-
-
Notifications
You must be signed in to change notification settings - Fork 1
/
MIT-kerberos.ldif
124 lines (124 loc) · 7.93 KB
/
MIT-kerberos.ldif
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
dn: cn=MIT-kerberos
objectClass: olcSchemaConfig
cn: MIT-kerberos
olcAttributeTypes: {0}( 2.16.840.1.113719.1.301.4.1.1 NAME 'krbPrincipalName'
EQUALITY caseExactIA5Match SUBSTR caseExactSubstringsMatch SYNTAX 1.3.6.1.4.1
.1466.115.121.1.26 )
olcAttributeTypes: {1}( 2.16.840.1.113719.1.301.4.3.1 NAME 'krbPrincipalType'
EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
olcAttributeTypes: {2}( 2.16.840.1.113719.1.301.4.5.1 NAME 'krbUPEnabled' DESC
'Boolean' SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )
olcAttributeTypes: {3}( 2.16.840.1.113719.1.301.4.6.1 NAME 'krbPrincipalExpira
tion' EQUALITY generalizedTimeMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SING
LE-VALUE )
olcAttributeTypes: {4}( 2.16.840.1.113719.1.301.4.8.1 NAME 'krbTicketFlags' EQ
UALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
olcAttributeTypes: {5}( 2.16.840.1.113719.1.301.4.9.1 NAME 'krbMaxTicketLife'
EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
olcAttributeTypes: {6}( 2.16.840.1.113719.1.301.4.10.1 NAME 'krbMaxRenewableAg
e' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
olcAttributeTypes: {7}( 2.16.840.1.113719.1.301.4.14.1 NAME 'krbRealmReference
s' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
olcAttributeTypes: {8}( 2.16.840.1.113719.1.301.4.15.1 NAME 'krbLdapServers' E
QUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
olcAttributeTypes: {9}( 2.16.840.1.113719.1.301.4.17.1 NAME 'krbKdcServers' EQ
UALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
olcAttributeTypes: {10}( 2.16.840.1.113719.1.301.4.18.1 NAME 'krbPwdServers' E
QUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
olcAttributeTypes: {11}( 2.16.840.1.113719.1.301.4.24.1 NAME 'krbHostServer' E
QUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
olcAttributeTypes: {12}( 2.16.840.1.113719.1.301.4.25.1 NAME 'krbSearchScope'
EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
olcAttributeTypes: {13}( 2.16.840.1.113719.1.301.4.26.1 NAME 'krbPrincipalRefe
rences' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
)
olcAttributeTypes: {14}( 2.16.840.1.113719.1.301.4.28.1 NAME 'krbPrincNamingAt
tr' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALU
E )
olcAttributeTypes: {15}( 2.16.840.1.113719.1.301.4.29.1 NAME 'krbAdmServers' E
QUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
olcAttributeTypes: {16}( 2.16.840.1.113719.1.301.4.30.1 NAME 'krbMaxPwdLife' E
QUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
olcAttributeTypes: {17}( 2.16.840.1.113719.1.301.4.31.1 NAME 'krbMinPwdLife' E
QUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
olcAttributeTypes: {18}( 2.16.840.1.113719.1.301.4.32.1 NAME 'krbPwdMinDiffCha
rs' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
olcAttributeTypes: {19}( 2.16.840.1.113719.1.301.4.33.1 NAME 'krbPwdMinLength'
EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
olcAttributeTypes: {20}( 2.16.840.1.113719.1.301.4.34.1 NAME 'krbPwdHistoryLen
gth' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE
)
olcAttributeTypes: {21}( 2.16.840.1.113719.1.301.4.36.1 NAME 'krbPwdPolicyRefe
rence' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 S
INGLE-VALUE )
olcAttributeTypes: {22}( 2.16.840.1.113719.1.301.4.37.1 NAME 'krbPasswordExpir
ation' EQUALITY generalizedTimeMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SIN
GLE-VALUE )
olcAttributeTypes: {23}( 2.16.840.1.113719.1.301.4.39.1 NAME 'krbPrincipalKey'
EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 )
olcAttributeTypes: {24}( 2.16.840.1.113719.1.301.4.40.1 NAME 'krbTicketPolicyR
eference' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.1
2 SINGLE-VALUE )
olcAttributeTypes: {25}( 2.16.840.1.113719.1.301.4.41.1 NAME 'krbSubTrees' EQU
ALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
olcAttributeTypes: {26}( 2.16.840.1.113719.1.301.4.42.1 NAME 'krbDefaultEncSal
tTypes' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
olcAttributeTypes: {27}( 2.16.840.1.113719.1.301.4.43.1 NAME 'krbSupportedEncS
altTypes' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
olcAttributeTypes: {28}( 2.16.840.1.113719.1.301.4.44.1 NAME 'krbPwdHistory' E
QUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 )
olcAttributeTypes: {29}( 2.16.840.1.113719.1.301.4.45.1 NAME 'krbLastPwdChange
' EQUALITY generalizedTimeMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-V
ALUE )
olcAttributeTypes: {30}( 2.16.840.1.113719.1.301.4.46.1 NAME 'krbMKey' EQUALIT
Y octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 )
olcAttributeTypes: {31}( 2.16.840.1.113719.1.301.4.47.1 NAME 'krbPrincipalAlia
ses' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
olcAttributeTypes: {32}( 2.16.840.1.113719.1.301.4.48.1 NAME 'krbLastSuccessfu
lAuth' EQUALITY generalizedTimeMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SIN
GLE-VALUE )
olcAttributeTypes: {33}( 2.16.840.1.113719.1.301.4.49.1 NAME 'krbLastFailedAut
h' EQUALITY generalizedTimeMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-
VALUE )
olcAttributeTypes: {34}( 2.16.840.1.113719.1.301.4.50.1 NAME 'krbLoginFailedCo
unt' EQUALITY integerMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE
)
olcAttributeTypes: {35}( 2.16.840.1.113719.1.301.4.51.1 NAME 'krbExtraData' EQ
UALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 )
olcAttributeTypes: {36}( 2.16.840.1.113719.1.301.4.52.1 NAME 'krbObjectReferen
ces' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
olcAttributeTypes: {37}( 2.16.840.1.113719.1.301.4.53.1 NAME 'krbPrincContaine
rRef' EQUALITY distinguishedNameMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
olcObjectClasses: {0}( 2.16.840.1.113719.1.301.6.1.1 NAME 'krbContainer' SUP t
op STRUCTURAL MUST cn )
olcObjectClasses: {1}( 2.16.840.1.113719.1.301.6.2.1 NAME 'krbRealmContainer'
SUP top STRUCTURAL MUST cn MAY ( krbMKey $ krbUPEnabled $ krbSubTrees $ krbSe
archScope $ krbLdapServers $ krbSupportedEncSaltTypes $ krbDefaultEncSaltType
s $ krbTicketPolicyReference $ krbKdcServers $ krbPwdServers $ krbAdmServers
$ krbPrincNamingAttr $ krbPwdPolicyReference $ krbPrincContainerRef ) )
olcObjectClasses: {2}( 2.16.840.1.113719.1.301.6.3.1 NAME 'krbService' SUP top
ABSTRACT MUST cn MAY ( krbHostServer $ krbRealmReferences ) )
olcObjectClasses: {3}( 2.16.840.1.113719.1.301.6.4.1 NAME 'krbKdcService' SUP
krbService STRUCTURAL )
olcObjectClasses: {4}( 2.16.840.1.113719.1.301.6.5.1 NAME 'krbPwdService' SUP
krbService STRUCTURAL )
olcObjectClasses: {5}( 2.16.840.1.113719.1.301.6.8.1 NAME 'krbPrincipalAux' SU
P top AUXILIARY MAY ( krbPrincipalName $ krbUPEnabled $ krbPrincipalKey $ krb
TicketPolicyReference $ krbPrincipalExpiration $ krbPasswordExpiration $ krbP
wdPolicyReference $ krbPrincipalType $ krbPwdHistory $ krbLastPwdChange $ krb
PrincipalAliases $ krbLastSuccessfulAuth $ krbLastFailedAuth $ krbLoginFailed
Count $ krbExtraData ) )
olcObjectClasses: {6}( 2.16.840.1.113719.1.301.6.9.1 NAME 'krbPrincipal' SUP t
op STRUCTURAL MUST krbPrincipalName MAY krbObjectReferences )
olcObjectClasses: {7}( 2.16.840.1.113719.1.301.6.11.1 NAME 'krbPrincRefAux' SU
P top AUXILIARY MAY krbPrincipalReferences )
olcObjectClasses: {8}( 2.16.840.1.113719.1.301.6.13.1 NAME 'krbAdmService' SUP
krbService STRUCTURAL )
olcObjectClasses: {9}( 2.16.840.1.113719.1.301.6.14.1 NAME 'krbPwdPolicy' SUP
top STRUCTURAL MUST cn MAY ( krbMaxPwdLife $ krbMinPwdLife $ krbPwdMinDiffCha
rs $ krbPwdMinLength $ krbPwdHistoryLength ) )
olcObjectClasses: {10}( 2.16.840.1.113719.1.301.6.16.1 NAME 'krbTicketPolicyAu
x' SUP top AUXILIARY MAY ( krbTicketFlags $ krbMaxTicketLife $ krbMaxRenewabl
eAge ) )
olcObjectClasses: {11}( 2.16.840.1.113719.1.301.6.17.1 NAME 'krbTicketPolicy'
SUP top STRUCTURAL MUST cn )