2 ## schema file for OpenLDAP 2.0.x
3 ## Schema for storing Samba's smbpasswd file in LDAP
4 ## OIDs are owned by the Samba Team
6 ## Prerequisite schemas - uid & uidNumber (nis.schema)
8 ## 1.3.1.5.1.4.1.7165.2.1.x - attributetypes
9 ## 1.3.1.5.1.4.1.7165.2.2.x - objectclasses
12 attributetype ( 1.3.6.1.4.1.7165.2.1.1 NAME 'lmPassword'
13 DESC 'LanManager Passwd'
14 EQUALITY caseIgnoreIA5Match
15 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
17 attributetype ( 1.3.6.1.4.1.7165.2.1.2 NAME 'ntPassword'
19 EQUALITY caseIgnoreIA5Match
20 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
22 attributetype ( 1.3.6.1.4.1.7165.2.1.3 NAME 'pwdLastSet'
24 EQUALITY caseIgnoreIA5Match
25 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
27 attributetype ( 1.3.6.1.4.1.7165.2.1.4 NAME 'acctFlags'
29 EQUALITY caseIgnoreIA5Match
30 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{16} SINGLE-VALUE )
32 attributetype ( 1.3.6.1.4.1.7165.2.1.5 NAME 'logonTime'
34 EQUALITY caseIgnoreIA5Match
35 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
37 attributetype ( 1.3.6.1.4.1.7165.2.1.6 NAME 'logoffTime'
39 EQUALITY caseIgnoreIA5Match
40 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
42 attributetype ( 1.3.6.1.4.1.7165.2.1.7 NAME 'kickoffTime'
44 EQUALITY caseIgnoreIA5Match
45 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
47 attributetype ( 1.3.6.1.4.1.7165.2.1.8 NAME 'pwdCanChange'
48 DESC 'NT pwdCanChange'
49 EQUALITY caseIgnoreIA5Match
50 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
52 attributetype ( 1.3.6.1.4.1.7165.2.1.9 NAME 'pwdMustChange'
53 DESC 'NT pwdMustChange'
54 EQUALITY caseIgnoreIA5Match
55 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
57 attributetype ( 1.3.6.1.4.1.7165.2.1.10 NAME 'homeDrive'
59 EQUALITY caseIgnoreIA5Match
60 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{4} SINGLE-VALUE )
62 attributetype ( 1.3.6.1.4.1.7165.2.1.11 NAME 'scriptPath'
64 EQUALITY caseIgnoreIA5Match
65 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
67 attributetype ( 1.3.6.1.4.1.7165.2.1.12 NAME 'profilePath'
69 EQUALITY caseIgnoreIA5Match
70 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
72 attributetype ( 1.3.6.1.4.1.7165.2.1.13 NAME 'userWorkstations'
73 DESC 'userWorkstations'
74 EQUALITY caseIgnoreIA5Match
75 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
77 attributetype ( 1.3.6.1.4.1.7165.2.1.14 NAME 'rid'
79 EQUALITY caseIgnoreIA5Match
80 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
82 attributetype ( 1.3.6.1.4.1.7165.2.1.15 NAME 'primaryGroupID'
84 EQUALITY caseIgnoreIA5Match
85 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
87 attributetype ( 1.3.6.1.4.1.7165.2.1.16 NAME 'displayName'
88 DESC 'Friendly User Name'
89 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
92 ## The smbPasswordEntry objectclass has been depreciated in favor of the
93 ## sambaAccount objectclass
95 #objectclass ( 1.3.1.5.1.4.1.7165.2.2.1 NAME 'smbPasswordEntry' SUP top AUXILIARY
96 # DESC 'Samba smbpasswd entry'
97 # MUST ( uid $ uidNumber )
98 # MAY ( lmPassword $ ntPassword $ pwdLastSet $ acctFlags ))
100 objectclass ( 1.3.1.5.1.4.1.7165.2.2.2 NAME 'sambaAccount' SUP top STRUCTURAL
102 MUST ( uid $ uidNumber )
103 MAY ( cn $ gidNumber $ lmPassword $ ntPassword $ pwdLastSet $ logonTime $
104 logoffTime $ kickoffTime $ pwdCanChange $ pwdMustChange $ acctFlags $
105 displayName $ homeDirectory $ homeDrive $ scriptPath $ profilePath $
106 description $ userWorkstations $ rid $ primaryGroupID ))