# CDDL HEADER START
#
# The contents of this file are subject to the terms of the
# Common Development and Distribution License, Version 1.0 only
# (the "License").  You may not use this file except in compliance
# with the License.
#
# You can obtain a copy of the license at legal-notices/CDDLv1_0.txt
# or http://forgerock.org/license/CDDLv1.0.html.
# See the License for the specific language governing permissions
# and limitations under the License.
#
# When distributing Covered Code, include this CDDL HEADER in each
# file and include the License file at legal-notices/CDDLv1_0.txt.
# If applicable, add the following below this CDDL HEADER, with the
# fields enclosed by brackets "[]" replaced with your own identifying
# information:
#      Portions Copyright [yyyy] [name of copyright owner]
#
# CDDL HEADER END
#
#
#      Copyright 2008-2009 Sun Microsystems, Inc.
#
#
# This file contains schema definitions required for Solaris and
# OpenSolaris LDAP naming services
#
dn: cn=schema
objectClass: top
objectClass: ldapSubentry
objectClass: subschema
attributeTypes: ( 1.3.6.1.4.1.42.2.27.1.1.12 NAME 'nisNetIdUser'
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.1.1.13 NAME 'nisNetIdGroup'
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.1.1.14 NAME 'nisNetIdHost'
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.2.1.15 NAME 'rfc822mailMember'
  DESC 'rfc822 mail addresss of group member' SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 2.16.840.1.113730.3.1.30 NAME 'mgrpRFC822MailMember'
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.1 NAME 'SolarisProjectID' DESC
  'Unique ID for a Solaris Project entry' EQUALITY integerMatch SYNTAX
  1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.2 NAME 'SolarisProjectName' DESC
  'Name of a Solaris Project Entry' EQUALITY caseExactIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.3 NAME 'SolarisProjectAttr' DESC
  'Attributes of a Solaris Project entry' EQUALITY caseExactIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.4 NAME 'SolarisAttrKeyValue' DESC
  'Semi-colon separated key=value pairs of attributes' EQUALITY
  caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.5 NAME 'SolarisAuditAlways' DESC
  'Always audited attributes per-user' EQUALITY caseIgnoreIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.6 NAME 'SolarisAuditNever' DESC
  'Never audited attributes per-user' EQUALITY caseIgnoreIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.7 NAME 'SolarisAttrShortDesc' DESC
  'Short description about an entry, used by GUIs' EQUALITY caseIgnoreIA5Match
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris
  Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.8 NAME 'SolarisAttrLongDesc' DESC
  'Detail description about an entry' EQUALITY caseIgnoreIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.9 NAME 'SolarisKernelSecurityPolicy'
  DESC 'Solaris kernel security policy' EQUALITY caseIgnoreIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.10 NAME 'SolarisProfileType' DESC
  'Type of object defined in profile'EQUALITY caseIgnoreIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.11 NAME 'SolarisProfileId' DESC
  'Identifier of object defined in profile' EQUALITY caseIgnoreIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.12 NAME 'SolarisUserQualifier' DESC
  'Per-user login attributes' EQUALITY caseIgnoreIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.13 NAME 'SolarisAttrReserved1' DESC
  'Reserved for future use' EQUALITY caseIgnoreIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.14 NAME 'SolarisAttrReserved2'
  DESC 'Reserved for future use' EQUALITY caseIgnoreIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.15 NAME 'SolarisLDAPServers' DESC
  'LDAP Server address eg. 76.234.3.1:389' EQUALITY caseIgnoreIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.16 NAME 'SolarisSearchBaseDN' DESC
  'Search Base Distinguished Name' EQUALITY caseIgnoreMatch SYNTAX
  1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.17 NAME 'SolarisCacheTTL' DESC
  'TTL value for the Domain information eg. 1w, 2d, 3h, 10m, or 5s' EQUALITY
  caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE
  X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.18 NAME 'SolarisBindDN' DESC
  'DN to be used to bind to the directory as proxy' EQUALITY caseIgnoreMatch
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN
  'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.19 NAME 'SolarisBindPassword' DESC
  'Password for bindDN to authenticate to the directory' EQUALITY
  octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE
  X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.20 NAME 'SolarisAuthMethod' DESC
  'Authentication method to be used eg. "NS_LDAP_AUTH_NONE",
  "NS_LDAP_AUTH_SIMPLE" or "NS_LDAP_AUTH_SASL_CRAM_MD5"' EQUALITY
  caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
  X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.21 NAME 'SolarisTransportSecurity'
  DESC 'Transport Level Security method to be used eg. "NS_LDAP_SEC_NONE" or
  "NS_LDAP_SEC_SASL_TLS"' EQUALITY caseIgnoreIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.22 NAME 'SolarisCertificatePath'
  DESC 'Path to certificate file/device' EQUALITY caseExactIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.23 NAME 'SolarisCertificatePassword'
  DESC 'Password or PIN that grants access to certificate.' EQUALITY
  octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE
  X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.24 NAME 'SolarisDataSearchDN' DESC
  'Search DN for data lookup in ":(DN0),(DN1),..." format' EQUALITY
  caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN
  'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.25 NAME 'SolarisSearchScope' DESC
  'Scope to be used for search operations eg. "NS_LDAP_SCOPE_BASE",
  "NS_LDAP_SCOPE_ONELEVEL" or "NS_LDAP_SCOPE_SUBTREE"' EQUALITY
  caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE
  X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.26 NAME 'SolarisSearchTimeLimit'
  DESC 'Time Limit in seconds for search operations' EQUALITY integerMatch
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN
  'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.27 NAME 'SolarisPreferredServer'
  DESC 'Preferred LDAP Server address or network number' EQUALITY
  caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN
  'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.28 NAME 'SolarisPreferredServerOnly'
  DESC 'Boolean flag for use of preferredServer or not' EQUALITY booleanMatch
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE X-ORIGIN
  'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.29 NAME 'SolarisSearchReferral' DESC
  'referral chasing option eg. "NS_LDAP_NOREF" or "NS_LDAP_FOLLOWREF"'
  EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
  SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.30 NAME 'memberGid' DESC 'Posix
  Group Name' EQUALITY caseExactIA5Match SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.31 NAME 'SolarisBindTimeLimit' DESC
  'Time Limit in seconds for bind operations' EQUALITY integerMatch SYNTAX
  1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
# Solaris NIS+2LDAP
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.57 NAME 'nisplusTimeZone' DESC
  'tzone column from NIS+ timezone table' SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
  SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
# Solaris IDMap project
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.62 NAME 'winAccountName'
  DESC 'Windows user or group Name corresponding to a Unix user or group'
  EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.63 NAME 'sun-printer-bsdaddr'
  DESC 'Sets the server, print queue destination name and whether the client
  generates protocol extensions. "Solaris" specifies a Solaris print server
  extension. The value is represented by the following value: server ","
  destination ", Solaris".' SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
  SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.64 NAME 'sun-printer-kvp'
  DESC 'This attribute contains a set of key value pairs which may have
  meaning to the print subsystem or may be user defined. Each value is
  represented by the following: key "=" value.' SYNTAX
  1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.67 NAME 'ipTnetTemplateName'
  DESC 'Trusted Solaris network template template_name' SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
attributeTypes: ( 1.3.6.1.4.1.42.2.27.5.1.68 NAME 'ipTnetNumber'
  DESC 'Trusted Solaris network template ip_address' SYNTAX
  1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE X-ORIGIN 'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.1.2.5 NAME 'nisMailAlias' SUP top
  MUST cn MAY rfc822mailMember X-ORIGIN 'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.1.2.6 NAME 'nisNetId' SUP top
  MUST cn MAY ( nisNetIdUser $ nisNetIdGroup $ nisNetIdHost )
  X-ORIGIN 'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.5.2.1 NAME 'SolarisProject'
  SUP top STRUCTURAL MUST ( SolarisProjectID $ SolarisProjectName )
  MAY ( memberUid $ memberGid $ description $ SolarisProjectAttr )
  X-ORIGIN 'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.5.2.2 NAME 'SolarisAuditUser' SUP top
  AUXILIARY MAY ( SolarisAuditAlways $ SolarisAuditNever )
  X-ORIGIN 'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.5.2.3 NAME 'SolarisUserAttr'
  SUP top AUXILIARY DESC 'User attributes'
  MAY ( SolarisUserQualifier $ SolarisAttrReserved1 $
  SolarisAttrReserved2 $ SolarisAttrKeyValue ) X-ORIGIN 'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.5.2.4 NAME 'SolarisAuthAttr'
  SUP top STRUCTURAL DESC 'Authorizations data' MUST cn
  MAY ( SolarisAttrReserved1 $ SolarisAttrReserved2 $
  SolarisAttrShortDesc $ SolarisAttrLongDesc $ SolarisAttrKeyValue ) X-ORIGIN
  'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.5.2.5 NAME 'SolarisProfAttr'
  SUP top STRUCTURAL DESC 'Profiles data' MUST cn
  MAY ( SolarisAttrReserved1 $ SolarisAttrReserved2 $
  SolarisAttrLongDesc $ SolarisAttrKeyValue ) X-ORIGIN 'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.5.2.6 NAME 'SolarisExecAttr'
  SUP top AUXILIARY DESC 'Profiles execution attributes'
  MAY ( SolarisKernelSecurityPolicy $ SolarisProfileType $
  SolarisAttrReserved1 $ SolarisAttrReserved2 $
  SolarisProfileId $ SolarisAttrKeyValue ) X-ORIGIN 'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.5.2.7  NAME 'SolarisNamingProfile'
  SUP top STRUCTURAL DESC 'Solaris LDAP Naming client profile objectClass'
  MUST ( cn $ SolarisLDAPServers $ SolarisSearchBaseDN )
  MAY ( SolarisBindDN $ SolarisBindPassword $ SolarisAuthMethod $
  SolarisTransportSecurity $ SolarisCertificatePath $
  SolarisCertificatePassword $ SolarisDataSearchDN $
  SolarisSearchScope $ SolarisSearchTimeLimit $
  SolarisPreferredServer $ SolarisPreferredServerOnly $
  SolarisCacheTTL $ SolarisSearchReferral $ SolarisBindTimeLimit )
  X-ORIGIN 'Solaris Specific' )
objectClasses: ( 2.16.840.1.113730.3.2.4 NAME 'mailGroup' SUP top
  STRUCTURAL MUST mail MAY ( cn $ mgrpRFC822MailMember ) X-ORIGIN
  'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.5.2.14 NAME 'sunPrinter'
  DESC 'Sun printer information' SUP top AUXILIARY MUST printer-name
  MAY (sun-printer-bsdaddr $ sun-printer-kvp) X-ORIGIN 'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.5.2.12 NAME 'nisplusTimeZoneData'
  DESC 'NIS+ timezone table data' SUP top STRUCTURAL MUST cn
  MAY ( nisplusTimeZone $ description ) X-ORIGIN 'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.5.2.8 NAME 'ipTnetTemplate'
  DESC 'Object class for TSOL network templates' SUP top STRUCTURAL
  MUST ipTnetTemplateName MAY SolarisAttrKeyValue X-ORIGIN
  'Solaris Specific' )
objectClasses: ( 1.3.6.1.4.1.42.2.27.5.2.9 NAME 'ipTnetHost'
  DESC 'Associates an IP address or wildcard with a TSOL template_name'
  SUP top AUXILIARY MUST ipTnetNumber X-ORIGIN 'Solaris Specific' )