2 ## This work is part of OpenLDAP Software <http://www.openldap.org/>.
4 ## Copyright 1998-2004 The OpenLDAP Foundation.
5 ## All rights reserved.
7 ## Redistribution and use in source and binary forms, with or without
8 ## modification, are permitted only as authorized by the OpenLDAP
11 ## A copy of this license is available in the file LICENSE in the
12 ## top-level directory of the distribution or, alternatively, at
13 ## <http://www.OpenLDAP.org/license.html>.
15 # This file is for informational purposes only
17 # These definitions are from Microsoft's Active Directory.
18 # They were gathered using the subschemaSubentry object of
19 # Windows 2000 Advanced Server Release Candidate 2.
21 # These object classes and attributes are from the standard
22 # OID arc 2.5.6 and from the directory pilot project RFC-1274.
23 # Many of them have been modified in Active Directory. To
24 # adhere to the standard, DO NOT USE THIS FILE. Instead, use
30 MUST (objectClass $ instanceType $ nTSecurityDescriptor $
32 MAY (cn $ description $ distinguishedName $ whenCreated $
33 whenChanged $ subRefs $ displayName $ uSNCreated $ isDeleted $
34 dSASignature $ objectVersion $ repsTo $ repsFrom $ memberOf $
35 uSNChanged $ uSNLastObjRem $ showInAdvancedViewOnly $
36 adminDisplayName $ proxyAddresses $ adminDescription $
37 extensionName $ uSNDSALastObjRemoved $ displayNamePrintable $
38 directReports $ wWWHomePage $ USNIntersite $ name $ objectGUID $
39 replPropertyMetaData $ replUpToDateVector $ flags $ revision $
40 wbemPath $ fSMORoleOwner $ systemFlags $ siteObjectBL $
41 serverReferenceBL $ nonSecurityMemberBL $ queryPolicyBL $
42 wellKnownObjects $ isPrivilegeHolder $ partialAttributeSet $
43 managedObjects $ partialAttributeDeletionList $ url $
44 lastKnownParent $ bridgeheadServerListBL $ netbootSCPBL $
45 isCriticalSystemObject $ frsComputerReferenceBL $
46 fRSMemberReferenceBL $ uSNSource $ fromEntry $
47 allowedChildClasses $ allowedChildClassesEffective $
48 allowedAttributes $ allowedAttributesEffective $
49 possibleInferiors $ canonicalName $ proxiedObjectName $
50 sDRightsEffective $ dSCorePropagationData $
51 otherWellKnownObjects $ mS-DS-ConsistencyGuid $
52 mS-DS-ConsistencyChildCount $ masteredBy $ createTimeStamp $
53 modifyTimeStamp $ subSchemaSubEntry ) )
60 MAY (searchGuide $ co ) )
67 MAY (st $ street $ searchGuide $ seeAlso ) )
74 MAY (l $ st $ street $ searchGuide $ businessCategory $ postalAddress $
75 postalCode $ postOfficeBox $ physicalDeliveryOfficeName $
76 telephoneNumber $ telexNumber $ teletexTerminalIdentifier $
77 facsimileTelephoneNumber $ x121Address $ internationalISDNNumber $
78 registeredAddress $ destinationIndicator $ preferredDeliveryMethod $
79 seeAlso $ userPassword ) )
82 NAME 'organizationalUnit'
86 MAY (c $ l $ st $ street $ searchGuide $ businessCategory $
87 postalAddress $ postalCode $ postOfficeBox $
88 physicalDeliveryOfficeName $ telephoneNumber $ telexNumber $
89 teletexTerminalIdentifier $ facsimileTelephoneNumber $ x121Address $
90 internationalISDNNumber $ registeredAddress $ destinationIndicator $
91 preferredDeliveryMethod $ seeAlso $ userPassword $ co $ countryCode $
92 desktopProfile $ defaultGroup $ managedBy $ uPNSuffixes $ gPLink $
93 gPOptions $ thumbnailLogo ) )
100 MAY (sn $ telephoneNumber $ seeAlso $ userPassword ) )
102 objectclass ( 2.5.6.7
103 NAME 'organizationalPerson'
106 MAY (c $ l $ st $ street $ o $ ou $ title $ postalAddress $ postalCode $
107 postOfficeBox $ physicalDeliveryOfficeName $ telexNumber $
108 teletexTerminalIdentifier $ facsimileTelephoneNumber $ x121Address $
109 internationalISDNNumber $ registeredAddress $ destinationIndicator $
110 preferredDeliveryMethod $ givenName $ initials $ generationQualifier $
111 otherTelephone $ otherPager $ co $ department $ company $
112 streetAddress $ otherHomePhone $ personalTitle $ homePostalAddress $
113 countryCode $ employeeID $ comment $ division $
114 otherFacsimileTelephoneNumber $ otherMobile $ primaryTelexNumber $
115 primaryInternationalISDNNumber $ mhsORAddress $ otherMailbox $
116 assistant $ ipPhone $ otherIpPhone $ mail $ manager $ homePhone $
117 mobile $ pager $ middleName $ thumbnailPhoto $ thumbnailLogo ) )
119 objectclass ( 2.5.6.8
120 NAME 'organizationalRole'
124 MAY (l $ st $ street $ ou $ postalAddress $ postalCode $ postOfficeBox $
125 physicalDeliveryOfficeName $ telephoneNumber $ telexNumber $
126 teletexTerminalIdentifier $ facsimileTelephoneNumber $ x121Address $
127 internationalISDNNumber $ registeredAddress $ destinationIndicator $
128 preferredDeliveryMethod $ roleOccupant $ seeAlso ) )
130 objectclass ( 2.5.6.9
135 MAY (o $ ou $ businessCategory $ owner $ seeAlso ) )
137 objectclass ( 2.5.6.10
138 NAME 'residentialPerson'
141 MAY (l $ st $ street $ ou $ title $ businessCategory $ postalAddress $
142 postalCode $ postOfficeBox $ physicalDeliveryOfficeName $ telexNumber $
143 teletexTerminalIdentifier $ facsimileTelephoneNumber $ x121Address $
144 internationalISDNNumber $ registeredAddress $ destinationIndicator $
145 preferredDeliveryMethod ) )
147 objectclass ( 2.5.6.11
148 NAME 'applicationProcess'
152 MAY (l $ ou $ seeAlso ) )
154 objectclass ( 2.5.6.12
155 NAME 'applicationEntity'
158 MUST (cn $ presentationAddress )
159 MAY (l $ o $ ou $ supportedApplicationContext $ seeAlso ) )
161 objectclass ( 2.5.6.13
163 SUP applicationEntity
165 MAY (knowledgeInformation ) )
167 objectclass ( 2.5.6.14
172 MAY (serialNumber $ l $ o $ ou $ owner $ seeAlso ) )
174 objectclass ( 2.5.6.16
175 NAME 'certificationAuthority'
178 MUST (cn $ cACertificate $ authorityRevocationList $
179 certificateRevocationList )
180 MAY (searchGuide $ teletexTerminalIdentifier $ supportedApplicationContext $
181 crossCertificatePair $ deltaRevocationList $ domainPolicyObject $
182 parentCA $ dNSHostName $ parentCACertificateChain $ domainID $
183 cAConnect $ cAWEBURL $ cRLObject $ cAUsages $ previousCACertificates $
184 pendingCACertificates $ previousParentCA $ pendingParentCA $
185 currentParentCA $ cACertificateDN $ certificateTemplates $
186 signatureAlgorithms $ enrollmentProviders ) )
188 objectclass ( 2.5.6.19
189 NAME 'cRLDistributionPoint'
193 MAY (authorityRevocationList $ certificateRevocationList $
194 deltaRevocationList $ cRLPartitionedRevocationList $
195 certificateAuthorityObject ) )
197 objectclass ( 2.5.20.1
201 MAY (extendedClassInfo $ extendedAttributeInfo $ dITContentRules $
202 attributeTypes $ objectClasses $ modifyTimeStamp ) )
204 #####################################################
206 attributetype ( 2.5.4.0
208 SYNTAX '1.3.6.1.4.1.1466.115.121.1.38'
209 NO-USER-MODIFICATION )
211 attributetype ( 2.5.4.2
212 NAME 'knowledgeInformation'
213 SYNTAX '1.2.840.113556.1.4.905' )
215 attributetype ( 2.5.4.3
217 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
220 attributetype ( 2.5.4.4
222 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
225 attributetype ( 2.5.4.5
227 SYNTAX '1.3.6.1.4.1.1466.115.121.1.44' )
229 attributetype ( 2.5.4.6
231 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
234 attributetype ( 2.5.4.7
236 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
239 attributetype ( 2.5.4.8
241 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
244 attributetype ( 2.5.4.9
246 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
249 attributetype ( 2.5.4.10
251 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
253 attributetype ( 2.5.4.11
255 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
257 attributetype ( 2.5.4.12
259 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
262 attributetype ( 2.5.4.13
264 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
266 attributetype ( 2.5.4.14
268 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
270 attributetype ( 2.5.4.15
271 NAME 'businessCategory'
272 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
274 attributetype ( 2.5.4.16
276 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
278 attributetype ( 2.5.4.17
280 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
283 attributetype ( 2.5.4.18
285 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
287 attributetype ( 2.5.4.19
288 NAME 'physicalDeliveryOfficeName'
289 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
292 attributetype ( 2.5.4.20
293 NAME 'telephoneNumber'
294 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
297 attributetype ( 2.5.4.21
299 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
301 attributetype ( 2.5.4.22
302 NAME 'teletexTerminalIdentifier'
303 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
305 attributetype ( 2.5.4.23
306 NAME 'facsimileTelephoneNumber'
307 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
310 attributetype ( 2.5.4.24
312 SYNTAX '1.3.6.1.4.1.1466.115.121.1.36' )
314 attributetype ( 2.5.4.25
315 NAME 'internationalISDNNumber'
316 SYNTAX '1.3.6.1.4.1.1466.115.121.1.36' )
318 attributetype ( 2.5.4.26
319 NAME 'registeredAddress'
320 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
322 attributetype ( 2.5.4.27
323 NAME 'destinationIndicator'
324 SYNTAX '1.3.6.1.4.1.1466.115.121.1.44' )
326 attributetype ( 2.5.4.28
327 NAME 'preferredDeliveryMethod'
328 SYNTAX '1.3.6.1.4.1.1466.115.121.1.27' )
330 attributetype ( 2.5.4.29
331 NAME 'presentationAddress'
332 SYNTAX '1.3.6.1.4.1.1466.115.121.1.43'
335 attributetype ( 2.5.4.30
336 NAME 'supportedApplicationContext'
337 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
339 attributetype ( 2.5.4.31
341 SYNTAX '1.3.6.1.4.1.1466.115.121.1.12' )
343 attributetype ( 2.5.4.32
345 SYNTAX '1.3.6.1.4.1.1466.115.121.1.12'
348 attributetype ( 2.5.4.33
350 SYNTAX '1.3.6.1.4.1.1466.115.121.1.12' )
352 attributetype ( 2.5.4.34
354 SYNTAX '1.3.6.1.4.1.1466.115.121.1.12' )
356 attributetype ( 2.5.4.35
358 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
360 attributetype ( 2.5.4.36
361 NAME 'userCertificate'
362 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
364 attributetype ( 2.5.4.37
366 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
368 attributetype ( 2.5.4.38
369 NAME 'authorityRevocationList'
370 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
372 attributetype ( 2.5.4.39
373 NAME 'certificateRevocationList'
374 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40'
377 attributetype ( 2.5.4.40
378 NAME 'crossCertificatePair'
379 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
381 attributetype ( 2.5.4.42
383 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
386 attributetype ( 2.5.4.43
388 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
391 attributetype ( 2.5.4.44
392 NAME 'generationQualifier'
393 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
396 attributetype ( 2.5.4.49
397 NAME 'distinguishedName'
398 SYNTAX '1.3.6.1.4.1.1466.115.121.1.12'
400 NO-USER-MODIFICATION )
402 attributetype ( 2.5.4.53
403 NAME 'deltaRevocationList'
404 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
406 attributetype ( 2.5.18.1
407 NAME 'createTimeStamp'
408 SYNTAX '1.3.6.1.4.1.1466.115.121.1.24'
410 NO-USER-MODIFICATION )
412 attributetype ( 2.5.18.2
413 NAME 'modifyTimeStamp'
414 SYNTAX '1.3.6.1.4.1.1466.115.121.1.24'
416 NO-USER-MODIFICATION )
418 attributetype ( 2.5.18.10
419 NAME 'subSchemaSubEntry'
420 SYNTAX '1.3.6.1.4.1.1466.115.121.1.12'
421 NO-USER-MODIFICATION )
423 attributetype ( 2.5.21.2
424 NAME 'dITContentRules'
425 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
426 NO-USER-MODIFICATION )
428 attributetype ( 2.5.21.5
429 NAME 'attributeTypes'
430 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
431 NO-USER-MODIFICATION )
433 attributetype ( 2.5.21.6
435 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
436 NO-USER-MODIFICATION )
438 attributetype ( 2.16.840.1.113730.3.1.34
440 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
443 attributetype ( 2.16.840.1.113730.3.1.35
444 NAME 'thumbnailPhoto'
445 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40'
448 attributetype ( 2.16.840.1.113730.3.1.36
450 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40'
453 attributetype ( 2.16.840.1.113730.3.140
454 NAME 'userSMIMECertificate'
455 SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
457 #####################################################
459 attributetype ( 0.9.2342.19200300.100.1.2
460 NAME 'textEncodedORAddress'
461 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
464 attributetype ( 0.9.2342.19200300.100.1.3
466 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
469 attributetype ( 0.9.2342.19200300.100.1.10
471 SYNTAX '1.3.6.1.4.1.1466.115.121.1.12'
474 attributetype ( 0.9.2342.19200300.100.1.20
476 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
479 attributetype ( 0.9.2342.19200300.100.1.25
481 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
484 attributetype ( 0.9.2342.19200300.100.1.41
486 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
489 attributetype ( 0.9.2342.19200300.100.1.42
491 SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'