Displaying the Current Schema

There are two ways of displaying the current schema:

• From the command line, using the ldapsearch command

• In the Admin Console

Displaying the Schema with ldapsearch

Use the ldapsearch command with the following arguments to read the current schema through the directory server:

/opt/SUNWconn/bin/ldapsearch -h hostname -b "cn=schema" -s base 'objectclass=*'

where hostname is the name of the directory server.

Table 8-1 shows an extract of the type of information returned.

objectclasses=( 2.5.6.0 NAME 'top' DESC 'Standard ObjectClass'
MUST ( objectclass ) )
objectclasses=( 2.5.6.1 NAME 'alias' DESC 'Standard ObjectClass'
SUP 'top'  MUST ( objectclass $ aliasedobjectname )  MAY ( * )  )
objectclasses=( 2.5.6.2 NAME 'country' DESC 'Standard ObjectClass'
SUP 'top'  MUST ( objectclass $ c )  MAY ( description $ searchguide
)  )
objectclasses=( 2.5.6.3 NAME 'locality' DESC 'Standard
ObjectClass' SUP 'top'  MUST ( objectclass )  MAY ( description $
l $ searchguide $ seealso $ st $ street )  )
objectclasses=( 2.5.6.4 NAME 'organization' DESC 'Standard
ObjectClass' SUP 'top'  MUST ( objectclass $ o )  MAY (
businesscategory $ description $ destinationindicator $
facsimiletelephonenumber $ internationalisdnnumber $ l $
physicaldeliveryofficename $ postofficebox $ postaladdress $
postalcode $ preferreddeliverymethod $ registeredaddress $
searchguide $ seealso $ st $ street $ telephonenumber $
teletexterminalidentifier $ telexnumber $ userpassword $
x121address )  )
objectclasses=( 2.5.6.5 NAME 'organizationalUnit' DESC 'Standard
ObjectClass' SUP 'top'  MUST ( objectclass $ ou )  MAY (
businesscategory $ description $ destinationindicator $
facsimiletelephonenumber $ internationalisdnnumber $ l $
physicaldeliveryofficename $ postofficebox $ postaladdress $
postalcode $ preferreddeliverymethod $ registeredaddress $
searchguide $ seealso $ st $ street $ telephonenumber $
teletexterminalidentifier $ telexnumber $ userpassword $
x121address )  )
objectclasses=( 2.5.6.6 NAME 'person' DESC 'Standard ObjectClass'
SUP 'top'  MUST ( objectclass $ sn $ cn )  MAY ( description $
seealso $ telephonenumber $ userpassword )  )

When you use the ldapsearch command to display the schema, the keywords are shown in capitals. They introduce the following:

• NAME introduces the name of the object class.

• DESC introduces a description of the object class.

• SUP introduces the name of the superior object class.

• MUST introduces the list of mandatory attributes for an object class. In dsserv.oc.conf mandatory attributes are identified by the keyword requires.

• MAY introduces the list of optional attributes for an object class. In dsserv.oc.conf mandatory attributes are identified by the keyword allows.

Displaying the Schema in the Admin Console

1. In the Admin Console, go to the Schema section.

   This section displays a list of object classes in hierarchical order, or in alphabetical order. Use the buttons below the pane to change the display mode.

   Click the folder icon for an object class to display its mandatory (M) and optional (O) attributes. With the hierarchical display, clicking on the folder icon of an object class will display any subclasses of that object class.

2. To display a list of attributes, click the Attributes list button.

   An attribute list window is displayed. It contains a five-column table that shows:

   • The name of the attribute

   • Alias names for this attribute (separated by commas)

   • The attribute syntax, identified by a keyword (see "Attribute Reference")

   • A unique OID for the attribute

   • Whether the attribute is a naming attribute (that is, an attribute that can be used in the distinguished name of an entry), and whether it is single-valued