HP-UX Directory Server 8.1 schema reference
DN of the root).This attribute permits a client contacting a server to choose suitable base objects
for searching.
1.3.6.1.4.1.1466.101.120.5OID
DNSyntax
MultivaluedMulti- or Single-Valued
RFC 2252Defined in
4.1.14 nsRole
This attribute is a computed attribute that is not stored with the entry itself. It identifies to which
roles an entry belongs.
2.16.840.1.113730.3.1.574OID
DNSyntax
MultivaluedMulti- or Single-Valued
Directory ServerDefined in
4.1.15 nsRoleDn
This attribute contains the distinguished name of all roles that apply to an entry. Membership
of a managed role is granted upon an entry by adding the role’s DN to the entry’s nsRoleDN
attribute. For example:
dn: cn=staff,ou=employees,dc=example,dc=com
objectclass: LDAPsubentry
objectclass: nsRoleDefinition
objectclass: nsSimpleRoleDefinition
objectclass: nsManagedRoleDefinition
dn: cn=userA,ou=users,ou=employees,dc=example,dc=com
objectclass: top
objectclass: person
sn: uA
userpassword: secret
nsroledn: cn=staff,ou=employees,dc=example,dc=com
A nested role specifies containment of one or more roles of any type. In that case, nsRoleDN
defines the DN of the contained roles. For example:
dn: cn=everybody,ou=employees,dc=example,dc=com
objectclass: LDAPsubentry
objectclass: nsRoleDefinition
objectclass: nsComplexRoleDefinition
objectclass: nsNestedRoleDefinition
nsroledn: cn=manager,ou=employees,dc=example,dc=com
nsroledn: cn=staff,ou=employees,dc=example,dc=com
2.16.840.1.113730.3.1.575OID
DNSyntax
MultivaluedMulti- or Single-Valued
Directory ServerDefined in
96 Operational attributes, special attributes, and special object classes