mirror of https://github.com/tLDP/LDP
269 lines
10 KiB
Plaintext
269 lines
10 KiB
Plaintext
<SECT1 ID="SCHEMAS"><TITLE>Ldap schema's</TITLE>
|
|
<PARA>This is a proposition of a schema that can be used to accommodate all the data needed for the previously listed functions. It should under no circumstances be regarded as authoritative. It is an example that should serve it's purpose, but it is likely you have to adapt it to match your specific needs.</PARA>
|
|
<PARA>Because it has been a lot of work (for me, maybe it's out there but I don't know where?) to find out the specific meaning of each entry, and what information it should contain, I'll try to do this as well. It should be noted, however, that it doesn't fit together seamlessly. The Microsoft Addressbook does not seem to use some of the fields it is presenting. I suspect that for the "Title", "Nickname", "Home City", "Home State/Province", "Home ZIP Code", "Home Country/Region" and "Home Web Page" entries no information is requested. For the "Personal", "Netmeeting" and "Digital IDs" I didn't yet bother to figure out how it should be put in the Ldap database. Any information is welcome. The netscape address book has a similar problem. When a record is copied from an LDap directory to a local address book, some of the fields are lost. As the nature of an company-wide addressbook should discourage users to copy addresses locally, this is not a big problem though. But netscape address book has another little oddity though. In a normal address record, the Ldap attribute associated with "Nickname" is <EMPHASIS>xmozillanickname</EMPHASIS>. When searching for addresses however, the associated attribute is simple <EMPHASIS>nickname</EMPHASIS>. That is the reason why the nickname entry shows up twice in the schema.</PARA>
|
|
<PARA>This schema is known to work with Microsoft Outlook 2000, and Netscape 4.73. If you find I'm wrong about a description, function, or neccessity of an entry, please do let me know!</PARA>
|
|
<PARA>The schema file that represent this schema can be found in <XREF LINKEND="FILE-SCHEMA">.</PARA>
|
|
<PARA><TABLE><TITLE>Ldap attributes and objectclasses - quick description</TITLE>
|
|
<TGROUP COLS="4"><THEAD><ROW><ENTRY>Function</ENTRY>
|
|
<ENTRY>Objectclass</ENTRY>
|
|
<ENTRY>Attributes</ENTRY>
|
|
<ENTRY>Description</ENTRY>
|
|
<ENTRY>(Default) value</ENTRY></ROW></THEAD>
|
|
<TBODY><ROW><ENTRY MOREROWS="17" VALIGN="TOP">User accounts</ENTRY>
|
|
<ENTRY MOREROWS="1">top</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>default</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>ou</ENTRY>
|
|
<ENTRY>Organizational Unit</ENTRY>
|
|
<ENTRY>Users</ENTRY></ROW>
|
|
<ROW><ENTRY MOREROWS="3" VALIGN="TOP">person</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>Owner is a person</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>uid</ENTRY>
|
|
<ENTRY>unix login name</ENTRY>
|
|
<ENTRY>foo</ENTRY></ROW>
|
|
<ROW><ENTRY>cn</ENTRY>
|
|
<ENTRY>Common Name</ENTRY>
|
|
<ENTRY>Foo Bar</ENTRY></ROW>
|
|
<ROW><ENTRY>sn</ENTRY>
|
|
<ENTRY>Surname</ENTRY>
|
|
<ENTRY>Bar</ENTRY></ROW>
|
|
<ROW><ENTRY>account</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>Owner has an account</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY MOREROWS="4" VALIGN="TOP">posixaccount</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>Owner has a Unix account</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>uidNumber</ENTRY>
|
|
<ENTRY>uid</ENTRY>
|
|
<ENTRY>513</ENTRY></ROW>
|
|
<ROW><ENTRY>gidNumber</ENTRY>
|
|
<ENTRY>gid</ENTRY>
|
|
<ENTRY>100</ENTRY></ROW>
|
|
<ROW><ENTRY>homedirectory</ENTRY>
|
|
<ENTRY>Home directory</ENTRY>
|
|
<ENTRY>/home/users/foo</ENTRY></ROW>
|
|
<ROW><ENTRY>userpassword</ENTRY>
|
|
<ENTRY>unix password</ENTRY>
|
|
<ENTRY>S3cr3t</ENTRY></ROW>
|
|
<ROW><ENTRY MOREROWS="5" VALIGN="TOP">sambaaccount</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>Owner has a samba account</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>ntuid</ENTRY>
|
|
<ENTRY>Unknown</ENTRY>
|
|
<ENTRY>uid</ENTRY></ROW>
|
|
<ROW><ENTRY>rid</ENTRY>
|
|
<ENTRY>Unknown</ENTRY>
|
|
<ENTRY>uidnumber</ENTRY></ROW>
|
|
<ROW><ENTRY>lmpassword</ENTRY>
|
|
<ENTRY>Lanman password hash</ENTRY>
|
|
<ENTRY>Unused</ENTRY></ROW>
|
|
<ROW><ENTRY>ntpasswd</ENTRY>
|
|
<ENTRY>NT password hash</ENTRY>
|
|
<ENTRY>Unused</ENTRY></ROW>
|
|
<ROW><ENTRY>loginshell</ENTRY>
|
|
<ENTRY>Users shell</ENTRY>
|
|
<ENTRY>/bin/pleurop</ENTRY></ROW>
|
|
<ROW><ENTRY MOREROWS="6">Machine accounts</ENTRY>
|
|
<ENTRY MOREROWS="1">top</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>default</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>ou</ENTRY>
|
|
<ENTRY>Organizational Unit</ENTRY>
|
|
<ENTRY>Machines</ENTRY></ROW>
|
|
<ROW><ENTRY MOREROWS="4">posixaccount</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>Owner has a unix account</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>uid</ENTRY>
|
|
<ENTRY>login name</ENTRY>
|
|
<ENTRY>speed$</ENTRY></ROW>
|
|
<ROW><ENTRY>uidnumber</ENTRY>
|
|
<ENTRY>unix uid</ENTRY>
|
|
<ENTRY>514</ENTRY></ROW>
|
|
<ROW><ENTRY>gidnumber</ENTRY>
|
|
<ENTRY>gid</ENTRY>
|
|
<ENTRY>100</ENTRY></ROW>
|
|
<ROW><ENTRY>homedirectory</ENTRY>
|
|
<ENTRY>Home directory</ENTRY>
|
|
<ENTRY>Unused</ENTRY></ROW>
|
|
<ROW><ENTRY MOREROWS="25" VALIGN="TOP">Microsoft Address Book</ENTRY>
|
|
<ENTRY MOREROWS="1">top</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>default</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>ou</ENTRY>
|
|
<ENTRY>Organizational Unit</ENTRY>
|
|
<ENTRY>Addressbook</ENTRY></ROW>
|
|
<ROW><ENTRY MOREROWS="23">microsoftaddressbook</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>Owner has Microsofts Addressbook properties</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>cn</ENTRY>
|
|
<ENTRY>Name</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>c</ENTRY>
|
|
<ENTRY>Business country</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>department</ENTRY>
|
|
<ENTRY>Business department</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>facsimiletelephonenumber</ENTRY>
|
|
<ENTRY>Business fax number</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>givenname</ENTRY>
|
|
<ENTRY>First name</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>homephone</ENTRY>
|
|
<ENTRY>Home phone number</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>homepostaladdress</ENTRY>
|
|
<ENTRY>Home postal address</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>info</ENTRY>
|
|
<ENTRY>Notes</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>initials</ENTRY>
|
|
<ENTRY>Initials</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>l</ENTRY>
|
|
<ENTRY>Business city</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>mail</ENTRY>
|
|
<ENTRY>Email address</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>mobile</ENTRY>
|
|
<ENTRY>Home cellphone number</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>organizationname</ENTRY>
|
|
<ENTRY>Company name</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>otherfacsimiletelephonenumber</ENTRY>
|
|
<ENTRY>Home fax number</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>otherpager</ENTRY>
|
|
<ENTRY>Business pager number</ENTRY>
|
|
<ENTRY>can be "pager" too?</ENTRY></ROW>
|
|
<ROW><ENTRY>physicaldeliveryofficename</ENTRY>
|
|
<ENTRY>Location of office at work</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>postaladdress</ENTRY>
|
|
<ENTRY>Business postal address</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>postalcode</ENTRY>
|
|
<ENTRY>Business postal code</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>sn</ENTRY>
|
|
<ENTRY>Last Name</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>st</ENTRY>
|
|
<ENTRY>Business state/province</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>telephonenumber</ENTRY>
|
|
<ENTRY>Business phone number</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>title</ENTRY>
|
|
<ENTRY>Job title</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>url</ENTRY>
|
|
<ENTRY>Business web page</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY MOREROWS="25" VALIGN="TOP">Netscape Address Book</ENTRY>
|
|
<ENTRY MOREROWS="1">top</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>default</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>ou</ENTRY>
|
|
<ENTRY>Organizational Unit</ENTRY>
|
|
<ENTRY>Addressbook</ENTRY></ROW>
|
|
<ROW><ENTRY MOREROWS="23">netscapeaddressbook</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>Owner has Netscape's properties</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>cn</ENTRY>
|
|
<ENTRY>Name</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>cellphone</ENTRY>
|
|
<ENTRY>Cellphone number</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>countryname</ENTRY>
|
|
<ENTRY>Country</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>description</ENTRY>
|
|
<ENTRY>Description</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>facsimiletelephonenumber</ENTRY>
|
|
<ENTRY>Fax number</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>givenname</ENTRY>
|
|
<ENTRY>First Name</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>homephone</ENTRY>
|
|
<ENTRY>Home phone number</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>homeurl</ENTRY>
|
|
<ENTRY>Personal web page</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>locality</ENTRY>
|
|
<ENTRY>Home city</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>mail</ENTRY>
|
|
<ENTRY>Email address</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>nickname</ENTRY>
|
|
<ENTRY>Nickname</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>o</ENTRY>
|
|
<ENTRY>Company</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>ou</ENTRY>
|
|
<ENTRY>Department</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>pagerphone</ENTRY>
|
|
<ENTRY>Pager number</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>postalcode</ENTRY>
|
|
<ENTRY>Home postal code</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>sn</ENTRY>
|
|
<ENTRY>Last name</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>st</ENTRY>
|
|
<ENTRY>State</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>streetaddress</ENTRY>
|
|
<ENTRY>Home postal address</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>telephonenumber</ENTRY>
|
|
<ENTRY>Business phone number</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>title</ENTRY>
|
|
<ENTRY>Title</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>xmozillaanyphone</ENTRY>
|
|
<ENTRY>Business phone number</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>xmozillanickname</ENTRY>
|
|
<ENTRY>Nickname</ENTRY>
|
|
<ENTRY>Same as nickname</ENTRY></ROW>
|
|
<ROW><ENTRY>xmozillausehtmlmail</ENTRY>
|
|
<ENTRY>Client uses html mail</ENTRY>
|
|
<ENTRY>TRUE</ENTRY></ROW>
|
|
<ROW><ENTRY MOREROWS="1" VALIGN="TOP">Netscape roaming access</ENTRY>
|
|
<ENTRY MOREROWS="1">top</ENTRY>
|
|
<ENTRY></ENTRY>
|
|
<ENTRY>default</ENTRY>
|
|
<ENTRY></ENTRY></ROW>
|
|
<ROW><ENTRY>ou</ENTRY>
|
|
<ENTRY>Organizational Unit</ENTRY>
|
|
<ENTRY>Roaming</ENTRY></ROW></TBODY></TGROUP></TABLE></PARA>
|
|
<NOTE><PARA>Netscape and Microsoft use the addressbook entries in a slightly different way. Netscape stores a postal address in the streetaddress entry in a base64 encoded string, while Microsoft uses the postaladdress entry. However, when a streetaddress entry is present, Microsoft uses this instead of the postaladdress entry, but it's value is stored plaintext, not base64 encoded. So you cannot use them at the same time.</PARA></NOTE>
|
|
<PARA>More information about Ldap schema's in general can be found on <ULINK URL="http://ldap.hklc.com/">Linux Center</ULINK>. I found a document describing Microsoft Addressbook's properties on the <ULINK URL="http://msdn.microsoft.com/library/psdk/adsi/gluser_4437.htm">Microsoft Developers Network</ULINK>.</PARA>
|
|
<PARA>Beware, the description given on the Microsoft page doesn't match the fields where the content shows up in address book. Also, not all fields in address book contain information, but if the listed keys don't work I wouldn't know which keys <EMPHASIS>do</EMPHASIS> work.</PARA></SECT1>
|