.1466.115.121.1.12
o (organizationName)Definition
Identifies the name of the organization.
For example:
organizationName: example, Inc.
or
o: example, Inc
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.10
objectClassDefinition
Specifies the object classes of the object. Must include the object.
For example:
objectClass: person
This attribute is defined in RFC 2256.
Syntax
IA5String, multi-valued.
OID
2.5.4.0
obsoletedByDocumentDefinition
Contains the distinguished name of a document that obsoletes the document entry.
For example:
obsoletedbyDocument: cn=Document Version 2, ou=Document Library,
dc=example, dc=comThis attribute is defined in Internet White Pages Pilot.
Syntax
DN, multi-valued.
OID
0.9.2342.19200300.102.1.4
obsoletesDocumentDefinition
Contains the distinguished name of a document that is obsoleted by the document entry.
For example:
obsoletesDocument: cn=Document Version 1, ou=Document Library,
dc=example, dc=comThis attribute is defined in Internet White Pages Pilot.
Syntax
DN, multi-valued.
OID
0.9.2342.19200300.102.1.3
oncRpcNumberDefinition
The Open Network Computing (ONC) Remote Procedure Call (RPC) number.
This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.18
organizationalStatusDefinition
Specifies a category by which a person is often referred to in an organization.
For example:
organizationalStatus: researcher
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.45
otherMailboxDefinition
Specifies values for electronic mailbox types other than X.400 and rfc822.
For example:
otherMailbox: Telemail: x378: Joe
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.22
ou (organizationUnitName)Definition
Identifies the name of an organizational unit.
For example:
organizationUnitName: Marketing
or
ou: Marketing
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.11
ownerDefinition
Identifies the distinguished name of the person responsible for the entry.
For example:
owner: cn=Babs Jensen, dc=example, dc=com
This attribute is defined in RFC 2256.
Syntax
DN, multi-valued.
OID
2.5.4.32
pager (pagerTelephoneNumber)Definition
Identifies the entry's pager phone number.
For example:
pagerTelephoneNumber: 415-555-6789
or
pager: 415-555-6789
This attribute is defined in RFC 1274.
Syntax
TelephoneNumber, multi-valued.
OID
0.9.2342.19200300.100.1.42
passwordChangeDefinition
Indicates whether users may change their passwords.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.102
passwordCheckSyntaxDefinition
Indicates whether the password syntax will be checked before the password is saved.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.103
passwordExpDefinition
Indicates whether user passwords will expire after a specified number of seconds.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.98
passwordExpireWithoutWarningIndicates whether a password can expire regardless of whether the user was warned about the expiration date.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued.
OID
1.3.6.1.4.1.42.2.27.9.1.86
passwordInHistoryDefinition
Indicates the number of passwords Directory Server stores in history.
This attribute is defined in Sun Java System Directory Server.
Syntax
Integer, single-valued.
OID
2.16.840.1.113730.3.1.101
passwordLockoutDefinition
Enables the account lockout mechanism.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.105
passwordLockoutDurationDefinition
Specifies the length of time (in seconds) during which users will be locked out of the directory.
This attribute is defined in Sun Java System Directory Server.
Syntax
Integer, single-valued.
OID
2.16.840.1.113730.3.1.109
passwordMaxAgeDefinition
Indicates the number of seconds after which user passwords will expire.
This attribute is defined in Sun Java System Directory Server.
Syntax
Integer, single-valued.
OID
2.16.840.1.113730.3.1.97
passwordMaxFailureDefinition
Specifies the number of consecutive failed bind attempts after which a user will be locked out of the directory.
This attribute is defined in Sun Java System Directory Server.
Syntax
Integer, single-valued.
OID
2.16.840.1.113730.3.1.106
passwordMinAgeDefinition
Specifies the number of seconds that must elapse between password modifications.
This attribute is defined in Sun Java System Directory Server.
Syntax
Integer, single-valued.
OID
2.16.840.1.113730.3.1.222
passwordMinLengthDefinition
Specifies the minimum number of characters that must be used in a password.
This attribute is defined in Sun Java System Directory Server.
Syntax
Integer, single-valued.
OID
2.16.840.1.113730.3.1.99
passwordMustChangeDefinition
Indicates whether users must change their passwords when they first bind to Directory Server, or when the password has been reset by the administrator.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.220
passwordResetFailureCountDefinition
Specifies the length of time (in seconds) after which the password failure is reset to 0.
This attribute is defined in Sun Java System Directory Server.
Syntax
Integer, single-valued.
OID
2.16.840.1.113730.3.1.223
passwordStorageSchemeDefinition
Specifies the algorithm used to encrypt Directory Server passwords.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.221
passwordUnlockDefinition
Specifies whether user accounts will be unlocked after a period of time.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.108
passwordWarningDefinition
Specifies the number of seconds before a user's password expires that the user will receive a password expiration warning on attempting to authenticate to the directory.
This attribute is defined in Sun Java System Directory Server.
Syntax
Integer, single-valued.
OID
2.16.840.1.113730.3.1.104
personalSignatureDefinition
A signature file, in binary format, for the entry.
For example:
personalSignature:: AAAAAA==
This attribute is defined in RFC 1274.
Syntax
Binary, multi-valued.
OID
0.9.2342.19200300.100.1.53
personalTitleDefinition
Specifies a personal title for a person. Examples of personal titles are Ms, Dr, Prof, and Rev.
For example:
personalTitle: Mr
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.40
photoDefinition
Contains a photo, in binary form, of the entry.
For example:
photo:: AAAAAA==
This attribute is defined in RFC 1274.
Syntax
Binary, multi-valued.
OID
0.9.2342.19200300.100.1.7
physicalDeliveryOfficeNameDefinition
Identifies the name of the city or village in which a physical delivery office is located.
For example:
physicalDeliveryOfficeName: Santa Clara
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.19
postalAddressDefinition
Identifies the entry's mailing address. This field is intended to include multiple lines. When represented in LDIF format, each line should be separated by a dollar sign ($).
For example:
postalAddress: P.O. Box 3541$Santa Clara, CA$99555
To represent an actual dollar sign ($) or backslash (\) within the text, use the escaped hex values \24 and \5c respectively.
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.16
postalCodeDefinition
Identifies the entry's zip code in the United States.
For example:
postalCode: 44224
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.17
postOfficeBoxDefinition
Specifies a postal mailing address.
For example:
postOfficeBox: P.O. Box 1234
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.18
preferredDeliveryMethodDefinition
Identifies the entry's preferred contact or delivery method.
For example:
preferredDeliveryMethod: telephone
This attribute is defined in RFC 2256.
Syntax
DirectoryString, single-valued.
OID
2.5.4.28
preferredLanguageDefinition
Defines a person's preferred written or spoken language. The value for this attribute should conform to the syntax for HTTP Accept-Language header values.
For example:
preferredLanguage: en-us
This attribute is defined in RFC 2798.
Syntax
DirectoryString, single-valued.
OID
2.16.840.1.113730.3.1.39
presentationAddressDefinition
Contains an OSI presentation address for the entry. The presentation address consists of an OSI Network Address and up to three selectors, one each for use by the transport, session, and presentation entities.
For example:
presentationAddress: TELEX+00726322+RFC-1006+02+130.59.2.1
This attribute is defined in RFC 2256.
Syntax
IA5String, single-valued.
OID
2.5.4.29
protocolInformationDefinition
Used in conjunction with the presentationAddress attribute to provide additional information to the OSI network service.
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.48
refDescription
Used in LDAPv3 to support smart referrals. Contains an LDAP URL in the format:
ldap://<servername>:<portnumber>/<dn>
The port number is optional.
For example:
ref: ldap://server.example.com:389/ou=People, o=example.com
Note that DN special characters must be escaped. For example:
ref: ldap://server.example.com:389/ou=People, o=example%Inc
This attribute is defined in RFC 3296.
Syntax
IA5String, multi-valued.
OID
2.16.840.1.113730.3.1.34
registeredAddressDefinition
This attribute contains a postal address for receiving telegrams or expedited documents. The recipient's signature is usually required on delivery.
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.26
replicaIdentifierDefinition
A retro change log attribute.
When the retro change log is enabled, for each record in the retro change log that corresponds to a replicated operation this attribute provides a replica identifier. The replica identifier comprises the replicaID and the suffix on which the change is logged.
For example:
replicaIdentifier: 1-o=sun.com
This attribute must be specifically requested in an ldapsearch operation.
Syntax
Directory String
OID
1.3.6.1.4.1.42.2.27.9.1.724
replicationCSNDefinition
A retro change log attribute.
When the retro change log is enabled, for each record in the retro change log that corresponds to a replicated operation this attribute specifies a Change Sequence Number (CSN). The CSN uniquely identifies each change made to the replicated data.
The CSN contains a timestamp, sequence number, replica ID, and subsequence number.
For example:
replicationCSN: 41389286001400010000
This attribute must be specifically requested in an ldapsearch operation.
Syntax
Directory String
OID
1.3.6.1.4.1.42.2.27.9.1.725
roleOccupantDefinition
Contains the distinguished name of the person acting in the role defined in the organizationalRole entry.
For example:
roleOccupant: uid=jdoe, dc=example, dc=com
This attribute is defined in RFC 2256.
Syntax
DN, multi-valued.
OID
2.5.4.33
roomNumberDefinition
Specifies the room number of an object. Note that the commonName attribute should be used for naming room objects.
For example:
roomNumber: 230
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.6
searchGuideDefinition
Specifies information for a suggested search criteria when using the entry as the base object in the directory tree for a search operation. When constructing search filters, use enhancedSearchGuide instead.
This attribute is defined in RFC 2256.
Syntax
IA5String, multi-valued.
OID
2.5.4.14
secretaryDefinition
Identifies the entry's secretary or administrative assistant.
For example:
secretary: cn=John Doe, dc=example, dc=com
This attribute is defined in RFC 1274.
Syntax
DN, multi-valued.
OID
0.9.2342.19200300.100.1.21
seeAlsoDefinition
Identifies another Directory Server entry that may contain information related to this entry.
For example:
seeAlso: cn=Quality Control Inspectors,ou=manufacturing,
dc=example, dc=comThis attribute is defined in RFC 2256.
Syntax
DN, multi-valued.
OID
2.5.4.34
serialNumberDefinition
Specifies the serial number of a device.
For example:
serialNumber: 555-1234-AZ
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.5
shadowExpireDefinition
Related to the /etc/shadow file, this attribute contains an absolute date specifying when the login may no longer be used.
This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.10
shadowFlagDefinition
Related to the /etc/shadow file, this attribute is currently not used and is reserved for future use.
This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.11
shadowInactiveDefinition
Related to the /etc/shadow file, this attribute specifies the number of days of inactivity allowed for the specified user.
This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.9
shadowLastChangeDefinition
Related to the /etc/shadow file, this attribute specifies number of days between January 1, 1970, and the date that the password was last modified.
This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.5
shadowMaxDefinition
Related to the /etc/shadow file, this attribute specifies the maximum number of days the password is valid.
This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.7
shadowMinDefinition
Related to the /etc/shadow file, this attribute specifies the minimum number of days required between password changes.
This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.6
shadowWarningDefinition
Related to the /etc/shadow file, this attribute specifies the number of days before the password expires that the user is warned.
This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.8
singleLevelQualityDefinition
Specifies the purported data quality at the level immediately below in the DIT.
This attribute is defined in RFC 1274.
Syntax
DirectoryString, single-valued.
OID
0.9.2342.19200300.100.1.50
sn (surname)Definition
Identifies the entry's surname, also referred to as last name or family name.
For example:
surname: Anderson
or
sn: Anderson
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.4
st (stateOrProvinceName)Definition
Identifies the state or province in which the entry resides. Abbreviation: st.
For example:
stateOrProvinceName: California
or
st: California
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.8
street (streetAddress)Definition
Identifies the entry's house number and street name.
For example:
streetAddress: 1234 Ridgeway Drive
or
street: 1234 Ridgeway Drive
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.9
subjectDefinition
Contains information about the subject matter of the document entry.
For example:
subject: employee option grants
This attribute is defined in Internet White Pages Pilot.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.102.1.8
subtreeMaximumQualityDefinition
Specifies the purported maximum data quality for a DIT subtree.
This attribute is defined in RFC 1274.
Syntax
DirectoryString, single-valued.
OID
0.9.2342.19200300.100.1.52
subtreeMinimumQualityDefinition
Specifies the purported minimum data quality for a DIT subtree.
This attribute is defined in RFC 1274.
Syntax
DirectoryString, single-valued.
OID
0.9.2342.19200300.100.1.51
supportedAlgorithmsDefinition
This attribute is to be stored and requested in the binary form, as supportedAlgorithms;binary.
For example:
supportedAlgorithms;binary: AAAAAA==
This attribute is defined in RFC 2256.
Syntax
Binary, multi-valued.
OID
2.5.4.52
supportedApplicationContextDefinition
This attribute contains the identifiers of OSI application contexts.
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.30
targetDnDescription
Contains the DN of the entry that was affected by the LDAP operation. In the case of a modrdn operation, the targetDn attribute contains the DN of the entry before it was modified or moved.
This attribute is defined in Changelog Internet Draft.
Syntax
DN, multi-valued.
OID
2.16.840.1.113730.3.1.6
targetUniqueIdDescription
A retro change log attribute. When the retro change log is enabled, this attribute provides the unique ID of the target entry for each record in the retro change log.
This attribute must be specifically requested in an ldapsearch operation.
Syntax
Directory String
OID
1.3.6.1.4.1.42.2.27.9.1.596
telephoneNumberDefinition
Identifies the entry's phone number.
For example:
telephoneNumber: 415-555-2233
This attribute is defined in RFC 2256.
Syntax
TelephoneNumber, multi-valued.
OID
2.5.4.20
teletexTerminalIdentifierDefinition
Identifies the entry's teletex terminal identifier. The format of the attribute is as follows:
teletex-id = ttx-term 0*("$" ttx-param)
ttx-term = printablestring
ttx-param = ttx-key ":" ttx-value
ttx-key = "graphic" / "control" / "misc" / "page" / "private"
ttx-value = octetstringIn the above, the first printable string is the encoding of the first portion of the teletex terminal identifier to be encoded, and the subsequent 0 or more octet strings are subsequent portions of the teletex terminal identifier.
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.22
telexNumberDefinition
Defines the telex number of the entry. The format of the telex number is as follows:
actual-number "$" country "$" answerback
where:
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.21
textEncodedORAddressDefinition
Defines the text-encoded Originator/Recipient (X.400) address of the entry as defined in RFC987.
For example:
textEncodedORAddress: /S=doe/OU=eng/O=example/ADMD=telemail/C=us/
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.2
titleDefinition
Identifies the title of a person in the organization.
For example:
title: Senior QC Inspector
This attribute is defined in RFC 2256.
Syntax
DirectoryString, multi-valued.
OID
2.5.4.12
uid (userID)Definition
Identifies the entry's userid (usually the logon ID). Abbreviation: uid.
For example:
userid: banderson
or
uid: banderson
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.1
uidNumberDefinition
Related to the /etc/shadow file, this attribute specifies the user's login ID.
This attribute is defined in RFC 2307.
Syntax
Integer, single-valued.
OID
1.3.6.1.1.1.1.0
uniqueIdentifierDefinition
Identifies a specific item used to distinguish between two entries when a distinguished name has been reused. This attribute is intended to detect an instance of a reference to a distinguished name that has been deleted. This attribute is assigned by the server.
For example:
uniqueIdentifier: 17B
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.44
uniqueMemberDefinition
Identifies a group of names associated with an entry where each name was given a uniqueIdentifier to ensure its uniqueness. A value for the uniqueMember attribute is a DN followed by an optional hash (#) and uniqueIdentifier.
For example:
uniqueMember: cn=John Doe, dc=example, dc=com #17
This attribute is defined in RFC 2256.
Syntax
DN, multi-valued.
OID
2.5.4.50
updatedByDocumentDefinition
Contains the distinguished name of a document that is an updated version of the document entry.
For example:
updatedByDocument: cn=Document Version 2, ou=Document Library,
dc=example, dc=comThis attribute is defined in Internet White Pages Pilot.
Syntax
DN, multi-valued.
OID
0.9.2342.19200300.102.1.6
updatesDocumentDefinition
Contains the distinguished name of a document for which this document is an updated version.
For example:
updatesDocument: cn=Document Version 1, ou=Document Library,
dc=example, dc=comThis attribute is defined in Internet White Pages Pilot.
Syntax
DN, multi-valued.
OID
0.9.2342.19200300.102.1.5
usePwdChangedTimeDefinition
Indicates whether to use pwdChangedTime and passwordMaxAge to limit the duration during which a user can log in after a password is changed, for example, after a password is reset.
This attribute is defined in Sun Java System Directory Server.
Syntax
DirectoryString, single-valued (on or off).
OID
1.3.6.1.4.1.42.2.27.9.1.597
userCertificateDefinition
This attribute contains a certificate. It is to be stored and requested in the binary form, as userCertificate;binary.
For example:
userCertificate;binary:: AAAAAA==
This attribute is defined in RFC 2256.
Syntax
Binary, multi-valued.
OID
2.5.4.36
userClassDefinition
Specifies a category of computer user. The semantics of this attribute are arbitrary. The organizationalStatus attribute makes no distinction between computer users and others users and may be more applicable.
For example:
userClass: intern
This attribute is defined in RFC 1274.
Syntax
DirectoryString, multi-valued.
OID
0.9.2342.19200300.100.1.8
userPasswordDefinition
Identifies the entry's password and encryption method in the following format:
{encryption method}encrypted password
Transfer of clear text passwords is strongly discouraged where the underlying transport service cannot guarantee confidentiality. Transfer of clear text may result in disclosure of the password to unauthorized parties.
For example:
userPassword: {ssha}9LsFG7RT+dFnPErwSfxDlaQTn6dbIFGklMNFRr==
This attribute is defined in RFC 2256.
Syntax
Binary, multi-valued.
OID
2.5.4.35
userPKCS12Definition
This attribute provides a format for the exchange of personal identity information. The attribute is to be stored and requested in binary form, as userPKCS12;binary. The attribute values are PFX PDUs stored as binary data.
This attribute is defined in RFC 2798.
Syntax
Binary, multi-valued.
OID
2.16.840.1.113730.3.1.216
userSMIMECertificateDefinition
Used by Netscape Communicator for S/MIME. This attribute is to be stored and requested in the binary form, as userSMIMECertificate;binary.
For example:
userSMIMECertificate;binary:: AAAAAA==
This attribute is defined in RFC 2798.
Syntax
Binary, multi-valued.
OID
2.16.840.1.113730.3.1.40
x121AddressDefinition
Defines the X.121 address of a person.
This attribute is defined in RFC 2256.
Syntax
IA5String, multi-valued.
OID
2.5.4.24
x500UniqueIdentifierDefinition
Reserved for future use. A binary method of identification useful for differentiating objects when a distinguished name has been reused.
For example:
x500UniqueIdentifier: 17B
This attribute is defined in RFC 2256.
Syntax
Binary, multi-valued.
OID
2.5.4.45