Previous Contents Index DocHome Next |
iPlanet Directory Server Schema Reference |
Chapter 2 Object Class Reference
This chapter contains an alphabetical list of the object classes accepted by the default schema. It gives a definition of each object class, and lists its required and allowed attributes. The object classes listed in this chapter are available for you to use to support your own information in the Directory Server. Object classes that are used by the Directory Server or other iPlanet products for internal operations are not documented here. For information about these object classes, please refer to the iPlanet Directory Server Configuration, Command, and File Reference. When an object class inherits attributes from other object classes, the inherited attributes are shown in italics. An object class which inherits from another object class must appear after this object class in the .ldif file, otherwise the server will not start.
Definition
Used to define entries representing computer accounts.
This object class is defined in RFC 1274.
Definition
Used to point to other entries in the directory tree.
Note: Alias dereferencing is not supported in iPlanet Directory Server.
This object class is defined in RFC 2256.
Distinguished name of the entry for which this entry is an alias.
Definition
Identifies the template entry using both the template entry's DN (as specified in the cosTemplateDn attribute) and the value of one of the target entry's attributes (as specified in the cosSpecifier attribute).
This object class is defined in iPlanet Directory Server.
Superior Class
cosSuperDefinition
Provides the name of the attribute for which you want to generate a value. You can specify more than one cosAttribute value.
Definition
Defines the Class of Services you are using. This object class is supported in order to provide compatibility with the DS4.1 CoS Plugin.
This object class is defined in iPlanet Directory Server
Definition
Identifies the template entry using the value of one of the target entry's attributes. The attribute of the target entry is specified in the cosIndirectSpecifier attribute.
This object class is defined in iPlanet Directory Server.
Superior Class
cosSuperDefinition
Provides the name of the attribute for which you want to generate a value. You can specify more than one cosAttribute value.
Specifies the attribute value used by an indirect CoS to identify the template entry.
Definition
Identifies the template entry associated with the CoS definition using the template entry's DN value. The DN of the template entry is specified in the cosTemplateDn attribute.
This object class is defined in iPlanet Directory Server.
Superior Class
cosSuperDefinition
Provides the name of the attribute for which you want to generate a value. You can specify more than one cosAttribute value.
Provides the DN of the template entry associated with the CoS definition.
Definition
All CoS definition object classes inherit from the cosSuperDefinition object class.
This object class is defined in iPlanet Directory Server.
Provides the name of the attribute for which you want to generate a value. You can specify more than one cosAttribute value
Definition
Contains a list of the shared attribute values.
This object class is defined in iPlanet Directory Server.
Specifies which template provides the attribute value, when CoS templates compete to provide an attribute value.
Definition
Used to define entries that represent countries.
This object class is defined in RFC 2256.
Contains the two-character code representing country names, as defined by ISO, in the directory.
Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search operation.
Definition
Defines a domain component, such as a network domain that is associated with the entry. This object class is defined as auxiliary because it is commonly used in combination with another object class, such as organization, organizationUnit, or locality. For example:
dn: ou=Engineering,dc=siroe,dc=com
objectClass: top
objectClass: organizationalUnit
objectClass: dcObject
ou: Engineering
dc: eng
This object class is defined in RFC 2247.
See Also
domain
Definition
Used to store information about network devices, such as printers, in the directory.
This object class is defined in RFC 2256.
Distinguished name of the person responsible for the device.
Definition
Used to define entries which represent documents in the directory.
This object class is defined in RFC 1274.
Definition
Used to define an entry that represents a series of documents.
This object class is defined in RFC 1274.
Definition
Used to represent Internet Domains (for example, siroe.com). The domainComponent attribute should be used for naming entries of this object class.
The domain object class can only be used with an entry that does not correspond to an organization, organizational unit or other type of object for which an object class has been defined. The domain object class requires that the domainComponent attribute be present, and allows several other attributes to be present in the entry. These allowed attributes are used to describe the object represented by the domain, and may also be useful when searching.
This object class is defined in RFC 2247.
OID
0.9.2342.19200300.100.4.13
See Also
dcObject
Definition
Used to define entries which represent DNS/NRS domains which are "equivalent" to an X.500 domain, for example, an organization or organizational unit.
This object class is defined in RFC 1274.
OID
0.9.2342.19200300.100.4.17
Specifies a DNS domain associated with an object in the directory tree.
Definition
Used to define entries representing Directory Server Agents.
This object class is defined in RFC 1274.
This attribute contains the identifiers of OSI application contexts.
Definition
When present in an entry, permits the entry to optionally hold any attribute. The allowed attribute list of this class is implicitly the set of all attributes known to the server.
This object class is defined in RFC 2252.
OID
1.3.6.1.4.1.1466.101.120.111
Allowed Attributes
All attributes known to the server.
Definition
Used to define country entries in the directory tree. This object class is used to allow more user-friendly country names than those allowed by the country object class.
This object class is defined in RFC 1274.
OID
0.9.2342.19200300.100.4.18
Contains the two-character code representing country names, as defined by ISO, in the directory.
Specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search operation.
Definition
Used to describe a set of X.509 certificates. Any certificate that matches one of the memberCertificateDescription values is considered a member of the group.
This object class is defined in iPlanet Directory Server.
Values used to determine if a particular certificate is a member of this group.
Definition
Used to define entries for a group of names.
Note: The definition in iPlanet Directory Server differs from the standard definition. In the standard definition, member is a required attribute. In iPlanet Directory Server member is an allowed attribute. iPlanet Directory Server therefore allows a group to have no member.
This object class is defined in RFC 2256.
Definition
Used to define entries for a group of unique names.
This object class is defined in RFC 2256.
Definition
An auxiliary object class of groupOfUniqueNames or groupOfNames. The group consists of a list of labeled URLs. Not supported by Netscape Directory Server 3.0.
This object class is defined in iPlanet Directory Server.
Definition
Used to define entries representing people in an organization's enterprise network.
This object class is defined in RFC 2798.
Superior Class
organizationalPerson
Definition
This object class can be added to existing directory objects to allow for inclusion of URI values. This approach does not preclude including the labeledURI attribute type directly in other object classes as appropriate.
This object class is defined in RFC 2079.
Universal Resource Identifier that is relevant to the entry.
Definition
Used to define entries that represent localities or geographic areas.
This object class is defined in RFC 2256.
Specifies information for a suggested search criteria when using the entry as the base object in the directory tree for a search operation.
Definition
Used as a subclass of person, to allow the use of a number of additional attributes to be assigned to entries of the person object class. Inherits cn and sn from the person object class.
This object class is defined in Internet White Pages Pilot.
Definition
Any role that is not a simple role is, by definition, a complex role.
This object class is defined in iPlanet Directory Server.
Superior Class
nsRoleDefinition
Definition
Specifies assignment of entries to the role, depending upon the attributes contained by each entry.
This object class is defined in iPlanet Directory Server.
Superior Class
nsComplexRoleDefinition
Definition
Used to track licenses for Netscape servers that are licensed on a per-client basis. nsLicenseUser is intended to be used with the inetOrgPerson object class. You can manage the contents of this object class through the Users and Groups area of the Netscape Administration Server.
This object class is defined in iPlanet Administration Services.
Definition
Specifies assignment of a role to an explicit, enumerated list of members.
This object class is defined in iPlanet Directory Server.
Superior Class
nsSimpleRoleDefinition
Definition
Specifies containment of one or more roles of any type within the role.
This object class is defined in iPlanet Directory Server.
Superior Class
nsComplexRoleDefinition
Definition
All role definition object classes inherit from the nsRoleDefinition object class.
This object class is defined in iPlanet Directory Server.
Definition
Roles containing this object class are called simple roles because they have a deliberately limited flexibility, which makes it easy to:
Enumerate the members of a role.
Determine whether a given entry possesses a particular role.
Enumerate all the roles possessed by a given entry. This object class is defined in iPlanet Directory Server.
Superior Class
nsRoleDefinition
Definition
Used to define entries that represent organizations. An organization is generally assumed to be a large, relatively static grouping within a larger corporation or enterprise.
This object class is defined in RFC 2256.
Definition
Used to define entries for people employed by or associated with an organization.
This object class is defined in RFC 2256.
Definition
Used to define entries that represent roles held by people within an organization.
This object class is defined in RFC 2256.
Definition
Used to define entries that represent organizational units. An organizational unit is generally assumed to be a relatively static grouping within a larger organization.
This object class is defined in RFC 2256.
Definition
Used to define entries that generically represent people. This object class is the base class for the organizationalPerson object class.
This object class is defined in RFC 2256.
Definition
Used as a subclass to allow additional attributes to be assigned to entries of all other object classes.
This object class is defined in RFC 1274.
Specific item used to distinguish between two entries when a distinguished name has been reused.
Definition
Used as a subclass to allow additional attributes to be assigned to organization and organizationalUnit object class entries.
This object class is defined in RFC 1274.
OID
0.9.2342.19200300.100.4.20
Definition
Used by the directory server to contain a person's residential information.
This object class is defined in RFC 2256.
Definition
Used to define entries that represent the local part of RFC822 mail addresses. The directory treats this part of an RFC822 address as a domain.
This object class is defined in Internet directory pilot.
OID
0.9.2342.19200300.100.4.14
Definition
Used to store information in the directory about a room.
This object class is defined in RFC 1274.
Definition
Used to store a user's certificate entry in the directory. This is an auxiliary object class and is used with other object classes, such as the person and organization object classes.
This object class is defined in RFC 2256.
Definition
Used to allow an entry to contain the userPassword attribute when an entry's principal object classes do not allow userPassword as an attribute type. Reserved for future use.
This object class is defined in RFC 1274.
OID
0.9.2342.19200300.100.4.19
Previous Contents Index DocHome Next
Copyright © 2002 Sun Microsystems, Inc. Some preexisting portions Copyright © 2001 Netscape Communications Corp. All rights reserved.
Last Updated February 26, 2002