ldapschema.1 (2010 09)
l
ldapschema(1) ldapschema(1)
EXAMPLES
To query the status of RFC 3712 schema on the HP-UX Directory Server 8.1, execute the following com-
mand:
ldapschema -q /etc/opt/ldapux/schema/rfc3712.xml -T hpds -V 8.1
Note that LDAP directory server version number bears no effect unless also specified in the XML files
being processed. Version specification must follow the same format as version specification used in the
/etc/opt/ldapux/schema/rfc3712.xml
and /etc/opt/ldapux/schema/map-rules.xml
files.
To extend Windows 2000 Active Directory Server with custom
SampleA schema, follow the following pro-
cedure:
1. Create schema definition file containing attribute type and object class definitions for
SampleA
schema (i.e. /etc/opt/ldapux/schema/sampleA.xml
).
2. Recommended : Query the current status of
SampleA schema on the server:
ldapschema -q /etc/opt/ldapux/schema/sampleA.xml -T ads -V 2000
-D "<binddn>" -j /tmp/secret.txt
3. Based on the results produced by Step 2, correct any invalid definitions.
4. Extend the Active Directory Server schema with new
SampleA schema elements by executing the fol-
lowing command:
ldapschema -e /etc/opt/ldapux/schema/sampleA.xml -T ads -V 2000
-D "<binddn>" -j /tmp/secret.txt
Note that LDAP directory server version number bears no effect unless also specified in the XML files
being processed. Version specification must follow the same format as version specification used in the
/etc/opt/ldapux/schema/sampleA.xml
, /etc/opt/ldapux/schema/schema-ads.xml
,
and
/etc/opt/ldapux/schema/map-rules.xml
files.
RETURN VALUES
The
ldapschema utility returns the following values:
0 Successful completion.
1 Failure.
In addition,
ldapschema prints to STDOUT the overall status of the schema being queried or extended.
Based on the schema status, any combination of the following messages is displayed. Detailed explana-
tions of each message are specified in the square brackets following the message body text.
Schema Status Messages
SCHEMA_NEW: file "<schema>" contains attribute types and object classes that are not defined in
the LDAP server schema.
[The
SCHEMA_NEW message indicates all attribute types and object classes defined in the <schema> file
are new to the LDAP directory server. The SCHEMA_NEW message indicates none of the specified
definitions are currently installed in the LDAP server schema.]
----------------------------------------------------------------------
SCHEMA_EXISTS: All attribute types and object classes defined in file "<schema>" are already part of
the LDAP server schema.
[The
SCHEMA_EXISTS message indicates the schema specified in the <schema> file is already installed
on the LDAP directory server. All attribute types and object classes defined in the <schema> file are
already part of the schema on the LDAP directory server. Only attribute types and object classes with
new and unique numeric oids and names can be added to the LDAP server schema. Check the messages
containing ATTRIB_FOUND and OBJECT_FOUND described below for details. Since the definitions
specified in the <schema> file are already installed in the LDAP server schema, the ldapschema utility
will make no changes to the LDAP directory server schema.]
----------------------------------------------------------------------
SCHEMA_FOUND: subset of attribute types and/or object classes defined in file "<schema>" are already
part of the LDAP server schema.
12 Hewlett-Packard Company − 12 − HP-UX 11i v3: June 2010 Web Release