Chapter 2. Directory Server Attribute Reference

2.1. abstract
2.2. accessTo
2.3. administratorContactInfo
2.4. adminRole
2.5. adminUrl
2.6. aliasedObjectName
2.7. associatedDomain
2.8. associatedName
2.9. attributeTypes
2.10. audio
2.11. authorCn
2.12. authorityRevocationList
2.13. authorSn
2.14. automountInformation
2.15. bootFile
2.16. bootParameter
2.17. buildingName
2.18. businessCategory
2.19. c (countryName)
2.20. cACertificate
2.21. carLicense
2.22. certificateRevocationList
2.23. cn (commonName)
2.24. co (friendlyCountryName)
2.25. cosAttribute
2.26. cosIndirectSpecifier
2.27. cosPriority
2.28. cosSpecifier
2.29. cosTargetTree
2.30. cosTemplateDn
2.31. crossCertificatePair
2.32. dc (domainComponent)
2.33. deltaRevocationList
2.34. departmentNumber
2.35. description
2.36. destinationIndicator
2.37. displayName
2.38. dITRedirect
2.39. dmdName
2.40. dn (distinguishedName)
2.41. dNSRecord
2.42. documentAuthor
2.43. documentIdentifier
2.44. documentLocation
2.45. documentPublisher
2.46. documentStore
2.47. documentTitle
2.48. documentVersion
2.49. drink (favouriteDrink)
2.50. dSAQuality
2.51. employeeNumber
2.52. employeeType
2.53. enhancedSearchGuide
2.54. fax (facsimileTelephoneNumber)
2.55. gecos
2.56. generationQualifier
2.57. gidNumber
2.58. givenName
2.59. homeDirectory
2.60. homePhone
2.61. homePostalAddress
2.62. host
2.63. houseIdentifier
2.64. inetDomainBaseDN
2.65. inetDomainStatus
2.66. inetSubscriberAccountId
2.67. inetSubscriberChallenge
2.68. inetSubscriberResponse
2.69. inetUserHttpURL
2.70. inetUserStatus
2.71. info
2.72. initials
2.73. installationTimeStamp
2.74. internationalISDNNumber
2.75. ipHostNumber
2.76. ipNetmaskNumber
2.77. ipNetworkNumber
2.78. ipProtocolNumber
2.79. ipServicePort
2.80. ipServiceProtocol
2.81. janetMailbox
2.82. jpegPhoto
2.83. keyWords
2.84. knowledgeInformation
2.85. l (localityName)
2.86. labeledURI
2.87. lastModifiedBy
2.88. lastModifiedTime
2.89. loginShell
2.90. macAddress
2.91. mail
2.92. mailAccessDomain
2.93. mailAlternateAddress
2.94. mailAutoReplyMode
2.95. mailAutoReplyText
2.96. mailDeliveryOption
2.97. mailEnhancedUniqueMember
2.98. mailForwardingAddress
2.99. mailHost
2.100. mailMessageStore
2.101. mailPreferenceOption
2.102. mailProgramDeliveryInfo
2.103. mailQuota
2.104. mailRoutingAddress
2.105. manager
2.106. member
2.107. memberCertificateDescription
2.108. memberNisNetgroup
2.109. memberOf
2.110. memberUid
2.111. memberURL
2.112. mgrpAddHeader
2.113. mgrpAllowedBroadcaster
2.114. mgrpAllowedDomain
2.115. mgrpApprovePassword
2.116. mgrpBroadcasterPolicy
2.117. mgrpDeliverTo
2.118. mgrpErrorsTo
2.119. mgrpModerator
2.120. mgrpMsgMaxSize
2.121. mgrpMsgRejectAction
2.122. mgrpMsgRejectText
2.123. mgrpNoDuplicateChecks
2.124. mgrpRemoveHeader
2.125. mgrpRFC822MailMember
2.126. mobile
2.127. mozillaCustom1
2.128. mozillaCustom2
2.129. mozillaCustom3
2.130. mozillaCustom4
2.131. mozillaHomeCountryName
2.132. mozillaHomeLocalityName
2.133. mozillaHomePostalCode
2.134. mozillaHomeState
2.135. mozillaHomeStreet
2.136. mozillaHomeStreet2
2.137. mozillaHomeUrl
2.138. mozillaNickname (xmozillanickname)
2.139. mozillaSecondEmail (xmozillasecondemail)
2.140. mozillaUseHtmlMail (xmozillausehtmlmail)
2.141. mozillaWorkStreet2
2.142. mozillaWorkUrl
2.143. multiLineDescription
2.144. name
2.145. netscapeReversiblePassword
2.146. NisMapEntry
2.147. nisMapName
2.148. nisNetgroupTriple
2.149. nsAccessLog
2.150. nsAdminAccessAddresses
2.151. nsAdminAccessHosts
2.152. nsAdminAccountInfo
2.153. nsAdminCacheLifetime
2.154. nsAdminCgiWaitPid
2.155. nsAdminDomainName
2.156. nsAdminEnableEnduser
2.157. nsAdminEndUserHTMLIndex
2.158. nsAdminGroupName
2.159. nsAdminOneACLDir
2.160. nsAdminSIEDN
2.161. nsAdminUsers
2.162. nsAIMid
2.163. nsBaseDN
2.164. nsBindDN
2.165. nsBindPassword
2.166. nsBuildNumber
2.167. nsBuildSecurity
2.168. nsCertConfig
2.169. nsCertfile
2.170. nsClassname
2.171. nsConfigRoot
2.172. nscpAIMScreenname
2.173. nsDefaultAcceptLanguage
2.174. nsDefaultObjectClass
2.175. nsDeleteclassname
2.176. nsDirectoryFailoverList
2.177. nsDirectoryInfoRef
2.178. nsDirectoryURL
2.179. nsDisplayName
2.180. nsErrorLog
2.181. nsExecRef
2.182. nsExpirationDate
2.183. nsGroupRDNComponent
2.184. nsHardwarePlatform
2.185. nsHelpRef
2.186. nsHostLocation
2.187. nsICQid
2.188. nsInstalledLocation
2.189. nsJarfilename
2.190. nsKeyfile
2.191. nsLdapSchemaVersion
2.192. nsLicensedFor
2.193. nsLicenseEndTime
2.194. nsLicenseStartTime
2.195. nsLogSuppress
2.196. nsmsgDisallowAccess
2.197. nsmsgNumMsgQuota
2.198. nsMSNid
2.199. nsNickName
2.200. nsNYR
2.201. nsOsVersion
2.202. nsPidLog
2.203. nsPreference
2.204. nsProductName
2.205. nsProductVersion
2.206. nsRevisionNumber
2.207. nsSecureServerPort
2.208. nsSerialNumber
2.209. nsServerAddress
2.210. nsServerCreationClassname
2.211. nsServerID
2.212. nsServerMigrationClassname
2.213. nsServerPort
2.214. nsServerSecurity
2.215. nsSNMPContact
2.216. nsSNMPDescription
2.217. nsSNMPEnabled
2.218. nsSNMPLocation
2.219. nsSNMPMasterHost
2.220. nsSNMPMasterPort
2.221. nsSNMPOrganization
2.222. nsSSL2
2.223. nsSSL2Ciphers
2.224. nsSSL3
2.225. nsSSL3Ciphers
2.226. nsSSL3SessionTimeout
2.227. nsSSLActivation
2.228. nsSSLClientAuth
2.229. nsSSLPersonalitySSL
2.230. nsSSLSessionTimeout
2.231. nsSSLSupportedCiphers
2.232. nsSSLToken
2.233. nsSuiteSpotUser
2.234. nsTaskLabel
2.235. nsUniqueAttribute
2.236. nsUserIDFormat
2.237. nsUserRDNComponent
2.238. nsValueBin
2.239. nsValueCES
2.240. nsValueCIS
2.241. nsValueDefault
2.242. nsValueDescription
2.243. nsValueDN
2.244. nsValueFlags
2.245. nsValueHelpURL
2.246. nsValueInt
2.247. nsValueSyntax
2.248. nsValueTel
2.249. nsValueType
2.250. nsVendor
2.251. nsViewConfiguration
2.252. nsViewFilter
2.253. nsWellKnownJarfiles
2.254. nswmExtendedUserPrefs
2.255. nsYIMid
2.256. ntGroupAttributes
2.257. ntGroupCreateNewGroup
2.258. ntGroupDeleteGroup
2.259. ntGroupDomainId
2.260. ntGroupId
2.261. ntGroupType
2.262. ntUniqueId
2.263. ntUserAcctExpires
2.264. ntUserAuthFlags
2.265. ntUserBadPwCount
2.266. ntUserCodePage
2.267. ntUserComment
2.268. ntUserCountryCode
2.269. ntUserCreateNewAccount
2.270. ntUserDeleteAccount
2.271. ntUserDomainId
2.272. ntUserFlags
2.273. ntUserHomeDir
2.274. ntUserHomeDirDrive
2.275. ntUserLastLogoff
2.276. ntUserLastLogon
2.277. ntUserLogonHours
2.278. ntUserLogonServer
2.279. ntUserMaxStorage
2.280. ntUserNumLogons
2.281. ntUserParms
2.282. ntUserPasswordExpired
2.283. ntUserPrimaryGroupId
2.284. ntUserPriv
2.285. ntUserProfile
2.286. ntUserScriptPath
2.287. ntUserUniqueId
2.288. ntUserUnitsPerWeek
2.289. ntUserUsrComment
2.290. ntUserWorkstations
2.291. o (organizationName)
2.292. objectClass
2.293. objectClasses
2.294. obsoletedByDocument
2.295. obsoletesDocument
2.296. oncRpcNumber
2.297. organizationalStatus
2.298. otherMailbox
2.299. ou (organizationalUnitName)
2.300. owner
2.301. pager
2.302. parentOrganization
2.303. personalSignature
2.304. personalTitle
2.305. photo
2.306. physicalDeliveryOfficeName
2.307. postalAddress
2.308. postalCode
2.309. postOfficeBox
2.310. preferredDeliveryMethod
2.311. preferredLanguage
2.312. preferredLocale
2.313. preferredTimeZone
2.314. presentationAddress
2.315. protocolInformation
2.316. ref
2.317. registeredAddress
2.318. roleOccupant
2.319. roomNumber
2.320. searchGuide
2.321. secretary
2.322. seeAlso
2.323. serialNumber
2.324. serverHostName
2.325. serverProductName
2.326. serverRoot
2.327. serverVersionNumber
2.328. shadowExpire
2.329. shadowFlag
2.330. shadowInactive
2.331. shadowLastChange
2.332. shadowMax
2.333. shadowMin
2.334. shadowWarning
2.335. singleLevelQuality
2.336. sn (surname)
2.337. st (stateOrProvinceName)
2.338. street
2.339. subject
2.340. subtreeMaximumQuality
2.341. subtreeMinimumQuality
2.342. supportedAlgorithms
2.343. supportedApplicationContext
2.344. telephoneNumber
2.345. teletexTerminalIdentifier
2.346. telexNumber
2.347. textEncodedORAddress
2.348. title
2.349. ttl (TimeToLive)
2.350. uid (userID)
2.351. uidNumber
2.352. uniqueIdentifier
2.353. uniqueMember
2.354. updatedByDocument
2.355. updatesDocument
2.356. userCertificate
2.357. userClass
2.358. userPassword
2.359. userPKCS12
2.360. userSMIMECertificate
2.361. vacationEndDate
2.362. vacationStartDate
2.363. x121Address
2.364. x500UniqueIdentifier
This chapter contains reference information about Red Hat Directory Server (Directory Server) attributes. The attributes are listed in alphabetical order with their definition, syntax, and OID.
This chapter contains information about attributes that describe directory entries, like users, groups, and equipment. This intent — describing directory data — also covers some schema elements that are used to organize data in the directory, like views and roles.
However, this attribute reference does not cover core schema used to configure the Directory Server itself. The directory service is also configured as directory entries within the cn=config subtree. For descriptions of those configuration attributes, see the Configuration, Command, and File Reference.

2.1. abstract

The abstract attribute contains an abstract for a document entry.
OID 0.9.2342.19200300.102.1.9
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Internet White Pages Pilot

2.2. accessTo

This attribute defines what specific hosts or servers a user is allowed to access.
OID 5.3.6.1.1.1.1.1
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in nss_ldap/pam_ldap

2.3. administratorContactInfo

This attribute contains the contact information for the LDAP or server administrator.
OID 2.16.840.1.113730.3.1.74
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.4. adminRole

This attribute contains the role assigned to the user identified in the entry.
OID 2.16.840.1.113730.3.1.601
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape Administration Services

2.5. adminUrl

This attribute contains the URL of the Admin Server.
OID 2.16.840.1.113730.3.1.75
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.6. aliasedObjectName

The aliasedObjectName attribute is used by the Directory Server to identify alias entries. This attribute contains the DN (distinguished name) for the entry for which this entry is the alias. For example:
aliasedObjectName: uid=jdoe,ou=people,dc=example,dc=com
OID 2.5.4.1
Syntax DN
Multi- or Single-Valued Single-valued
Defined in RFC 2256

2.7. associatedDomain

The associatedDomain attribute contains the DNS domain associated with the entry in the directory tree. For example, the entry with the distinguished name c=US,o=Example Corporation has the associated domain of EC.US. These domains should be represented in RFC 822 order.
associatedDomain:US
OID 0.9.2342.19200300.100.1.37
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.8. associatedName

The associatedName identifies an organizational directory tree entry associated with a DNS domain. For example:
associatedName: c=us
OID 0.9.2342.19200300.100.1.38
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.9. attributeTypes

This attribute is used in a schema file to identify an attribute defined within the subschema.
OID 2.5.21.5
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2252

2.10. audio

The audio attribute contains a sound file using a binary format. This attribute uses a u-law encoded sound data. For example:
audio:: AAAAAA==
OID 0.9.2342.19200300.100.1.55
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.11. authorCn

The authorCn attribute contains the common name of the document's author. For example:
authorCn: John Smith
OID 0.9.2342.19200300.102.1.11
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Internet White Pages Pilot

2.12. authorityRevocationList

The authorityRevocationList attribute contains a list of revoked CA certificates. This attibute should be requested and stored in a binary format, like authorityRevocationList;binary. For example:
authorityrevocationlist;binary:: AAAAAA==
OID 2.5.4.38
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.13. authorSn

The authorSn attribute contains the last name or family name of the author of a document entry. For example:
authorSn: Smith
OID 0.9.2342.19200300.102.1.12
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Internet White Pages Pilot

2.14. automountInformation

This attribute contains information used by the autofs automounter.

NOTE

The automountInformation attribute is defined in 60autofs.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 60autofs.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.33
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.15. bootFile

This attribute contains the boot image file name.

NOTE

The bootFile attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.24
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in RFC 2307

2.16. bootParameter

This attribute contains the value for rpc.bootparamd.

NOTE

The bootParameter attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.23
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in RFC 2307

2.17. buildingName

The buildingName attribute contains the building name associated with the entry. For example:
buildingName: 14
OID 0.9.2342.19200300.100.1.48
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.18. businessCategory

The businessCategory attribute identifies the type of business in which the entry is engaged. The attribute value should be a broad generalization, such as a corporate division level. For example:
businessCategory: Engineering
OID 2.5.4.15
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.19. c (countryName)

The countryName, or c, attribute contains the two-character country code to represent the country names. The country codes are defined by the ISO. For example:
countryName: GB
c: US
OID 2.5.4.6
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in RFC 2256

2.20. cACertificate

The cACertificate attribute contains a CA certificate. The attribute should be requested and stored binary format, such as cACertificate;binary. For example:
cACertificate;binary:: AAAAAA==
OID 2.5.4.37
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.21. carLicense

The carLicense attribute contains an entry's automobile license plate number. For example:
carLicense: 6ABC246
OID 2.16.840.1.113730.3.1.1
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2798

2.22. certificateRevocationList

The certificateRevocationList attribute contains a list of revoked user certificates. The attribute value is to be requested and stored in binary form, as certificateACertificate;binary. For example:
certificateRevocationList;binary:: AAAAAA==
OID 2.5.4.39
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.23. cn (commonName)

The commonName attribute contains the name of an entry. For user entries, the cn attribute is typically the person's full name. For example:
commonName: John Smith
cn: Bill Anderson
With the LDAPReplica or LDAPServerobject object classes, the cn attribute value has the following format:
cn: replicater.example.com:17430/dc%3Dexample%2Cdc%3com
OID 2.5.4.3
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.24. co (friendlyCountryName)

The friendlyCountryName attribute contains a country name; this can be any string. Often, the country is used with the ISO-designated two-letter country code, while the co attribute contains a readable country name. For example:
friendlyCountryName: Ireland
co: Ireland
OID 0.9.2342.19200300.100.1.43
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.25. cosAttribute

The cosAttribute contains the name of the attribute for which to generate a value for the CoS. There can be more than one cosAttribute value specified. This attribute is used by all types of CoS definition entries.
OID 2.16.840.1.113730.3.1.550
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.26. cosIndirectSpecifier

The cosIndirectSpecifier specifies the attribute values used by an indirect CoS to identify the template entry.
OID 2.16.840.1.113730.3.1.577
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Directory Server

2.27. cosPriority

The cosPriority attribute specifies which template provides the attribute value when CoS templates compete to provide an attribute value. This attribute represents the global priority of a template. A priority of zero is the highest priority.
OID 2.16.840.1.113730.3.1.569
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in Directory Server

2.28. cosSpecifier

The cosSpecifier attribute contains the attribute value used by a classic CoS, which, along with the template entry's DN, identifies the template entry.
OID 2.16.840.1.113730.3.1.551
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Directory Server

2.29. cosTargetTree

The cosTargetTree attribute defines the subtrees to which the CoS schema applies. The values for this attribute for the schema and for multiple CoS schema may overlap their target trees arbitrarily.
OID 2.16.840.1.113730.3.1.552
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Directory Server

2.30. cosTemplateDn

The cosTemplateDn attribute contains the DN of the template entry which contains a list of the shared attribute values. Changes to the template entry attribute values are automatically applied to all the entries within the scope of the CoS. A single CoS might have more than one template entry associated with it.
OID 2.16.840.1.113730.3.1.553
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Directory Server

2.31. crossCertificatePair

The value for the crossCertificatePair attribute must be requested and stored in binary format, such as certificateCertificateRepair;binary. For example:
crossCertificatePair;binary:: AAAAAA==
OID 2.5.4.40
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.32. dc (domainComponent)

The dc attribute contains one component of a domain name. For example:
dc: example
domainComponent: example
OID 0.9.2342.19200300.100.1.25
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in RFC 2247

2.33. deltaRevocationList

The deltaRevocationList attribute contains a certificate revocation list (CRL). The attribute value is requested and stored in binary format, such as deltaRevocationList;binary.
OID 2.5.4.53
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.34. departmentNumber

The departmentNumber attribute contains an entry's department number. For example:
departmentNumber: 2604
OID 2.16.840.1.113730.3.1.2
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2798

2.35. description

The description attribute provides a human-readable description for an entry. For person or organization object classes, this can be used for the entry's role or work assignment. For example:
description: Quality control inspector for the ME2873 product line.
OID 2.5.4.13
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.36. destinationIndicator

The destinationIndicator attribute contains the city and country associated with the entry. This attribute was once required to provide public telegram service and is generally used in conjunction with the registeredAddress attribute. For example:
destinationIndicator: Stow, Ohio, USA
OID 2.5.4.27
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.37. displayName

The displayName attributes contains the preferred name of a person to use when displaying that person's entry. This is especially useful for showing the preferred name for an entry in a one-line summary list. Since other attribute types, such as cn, are multi-valued, they can not be used to display a preferred name. For example:
displayName: John Smith
OID 2.16.840.1.113730.3.1.241
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in RFC 2798

2.38. dITRedirect

The dITRedirect attribute indicates that the object described by one entry now has a newer entry in the directory tree. This attribute may be used when an individual's place of work changes, and the individual acquires a new organizational DN.
dITRedirect: cn=jsmith,dc=example,dc=com
OID 0.9.2342.19200300.100.1.54
Syntax DN
Defined in RFC 1274

2.39. dmdName

The dmdName attribute value specifies a directory management domain (DMD), the administrative authority that operates the Directory Server.
OID 2.5.4.54
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in RFC 2256

2.40. dn (distinguishedName)

The dn attribute contains an entry's distinguished name. For example:
dn: uid=Barbara Jensen,ou=Quality Control,dc=example,dc=com
OID 2.5.4.49
Syntax DN
Defined in RFC 2256

2.41. dNSRecord

The dNSRecord attribute contains DNS resource records, including type A (Address), type MX (Mail Exchange), type NS (Name Server), and type SOA (Start of Authority) resource records. For example:
dNSRecord: IN NS ns.uu.net
OID 0.9.2342.19200300.100.1.26
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Internet Directory Pilot

2.42. documentAuthor

The documentAuthor attribute contains the DN of the author of a document entry. For example:
documentAuthor: uid=Barbara Jensen,ou=People,dc=example,dc=com
OID 0.9.2342.19200300.100.1.14
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.43. documentIdentifier

The documentIdentifier attribute contains a unique identifier for a document. For example:
documentIdentifier: L3204REV1
OID 0.9.2342.19200300.100.1.11
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.44. documentLocation

The documentLocation attribute contains the location of the original version of a document. For example:
documentLocation: Department Library
OID 0.9.2342.19200300.100.1.15
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.45. documentPublisher

The documentPublisher attribute contains the person or organization who published a document. For example:
documentPublisher: Southeastern Publishing
OID 0.9.2342.19200300.100.1.56
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in RFC 1274

2.46. documentStore

The documentStore attribute contains information on where the document is stored.
OID 0.9.2342.19200300.102.1.10
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Internet White Pages Pilot

2.47. documentTitle

The documentTitle attribute contains a document's title. For example:
documentTitle: Red Hat Directory Server Administrator Guide
OID 0.9.2342.19200300.100.1.12
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.48. documentVersion

The documentVersion attribute contains the current version number for the document. For example:
documentVersion: 1.1
OID 0.9.2342.19200300.100.1.13
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.49. drink (favouriteDrink)

The favouriteDrink attribute contains a person's favorite beverage. This can be shortened to drink. For example:
favouriteDrink: iced tea
drink: cranberry juice
OID 0.9.2342.19200300.100.1.5
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.50. dSAQuality

The dSAQuality attribute contains the rating of the directory system agents' (DSA) quality. This attribute allows a DSA manager to indicate the expected level of availability of the DSA. For example:
dSAQuality: high
OID 0.9.2342.19200300.100.1.49
Syntax Directory-String
Multi- or Single-Valued Single-valued
Defined in RFC 1274

2.51. employeeNumber

The employeeNumber attribute contains the employee number for the person. For example:
employeeNumber: 3441
OID 2.16.840.1.113730.3.1.3
Syntax Directory-String
Multi- or Single-Valued Single-valued
Defined in RFC 2798

2.52. employeeType

The employeeType attribute contains the employment type for the person. For example:
employeeType: Full time
OID 2.16.840.1.113730.3.1.4
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2798

2.53. enhancedSearchGuide

The enhancedSearchGuide attribute contains information used by an X.500 client to construct search filters. For example:
enhancedSearchGuide: (uid=bjensen)
OID 2.5.4.47
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2798

2.54. fax (facsimileTelephoneNumber)

The facsimileTelephoneNumber attribute contains the entry's facsimile number; this attribute can be abbreviated as fax. For example:
facsimileTelephoneNumber: +1 415 555 1212
fax: +1 415 555 1212
OID 2.5.4.23
Syntax TelephoneNumber
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.55. gecos

The gecos attribute is used to determine the GECOS field for the user. This is comparable to the cn attribute, although using a gecos attribute allows additional information to be embedded in the GECOS field aside from the common name. This field is also useful if the common name stored in the directory is not the user's full name.
gecos: John Smith

NOTE

The gecos attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.2
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.56. generationQualifier

The generationQualifier attribute contains the generation qualifier for a person's name, which is usually appended as a suffix to the name. For example:
generationQualifier:III
OID 2.5.4.44
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.57. gidNumber

The gidNumber attribute contains a unique numberic identifier for a group entry or to identify the group for a user entry. This is analogous to the group number in Unix.
gidNumber: 100

NOTE

The gidNumber attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.1
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.58. givenName

The givenName attribute contains an entry's given name, which is usually the first name. For example:
givenName: Rachel
OID 2.5.4.42
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.59. homeDirectory

The homeDirectory attribute contains the path to the user's home directory.
homeDirectory: /home/jsmith

NOTE

The homeDirectory attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.3
Syntax IA5String
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.60. homePhone

The homePhone attribute contains the entry's residential phone number. For example:
homePhone: 415-555-1234

NOTE

Although RFC 1274 defines both homeTelephoneNumber and homePhone as names for the residential phone number attribute, Directory Server only implements the homePhone name.
OID 0.9.2342.19200300.100.1.20
Syntax TelephoneNumber
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.61. homePostalAddress

The homePostalAddress attribute contains an entry's home mailing address. Since this attribute generally spans multiple lines, each line break has to be represented by a dollar sign ($). To represent an actual dollar sign ($) or backslash (\) in the attribute value, use the escaped hex values \24 and \5c, respectively. For example:
homePostalAddress: 1234 Ridgeway Drive$Santa Clara, CA$99555
To represent the following string:
The dollar ($) value can be found 
in the c:\cost file.
The entry value is:
The dollar (\24) value can be found$in the c:\c5cost file.
OID 0.9.2342.19200300.100.1.39
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.62. host

The host contains the hostname of a computer. For example:
host: labcontroller01
OID 0.9.2342.19200300.100.1.9
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.63. houseIdentifier

The houseIdentifier contains an identifier for a specific building at a location. For example:
houseIdentifier: B105
OID 2.5.4.51
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.64. inetDomainBaseDN

This attribute identifies the base DN of user subtree for a DNS domain.
OID 2.16.840.1.113730.3.1.690
Syntax DN
Multi- or Single-Valued Single-valued
Defined in Subscriber interoperability

2.65. inetDomainStatus

This attribute shows the current status of the domain. A domain has a status of active, inactive, or deleted.
OID 2.16.840.1.113730.3.1.691
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Subscriber interoperability

2.66. inetSubscriberAccountId

This attribute contains the a unique attribute used to link the user entry for the subscriber to a billing system.
OID 2.16.840.1.113730.3.1.694
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Subscriber interoperability

2.67. inetSubscriberChallenge

The inetSubscriberChallenge attribute contains some kind of question or prompt, the challenge phrase, which is used to confirm the identity of the user in the subscriberIdentity attribute. This attribute is used in conjunction with the inetSubscriberResponse attribute, which contains the response to the challenge.
OID 2.16.840.1.113730.3.1.695
Syntax IA5String
Multi- or Single-Valued Single-valued
Defined in Subscriber interoperability

2.68. inetSubscriberResponse

The inetSubscriberResponse attribute contains the answer to the challenge question in the inetSubscriberChallenge attribute to verify the user in the subscriberIdentity attribute.
OID 2.16.840.1.113730.3.1.696
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Subscriber interoperability

2.69. inetUserHttpURL

This attribute contains the web addresses associated with the user.
OID 2.16.840.1.113730.3.1.693
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Subscriber interoperability

2.70. inetUserStatus

This attribute shows the current status of the user (subscriber). A user has a status of active, inactive, or deleted.
OID 2.16.840.1.113730.3.1.692
Syntax DirectoryString
Multi- or Single-Valued Single-Valued
Defined in Subscriber interoperability

2.71. info

The info attribute contains any general information about an object. Avoid using this attribute for specific information and rely instead on specific, possibly custom, attribute types. For example:
info: not valid
OID 0.9.2342.19200300.100.1.4
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.72. initials

The initials contains a person's initials; this does not contain the entry's surname. For example:
initials: BAJ
Directory Server and Active Directory handle the initials attribute differently. The Directory Server allows a practically unlimited number of characters, while Active Directory has a restriction of six characters. If an entry is synced with a Windows peer and the value of the initials attribute is longer than six characters, then the value is automatically truncated to six characters when it is synchronized. There is no information written to the error log to indicate that synchronization changed the attribute value, either.
OID 2.5.4.43
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.73. installationTimeStamp

This contains the time that the server instance was installed.
OID 2.16.840.1.113730.3.1.73
Syntax DirectoryString
Multi- or Single-Valued Multi-Valued
Defined in Netscape Administration Services

2.74. internationalISDNNumber

The internationalISDNNumber attribute contains the ISDN number of a document entry. This attribute uses the internationally recognized format for ISDN addresses given in CCITT Rec. E. 164.
OID 2.5.4.25
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.75. ipHostNumber

This contains the IP address for a server.

NOTE

The ipHostNumber attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.19
Syntax DirectoryString
Multi- or Single-Valued Multi-Valued
Defined in RFC 2307

2.76. ipNetmaskNumber

This contains the IP netmask for the server.

NOTE

The ipHostNumber attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 2.16.840.1.113730.3.1.73
Syntax DirectoryString
Multi- or Single-Valued Multi-Valued
Defined in RFC 2307

2.77. ipNetworkNumber

This identifies the IP network.

NOTE

The ipNetworkNumber attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.20
Syntax DirectoryString
Multi- or Single-Valued Single-Valued
Defined in RFC 2307

2.78. ipProtocolNumber

This attribute identifies the IP protocol version number.

NOTE

The ipProtocolNumber attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.17
Syntax Integer
Multi- or Single-Valued Single-Valued
Defined in RFC 2307

2.79. ipServicePort

This attribute gives the port used by the IP service.

NOTE

The ipServicePort attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.15
Syntax Integer
Multi- or Single-Valued Single-Valued
Defined in RFC 2307

2.80. ipServiceProtocol

This identifies the protocol used by the IP service.

NOTE

The ipServiceProtocol attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.16
Syntax DirectoryString
Multi- or Single-Valued Multi-Valued
Defined in RFC 2307

2.81. janetMailbox

The janetMailbox contains a JANET email address, usually for users located in the United Kingdom who do not use RFC 822 email address. Entries with this attribute must also contain the rfc822Mailbox attribute.
OID 0.9.2342.19200300.100.1.46
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.82. jpegPhoto

The jpegPhoto attribute contains a JPEG photo, a binary value. For example:
jpegPhoto:: AAAAAA==
OID 0.9.2342.19200300.100.1.60
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2798

2.83. keyWords

The keyWord attribute contains keywords associated with the entry. For example:
keyWords: directory LDAP X.500
OID 0.9.2342.19200300.102.1.7
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Internet White Pages Pilot

2.84. knowledgeInformation

This attribute is no longer used.
OID
2.5.4.2
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.85. l (localityName)

The localityName, or l, attribute contains the county, city, or other geographical designation associated with the entry. For example:
localityName: Santa Clara
l: Santa Clara
OID 2.5.4.7
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.86. labeledURI

The labeledURI contains a Uniform Resource Identifier (URI) which is related, in some way, to the entry. Values placed in the attribute should consist of a URI (currently only URLs are supported), optionally followed by one or more space characters and a label.
labeledURI: http://home.example.com
labeledURI: http://home.example.com Example website
OID 1.3.6.1.4.1.250.1.57
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in RFC 2709

2.87. lastModifiedBy

The lastModifiedBy attribute contains the distinguished name (DN) of the user who last edited the entry. For example:
lastModifiedby: cn=Barbara Jensen,ou=Engineering,dc=example,dc=com
OID 0.9.2342.19200300.100.1.24
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.88. lastModifiedTime

The lastModifiedTime attribute contains the time, in UTC format, an entry was last modified. For example:
lastModifiedTime: Thursday, 22-Sep-93 14:15:00 GMT
OID 0.9.2342.19200300.100.1.23
Syntax DirectyString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.89. loginShell

The loginShell attribute contains the path to a script that is launched automatically when a user logs into the domain.
loginShell: c:\scripts\jsmith.bat

NOTE

The loginShell attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.4
Syntax IA5String
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.90. macAddress

This attribute gives the MAC address for a server or piece of equipment.

NOTE

The macAddress attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.22
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2307

2.91. mail

The mail attribute contains a user's primary email address. This attribute value is retrieved and displayed by whitepage applications. For example:
mail: jsmith@example.com
OID 0.9.2342.19200300.100.1.3
Syntax DirectyString
Multi- or Single-Valued Single-valued
Defined in RFC 1274

2.92. mailAccessDomain

This attribute lists the domain which a user can use to access the messaging server.
OID 2.16.840.1.113730.3.1.12
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.93. mailAlternateAddress

The mailAlternateAddress attribute contains additional email addresses for a user. This attribute does not reflect the default or primary email address; that email address is set by the mail attribute.
For example:
mailAlternateAddress: jsmith@example.com
mailAlternateAddress: smith1701@alt.com
OID 2.16.840.1.113730.3.1.13
Syntax DirectyString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.94. mailAutoReplyMode

This attribute sets whether automatic replies are enabled for the messaging server.
OID 2.16.840.1.113730.3.1.14
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.95. mailAutoReplyText

This attribute stores the text to used in an auto-reply email.
OID 2.16.840.1.113730.3.1.15
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.96. mailDeliveryOption

This attribute defines the mail delivery mechanism to use for the mail user.
OID 2.16.840.1.113730.3.1.16
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.97. mailEnhancedUniqueMember

This attribute contains the DN of a unique member of a mail group.
OID 2.16.840.1.113730.3.1.31
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.98. mailForwardingAddress

This attribute contains an email address to which to forward a user's email.
OID 2.16.840.1.113730.3.1.17
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.99. mailHost

The mailHost attribute contains the hostname of a mail server. For example:
mailHost: mail.example.com
OID 2.16.840.1.113730.3.1.18
Syntax DirectyString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.100. mailMessageStore

This identifies the locaiton of a user's email box.
OID 2.16.840.1.113730.3.1.19
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.101. mailPreferenceOption

The mailPreferenceOption defines whether a user should be included on a mailing list, both electronic and physical. There are three options.
0 Does not appear in mailing lists.
1 Add to any mailing lists.
2 Added only to mailing lists which the provider views as relevant to the user interest.
If the attribute is absent, then the default is to assume that the user is not included on any mailing list. This attribute should be interpreted by anyone using the directory to derive mailing lists and its value respected. For example:
mailPreferenceOption: 0
OID 0.9.2342.19200300.100.1.47
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in RFC 1274

2.102. mailProgramDeliveryInfo

This attribute contains any commands to use for programmed mail delivery.
OID 2.16.840.1.113730.3.1.20
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.103. mailQuota

This attribute sets the amoung of disk space allowed for a user's mail box.
OID 2.16.840.1.113730.3.1.21
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.104. mailRoutingAddress

This attribute contains the routing address to use when forwarding the emails received by the user to another messaging server.
OID 2.16.840.1.113730.3.1.24
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.105. manager

The manager contains the distinguished name (DN) of the manager for the person. For example:
manager: cn=Bill Andersen,ou=Quality Control,dc=example,dc=com
OID 0.9.2342.19200300.100.1.10
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.106. member

The member attribute contains the distinguished names (DNs) of each member of a group. For example:
member: cn=John Smith,dc=example,dc=com
OID 2.5.4.31
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.107. memberCertificateDescription

This attribute is a multi-valued attribute where each value is a description, a pattern, or a filter matching the subject DN of a certificate, usually a certificate used for SSL client authentication.
memberCertificateDescription matches any certificate that contains a subject DN with the same attribute-value assertions (AVAs) as the description. The description may contain multiple ou AVAs. A matching DN must contain those same ou AVAs, in the same order, although it may be interspersed with other AVAs, including other ou AVAs. For any other attribute type (not ou), there should be at most one AVA of that type in the description. If there are several, all but the last are ignored.
A matching DN must contain that same AVA but no other AVA of the same type nearer the root (later, syntactically).
AVAs are considered the same if they contain the same attribute description (case-insensitive comparison) and the same attribute value (case-insensitive comparison, leading and trailing whitespace ignored, and consecutive whitespace characters treated as a single space).
To be considered a member of a group with the following memberCertificateDescription value, a certificate needs to include ou=x, ou=A, and dc=example, but not dc=company.
memberCertificateDescription: {ou=x,ou=A,dc=company,dc=example}
To match the group's requirements, a certificate's subject DNs must contain the same ou attribute types in the same order as defined in the memberCertificateDescription attribute.
OID 2.16.840.1.113730.3.1.199
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.108. memberNisNetgroup

This attribute merges the attribute values of another netgroup into the current one by listing the name of the merging netgroup.

NOTE

The memberNisNetgroup attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.13
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in RFC 2307

2.109. memberOf

This attribute contains the name of a group to which the user is a member.
memberOf is the default attribute generated by the MemberOf Plug-in on the user entry of a group member. This attribute is automatically synchronized to the listed member attributes in a group entry, so that displaying group membership for entries is managed by Directory Server.

NOTE

This attribute is only synchronized between group entries and the corresponding members' user entries if the MemberOf Plug-in is enabled and is configured to use this attribute.
OID 1.2.840.113556.1.2.102
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in Netscape Delegated Administrator

2.110. memberUid

The memberUid attribute contains the login name of the member of a group; this can be different than the DN identified in the member attribute.
memberUID: jsmith

NOTE

The memberUID attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.12
Syntax IA5String
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.111. memberURL

This attribute identifies a URL associated with each member of a group. Any type of labeled URL can be used.
memberURL: ldap://cn=jsmith,ou=people,dc=example,dc=com
OID 2.16.840.1.113730.3.1.198
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.112. mgrpAddHeader

This attribute contains information about the header in the messages.
OID 2.16.840.1.113730.3.1.781
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.113. mgrpAllowedBroadcaster

This attribute sets whether to allow the user to send broadcast messages.
OID 2.16.840.1.113730.3.1.22
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.114. mgrpAllowedDomain

This attribute sets the domains for the mail group.
OID 2.16.840.1.113730.3.1.23
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.115. mgrpApprovePassword

This attribute sets whether a user must approve a password used to access their email.
OID mgrpApprovePassword-oid
Syntax IA5String
Multi- or Single-Valued Single-valued
Defined in Netscape Messaging Server

2.116. mgrpBroadcasterPolicy

This attribute defines the policy for broadcasting emails.
OID 2.16.840.1.113730.3.1.788
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.117. mgrpDeliverTo

This attribute contains information about the delivery destination for email.
OID 2.16.840.1.113730.3.1.25
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.118. mgrpErrorsTo

This attribute contains information about where to deliver error messages for the messaging server.
OID 2.16.840.1.113730.3.1.26
Syntax IA5String
Multi- or Single-Valued Single-valued
Defined in Netscape Messaging Server

2.119. mgrpModerator

This attribute contains the contact name for the mailing list moderator.
OID 2.16.840.1.113730.3.1.33
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.120. mgrpMsgMaxSize

This attribute sets the maximum size allowed for email messages.
OID 2.16.840.1.113730.3.1.32
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape Messaging Server

2.121. mgrpMsgRejectAction

This attribute defines what actions the messaging server should take for rejected messages.
OID 2.16.840.1.113730.3.1.28
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.122. mgrpMsgRejectText

This attribute sets the text to use for rejection notifications.
OID 2.16.840.1.113730.3.1.29
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.123. mgrpNoDuplicateChecks

This attribute defines whether the messaging server checks for duplicate emails.
OID 2.16.840.1.113730.3.1.789
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape Messaging Server

2.124. mgrpRemoveHeader

This attribute sets whether the header is removed in reply messages.
OID 2.16.840.1.113730.3.1.801
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.125. mgrpRFC822MailMember

This attribute identifies the member of a mail group.
OID 2.16.840.1.113730.3.1.30
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.126. mobile

The mobile, or mobileTelephoneNumber, contains the entry's mobile or cellular phone number. For example:
mobileTelephoneNumber: 415-555-4321
OID 0.9.2342.19200300.100.1.41
Syntax TelephoneNumber
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.127. mozillaCustom1

This attribute is used by Mozilla Thunderbird to manage a shared address book.
OID 1.3.6.1.4.1.13769.4.1
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.128. mozillaCustom2

This attribute is used by Mozilla Thunderbird to manage a shared address book.
OID 1.3.6.1.4.1.13769.4.2
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.129. mozillaCustom3

This attribute is used by Mozilla Thunderbird to manage a shared address book.
OID 1.3.6.1.4.1.13769.4.3
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.130. mozillaCustom4

This attribute is used by Mozilla Thunderbird to manage a shared address book.
OID 1.3.6.1.4.1.13769.4.4
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.131. mozillaHomeCountryName

This attribute sets the country used by Mozilla Thunderbird in a shared address book.
OID 1.3.6.1.4.1.13769.3.6
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.132. mozillaHomeLocalityName

This attribute sets the city used by Mozilla Thunderbird in a shared address book.
OID 1.3.6.1.4.1.13769.3.3
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.133. mozillaHomePostalCode

This attribute sets the postal code used by Mozilla Thunderbird in a shared address book.
OID 1.3.6.1.4.1.13769.3.5
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.134. mozillaHomeState

This attribute sets the state or province used by Mozilla Thunderbird in a shared address book.
OID 1.3.6.1.4.1.13769.3.4
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.135. mozillaHomeStreet

This attribute sets the street address used by Mozilla Thunderbird in a shared address book.
OID 1.3.6.1.4.1.13769.3.1
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.136. mozillaHomeStreet2

This attribute contains the second line of a street address used by Mozilla Thunderbird in a shared address book.
OID 1.3.6.1.4.1.13769.3.2
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.137. mozillaHomeUrl

This attribute contains a URL used by Mozilla Thunderbird in a shared address book.
OID 1.3.6.1.4.1.13769.3.7
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.138. mozillaNickname (xmozillanickname)

This attribute contains a nickname used by Mozilla Thunderbird for a shared address book.
OID 1.3.6.1.4.1.13769.2.1
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Mozilla Address Book

2.139. mozillaSecondEmail (xmozillasecondemail)

This attribute contains an alternate or secondary email address for an entry in a shared address book for Mozilla Thunderbird.
OID 1.3.6.1.4.1.13769.2.2
Syntax IA5String
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.140. mozillaUseHtmlMail (xmozillausehtmlmail)

This attribute sets an email type preference for an entry in a shared address book in Mozilla Thunderbird.
OID 1.3.6.1.4.1.13769.2.3
Syntax Boolean
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.141. mozillaWorkStreet2

This attribute contains a street address for a workplace or office for an entry in Mozilla Thunderbird's shared address book.
OID 1.3.6.1.4.1.13769.3.8
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.142. mozillaWorkUrl

This attribute contains a URL for a work site in an entry in a shared address book in Mozilla Thunderbird.
OID 1.3.6.1.4.1.13769.3.9
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Mozilla Address Book

2.143. multiLineDescription

This attribute contains a description of an entry which spans multiple lines in the LDIF file.
OID 1.3.6.1.4.1.250.1.2
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Internet White Pages Pilot

2.144. name

The name attribute identifies the attribute supertype which can be used to form string attribute types for naming.
It is unlikely that values of this type will occur in an entry. LDAP server implementations that do not support attribute subtyping do not need to recognize this attribute in requests. Client implementations should not assume that LDAP servers are capapble of performing attribute subtyping.
OID 2.5.4.41
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.145. netscapeReversiblePassword

This attribute contains the password for HTTP Digest/MD5 authentication.
OID 2.16.840.1.113730.3.1.812
Syntax OctetString
Multi- or Single-Valued Multi-valued
Defined in Netscape Web Server

2.146. NisMapEntry

This attribute contains the information for a NIS map to be used by Network Information Services.

NOTE

This attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.27
Syntax IA5String
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.147. nisMapName

This attribute contains the name of a mapping used by a NIS server.
OID 1.3.6.1.1.1.1.26
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2307

2.148. nisNetgroupTriple

This attribute contains information on a netgroup used by a NIS server.

NOTE

This attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.14
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in RFC 2307

2.149. nsAccessLog

This entry identifies the access log used by a server.
OID
nsAccessLog-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.150. nsAdminAccessAddresses

This attribute contains the IP address of the Admin Server used by the instance.
OID
nsAdminAccessAddresses-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.151. nsAdminAccessHosts

This attribute contains the hostname of the Admin Server.
OID
nsAdminAccessHosts-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.152. nsAdminAccountInfo

This attribute contains other information about the Admin Server account.
OID
nsAdminAccountInfo-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.153. nsAdminCacheLifetime

This sets the length of time to store the cache used by the Directory Server.
OID
nsAdminCacheLifetime-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.154. nsAdminCgiWaitPid

This attribute defines the wait time for Admin Server CGI process IDs.
OID
nsAdminCgiWaitPid-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.155. nsAdminDomainName

This attribute contains the name of the administration domain containing the Directory Server instance.
OID
nsAdminDomainName-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.156. nsAdminEnableEnduser

This attribute sets whether to allow end user access to admin services.
OID
nsAdminEnableEnduser-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.157. nsAdminEndUserHTMLIndex

This attribute sets whether to allow end users to access the HTML index of admin services.
OID
nsAdminEndUserHTMLIndex-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.158. nsAdminGroupName

This attribute gives the name of the admin guide.
OID
nsAdminGroupName-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.159. nsAdminOneACLDir

This attribute gives the directory path to the directory containing access control lists for the Admin Server.
OID
nsAdminOneACLDir-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.160. nsAdminSIEDN

This attribute contains the DN of the serer instance entry (SIE) for the Admin Server.
OID
nsAdminSIEDN-oid
Syntax
DN
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.161. nsAdminUsers

This attribute gives the path and name of the file which contains the information for the Admin Server admin user.
OID
nsAdminUsers-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.162. nsAIMid

This attribute contains the AOL Instant Messaging user ID for the user.
OID 2.16.840.1.113730.3.2.300
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.163. nsBaseDN

This contains the base DN used in the Directory Server's server instance definition entry.
OID
nsBaseDN-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.164. nsBindDN

This attribute contains the bind DN defined in the Directory Server SIE.
OID
nsBindDN-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.165. nsBindPassword

This attribute contains the password used by the bind DN defined in nsBindDN.
OID
nsBindPassword-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.166. nsBuildNumber

This defines, in the Directory Server SIE, the build number of the server instance.
OID
nsBuildNumber-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.167. nsBuildSecurity

This defines, in the Directory Server SIE, the build security level.
OID
nsBuildSecurity-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.168. nsCertConfig

This attribute defines the configuration for the Red Hat Certificate System.
OID
nsCertConfig-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Certificate System

2.169. nsCertfile

This attribute contains the directory location of a certificate file.
OID
nsCertfile-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.170. nsClassname

OID
nsClassname-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.171. nsConfigRoot

This attribute contains the root DN of the configuration directory.
OID
nsConfigRoot-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.172. nscpAIMScreenname

This attribute gives the AIM screenname of a user.
OID 1.3.6.1.4.1.13769.2.4
Syntax TelephoneString
Multi- or Single-Valued Multi-valued
Defined in Mozilla Address Book

2.173. nsDefaultAcceptLanguage

This attribute contains the language codes which are accepted for HTML clients.
OID
nsDefaultAcceptLanguage-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.174. nsDefaultObjectClass

This attribute stores object class information in a container entry.
OID
nsDefaultObjectClass-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.175. nsDeleteclassname

OID
nsDeleteclassname-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.176. nsDirectoryFailoverList

This attribute contains a list of Directory Servers to use for failover.
OID
nsDirectoryFailoverList-oid
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.177. nsDirectoryInfoRef

This attribute refers to a DN of an entry with information about the server.
OID
nsDirectoryInfoRef-oid
Syntax
DN
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.178. nsDirectoryURL

This attribute contains the Directory Server URL.
OID
nsDirectoryURL-oid
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.179. nsDisplayName

This attribute contains a display name.
OID
nsDisplayName-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.180. nsErrorLog

This attribute identifies the error log used by the server.
OID
nsErrorLog-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.181. nsExecRef

This attribute contains the path or location of an executable which can be used to perform server tasks.
OID
nsExecRef-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.182. nsExpirationDate

This attribute contains the expiration date of an application.
OID
nsExpirationDate-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.183. nsGroupRDNComponent

This attribute defines the attribute to use for the RDN of a group entry.
OID
nsGroupRDNComponent-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.184. nsHardwarePlatform

This attribute indicates the hardware on which the server is running. The value of this attribute is the same as the output from uname -m. For example:
nsHardwarePlatform:i686
OID
nsHardwarePlatform-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.185. nsHelpRef

This attribute contains a reference to an online help file.
OID
nsHelpRef-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.186. nsHostLocation

This attribute contains information about the server host.
OID
nsHostLocation-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.187. nsICQid

This attribute contains an ICQ ID for the user.
OID 2.16.840.1.113730.3.1.2014
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.188. nsInstalledLocation

This attribute contains the installation directory for Directory Servers which are version 7.1 or older.
OID
nsInstalledLocation-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.189. nsJarfilename

This attribute gives the jar file name used by the Console.
OID
nsJarfilename-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.190. nsKeyfile

This attribute contains the path to the key file used by the security module.
OID
nsKeyfile-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.191. nsLdapSchemaVersion

This gives the version number of the LDAP directory schema.
OID
nsLdapSchemaVersion-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.192. nsLicensedFor

The nsLicensedFor attribute identifies the server the user is licensed to use. Admin Server expects each nsLicenseUser entry to contain zero or more instances of this attribute. Valid keywords for this attribute include the following:
  • slapd for a licensed Directory Server client.
  • mail for a licensed mail server client.
  • news for a licensed news server client.
  • cal for a licensed calender server client.
For example:
nsLicensedFor: slapd
OID 2.16.840.1.113730.3.1.36
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Admin Server

2.193. nsLicenseEndTime

Reserved for future use.
OID
2.16.840.1.113730.3.1.38
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Admin Server

2.194. nsLicenseStartTime

Reserved for future use.
OID
2.16.840.1.113730.3.1.37
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Admin Server

2.195. nsLogSuppress

This attribute sets whether to suppress server logging.
OID
nsLogSuppress-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.196. nsmsgDisallowAccess

This attribute defines access to a messaging server.
OID
nsmsgDisallowAccess-oid
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.197. nsmsgNumMsgQuota

This attribute sets a quota for the number of messages which will be kept by the messaging server.
OID
nsmsgNumMsgQuota-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.198. nsMSNid

This attribute contains the MSN instant messaging ID for the user.
OID 2.16.840.1.113730.3.1.2016
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.199. nsNickName

This attribute gives a nickname for an application.
OID
nsNickName-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.200. nsNYR

OID
nsNYR-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Administration Services

2.201. nsOsVersion

This attribute contins the version number of the operating system for the host on which the server is running.
OID
nsOsVersion-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.202. nsPidLog

OID
nsPidLog-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.203. nsPreference

This attribute stores the Console preference settings.
OID
nsPreference-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.204. nsProductName

This contains the name of the product, such as Red Hat Directory Server or Admin Server.
OID
nsProductName-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.205. nsProductVersion

This contains the version number of the Directory Server or Admin Server.
OID
nsProductVersion-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.206. nsRevisionNumber

This attribute contains the revision number of the Directory Server or Admin Server.
OID
nsRevisionNumber-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.207. nsSecureServerPort

This attribute contains the SSL port for the Directory Server.

NOTE

This attribute does not configure the SSL port for the Directory Server. This is configured in nsslapd-secureport configuration attribute in the Directory Server's dse.ldif file. Configuration attributes are described in the Configuration, Command, and File Reference.
OID
nsSecureServerPort-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.208. nsSerialNumber

This attribute contains a serial number or tracking number assigned to a specific server application, such as Red Hat Directory Server or Admin Server.
OID
nsSerialNumber-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.209. nsServerAddress

This attribute contains the IP address of the server host on which the Directory Server is running.
OID
nsServerAddress-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.210. nsServerCreationClassname

This attribute gives the class name to use when creating a server.
OID
nsServerCreationClassname-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.211. nsServerID

This contains the server's instance name. For example:
nsServerID: slapd-example
OID
nsServerID-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.212. nsServerMigrationClassname

This attribute contains the name of the class to use when migrating a server.
OID
nsServerMigrationClassname-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.213. nsServerPort

This attribute contains the standard LDAP port for the Directory Server.

NOTE

This attribute does not configure the standard port for the Directory Server. This is configured in nsslapd-port configuration attribute in the Directory Server's dse.ldif file. Configuration attributes are described in the Configuration, Command, and File Reference.
OID
nsServerPort-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.214. nsServerSecurity

This shows whether the Directory Server requires a secure (SSL/TLS) connection.
OID
nsServerSecurity-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.215. nsSNMPContact

This attribute contains the contact information provided by the SNMP.
OID 2.16.840.1.113730.3.1.235
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.216. nsSNMPDescription

This contains a description of the SNMP service.
OID 2.16.840.1.113730.3.1.236
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.217. nsSNMPEnabled

This attribute shows whether SNMP is enabled for the server.
OID 2.16.840.1.113730.3.1.232
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.218. nsSNMPLocation

This attribute shows the location provided by the SNMP service.
OID 2.16.840.1.113730.3.1.234
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.219. nsSNMPMasterHost

This attribute shows the hostname for the SNMP master agent.
OID 2.16.840.1.113730.3.1.237
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.220. nsSNMPMasterPort

This attribute shows the port number for the SNMP subagent.
OID 2.16.840.1.113730.3.1.238
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.221. nsSNMPOrganization

This attribute contains the organization information provided by SNMP.
OID 2.16.840.1.113730.3.1.233
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.222. nsSSL2

This attribute shows whether SSL version 2 is allowed for the server. SSLv2 has been obsoleted.
OID
nsSSL2-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.223. nsSSL2Ciphers

This attribute contains the list of allowed SSLv2 ciphers. SSLv2 has been obsoleted.
OID
nsSSL2Ciphers-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.224. nsSSL3

This attribute indicates whether SSL version 3 is enabled.
OID
nsSSL3-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.225. nsSSL3Ciphers

This attribute contains the list of allowed SSL3 ciphers.
OID
nsSSL3Ciphers-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.226. nsSSL3SessionTimeout

This attribute shows the SSLv3 cipher session timeout period.
OID
nsSSL3SessionTimeout-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.227. nsSSLActivation

This attribute shows whether an SSL cipher family is enabled.
OID
nsSSLActivation-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.228. nsSSLClientAuth

This attribute shows how the Directory Server enforces client authentication. There are three possible values:
  • require, which means all clients must use client authentication (this means the Directory Server Console cannot be used to manage the instance, since it does not support client authentication)
  • allow, which means the Directory Server accepts client authentication
  • disallow, which means the Directory Server does not accept client authentication
OID
nsSSLClientAuth-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.229. nsSSLPersonalitySSL

This attribute contains the certificate name to use for SSL.
OID
nsSSLPersonalitySSL-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.230. nsSSLSessionTimeout

This attribute sets how long an SSL session is active before it times out.
OID
nsSSLSessionTimeout-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.231. nsSSLSupportedCiphers

This attribute contains the supported ciphers for the server.
OID
nsSSLSupportedCiphers-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.232. nsSSLToken

This attribute contains the name of the token used by the server.
OID
nsSSLToken-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.233. nsSuiteSpotUser

This attribute has been obsoleted.
This attribute identifies the Unix user who installed the server.
OID
nsSuiteSpotUser-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.234. nsTaskLabel

OID
nsTaskLabel-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.235. nsUniqueAttribute

This sets a unique attribute for the server preferences.
OID
nsUniqueAttribute-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.236. nsUserIDFormat

This attribute sets the format to use to generate the uid attribute from the givenname and sn attributes.
OID
nsUserIDFormat-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.237. nsUserRDNComponent

This attribute sets the attribute type to set the RDN for user entries.
OID
nsUserRDNComponent-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.238. nsValueBin

OID 2.16.840.1.113730.3.1.247
Syntax
Binary
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.239. nsValueCES

OID 2.16.840.1.113730.3.1.244
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.240. nsValueCIS

OID 2.16.840.1.113730.3.1.243
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.241. nsValueDefault

OID 2.16.840.1.113730.3.1.250
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.242. nsValueDescription

OID 2.16.840.1.113730.3.1.252
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.243. nsValueDN

OID 2.16.840.1.113730.3.1.248
Syntax
DN
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.244. nsValueFlags

OID 2.16.840.1.113730.3.1.251
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.245. nsValueHelpURL

OID 2.16.840.1.113730.3.1.254
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.246. nsValueInt

OID 2.16.840.1.113730.3.1.246
Syntax
Integer
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.247. nsValueSyntax

OID 2.16.840.1.113730.3.1.253
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.248. nsValueTel

OID 2.16.840.1.113730.3.1.245
Syntax TelephoneString
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.249. nsValueType

OID 2.16.840.1.113730.3.1.249
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape servers — value item

2.250. nsVendor

This contains the name of the server vendor.
OID
nsVendor-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape

2.251. nsViewConfiguration

This attribute stores the view configuration used by Console.
OID
nsViewConfiguration-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.252. nsViewFilter

This attribute sets the attribute-value pair which is used to identify entries belonging to the view.
OID 2.16.840.1.113730.3.1.3023
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.253. nsWellKnownJarfiles

OID
nsWellKnownJarfiles-oid
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.254. nswmExtendedUserPrefs

This attribute is used to store user preferences for accounts in a messaging server.
OID 2.16.840.1.113730.3.1.520
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.255. nsYIMid

This attribute contains the Yahoo instant messaging username for the user.
OID 2.16.840.1.113730.3.1.2015
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Directory Server

2.256. ntGroupAttributes

This attribute points to a binary file which contains information about the group. For example:
ntGroupAttributes:: IyEvYmluL2tzaAoKIwojIGRlZmF1bHQgdmFsdWUKIwpIPSJgaG9zdG5hb
OID 2.16.840.1.113730.3.1.536
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.257. ntGroupCreateNewGroup

The ntGroupCreateNewGroup attribute is used by Windows Sync to determine whether the Directory Server should create new group entry when a new group is created on a Windows server. true creates the new entry; false ignores the Windows entry.
OID 2.16.840.1.113730.3.1.45
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.258. ntGroupDeleteGroup

The ntGroupDeleteGroup attribute is used by Windows Sync to determine whether the Directory Server should delete a group entry when the group is deleted on a Windows sync peer server. true means the account is deleted; false ignores the deletion.
OID 2.16.840.1.113730.3.1.46
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.259. ntGroupDomainId

The ntGroupDomainID attribute contains the domain ID string for a group.
ntGroupDomainId: DS HR Group
OID 2.16.840.1.113730.3.1.44
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.260. ntGroupId

The ntGroupId attribute points to a binary file which identifies the group. For example:
ntGroupId: IOUnHNjjRgghghREgfvItrGHyuTYhjIOhTYtyHJuSDwOopKLhjGbnGFtr
OID 2.16.840.1.113730.3.1.110
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.261. ntGroupType

In Active Directory, there are two major types of groups: security and distribution. Security groups are most similar to groups in Directory Server, since security groups can have policies configured for access controls, resource restrictions, and other permissions. Distribution groups are for mailing distribution. These are further broken down into global and local groups. The Directory Server ntGroupType supports all four group types:
The ntGroupType attribute identifies the type of Windows group. The valid values are as follows:
  • -21483646 for global/security
  • -21483644 for domain local/security
  • 2 for global/distribution
  • 4 for domain local/distribution
This value is set automatically when the Windows groups are synchronized. To determine the type of group, you must manually configure it when the group gets created. By default, Directory Server groups do not have this attribute and are synchronized as global/security groups.
ntGroupType: -21483646
OID 2.16.840.1.113730.3.1.47
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.262. ntUniqueId

The ntUniqueID attribute contains a generated number used for internal server identification and operation. For example:
ntUniqueId: 352562404224a44ab040df02e4ef500b
OID 2.16.840.1.113730.3.1.111
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.263. ntUserAcctExpires

This attribute indicates when the entry's Windows account will expire. This value is stored as a string in GMT format. For example:
ntUserAcctExpires: 20081015203415
OID 2.16.840.1.113730.3.1.528
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.264. ntUserAuthFlags

This attribute contains authorization flags set for the Windows account.
OID 2.16.840.1.113730.3.1.60
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.265. ntUserBadPwCount

This attribute sets the number of bad password failures are allowed before an account is locked.
OID 2.16.840.1.113730.3.1.531
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.266. ntUserCodePage

The ntUserCodePage attribute contains the code page for the user's language of choice. For example:
ntUserCodePage: AAAAAA==
OID 2.16.840.1.113730.3.1.533
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.267. ntUserComment

This attribute contains a text description or note about the user entry.
OID 2.16.840.1.113730.3.1.522
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.268. ntUserCountryCode

This attribute contains the two-character country code for the country where the user is located.
OID 2.16.840.1.113730.3.1.532
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.269. ntUserCreateNewAccount

The ntUserCreateNewAccount attribute is used by Windows Sync to determine whether the Directory Server should create a new user entry when a new user is created on a Windows server. true creates the new entry; false ignores the Windows entry.
OID 2.16.840.1.113730.3.1.42
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.270. ntUserDeleteAccount

The ntUserDeleteAccount attribute IS Used by Windows Sync to determin whether a Directory Server entry will be automatically deleted when the user is deleted from the Windows sync peer server. true means the user entry is deleted; false ignores the deletion.
OID 2.16.840.1.113730.3.1.43
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.271. ntUserDomainId

The ntUserDomainID attribute contains the Windows domain login ID. For example:
ntUserDomainId: jsmith
OID 2.16.840.1.113730.3.1.41
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.272. ntUserFlags

This attribute contains additional flags set for the Windows account.
OID 2.16.840.1.113730.3.1.523
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.273. ntUserHomeDir

The ntUserHomeDir attribute contains an ASCII string representing the Windows user's home directory. This attribute can be null. For example:
ntUserHomeDir: c:\jsmith
OID 2.16.840.1.113730.3.1.521
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.274. ntUserHomeDirDrive

This attribute contains information about the drive on which the user's home directory is stored.
OID 2.16.840.1.113730.3.1.535
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.275. ntUserLastLogoff

The ntUserLastLogoff attribute contains the time of the last logoff. This value is stored as a string in GMT format.
If security logging is turned on, then this attribute is updated on synchronization only if some other aspect of the user's entry has changed.
ntUserLastLogoff: 20101015203415Z
OID 2.16.840.1.113730.3.1.527
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.276. ntUserLastLogon

The ntUserLastLogon attribute contains the time that the user last logged into the Windows domain. This value is stored as a string in GMT format. If security logging is turned on, then this attribute is updated on synchronization only if some other aspect of the user's entry has changed.
ntUserLastLogon: 20101015203415Z
OID 2.16.840.1.113730.3.1.526
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.277. ntUserLogonHours

The ntUserLogonHours attribute contains the time periods that a user is allowed to log onto the Active Directory domain. This attribute corresponds to the logonHours attribute in Active Directory.
OID 2.16.840.1.113730.3.1.530
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.278. ntUserLogonServer

The ntUserLogonServer attribute defines the Active Directory server to which the user's logon request is forwarded.
OID 2.16.840.1.113730.3.1.65
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.279. ntUserMaxStorage

The ntUserMaxStorage attribute contains the maximum amount of disk space available for the user.
ntUserMaxStorage: 4294967295
OID 2.16.840.1.113730.3.1.529
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.280. ntUserNumLogons

This attribute shows the number of successful logons to the Active Directory domain for the user.
OID 2.16.840.1.113730.3.1.64
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.281. ntUserParms

The ntUserParms attribute contains a Unicode string reserved for use by applications.
OID 2.16.840.1.113730.3.1.62
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.282. ntUserPasswordExpired

This attribute shows whether the password for the Active Directory account has expired.
OID 2.16.840.1.113730.3.1.68
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.283. ntUserPrimaryGroupId

The ntUserPrimaryGroupId attribute contains the group ID of the primary group to which the user belongs.
OID 2.16.840.1.113730.3.1.534
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.284. ntUserPriv

This attribute shows the type of privileges allowed for the user.
OID 2.16.840.1.113730.3.1.59
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.285. ntUserProfile

The ntUserProfile attribute contains the path to a user's profile. For example:
ntUserProfile: c:\jsmith\profile.txt
OID 2.16.840.1.113730.3.1.67
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.286. ntUserScriptPath

The ntUserScriptPath attribute contains the path to an ASCII script used by the user to log into the domain.
ntUserScriptPath: c:\jstorm\lscript.bat
OID 2.16.840.1.113730.3.1.524
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.287. ntUserUniqueId

The ntUserUniqueId attribute contains a unique numeric ID for the Windows user.
OID 2.16.840.1.113730.3.1.66
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.288. ntUserUnitsPerWeek

The ntUserUnitsPerWeek attribute contains the total amount of time that the user has spent logged into the Active Directory domain.
OID 2.16.840.1.113730.3.1.63
Syntax Binary
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.289. ntUserUsrComment

The ntUserUsrComment attribute contains additional comments about the user.
OID 2.16.840.1.113730.3.1.61
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.290. ntUserWorkstations

The ntUsersWorkstations attribute contains a list of names, in ASCII strings, of work stations which the user is allowed to log in to. There can be up to eight work stations listed, separated by commas. Specify null to permit users to log on from any workstation. For example:
ntUserWorkstations: firefly
OID 2.16.840.1.113730.3.1.525
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape NT Synchronization

2.291. o (organizationName)

The organizationName, or o, attribute contains the organization name. For example:
organizationName: Example Corporation
o: Example Corporation
OID 2.5.4.10
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.292. objectClass

The objectClass attribute identifies the object classes used for an entry. For example:
objectClass: person
OID 2.5.4.0
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.293. objectClasses

This attribute is used in a schema file to identify an object class allowed by the subschema definition.
OID 2.5.21.6
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2252

2.294. obsoletedByDocument

The obsoletedByDocument attribute contains the distinguished name of a document which obsoletes the current document entry.
OID 0.9.2342.19200300.102.1.4
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in Internet White Pages Pilot

2.295. obsoletesDocument

The obsoletesDocument attribute contains the distinguished name of a documented which is obsoleted by the current document entry.
OID 0.9.2342.19200300.102.1.3
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in Internet White Pages Pilot

2.296. oncRpcNumber

The oncRpcNumber attribute contains part of the RPC map and stores the RPC number for UNIX RPCs.

NOTE

The oncRpcNumber attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.18
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.297. organizationalStatus

The organizationalStatus identifies the person's category within an organization.
organizationalStatus: researcher
OID 0.9.2342.19200300.100.1.45
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.298. otherMailbox

The otherMailbox attribute contains values for email types other than X.400 and RFC 822.
otherMailbox: internet $ jsmith@example.com
OID 0.9.2342.19200300.100.1.22
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.299. ou (organizationalUnitName)

The organizationalUnitName, or ou, contains the name of an organizational division or a subtree within the directory hierarchy.
organizationalUnitName: Marketing
ou: Marketing
OID 2.5.4.11
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.300. owner

The owner attribute contains the DN of the person responsible for an entry. For example:
owner: cn=John Smith,ou=people,dc=example,dc=com
OID 2.5.4.32
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.301. pager

The pagerTelephoneNumber, or pager, attribute contains a person's pager phone number.
pagerTelephoneNumber: 415-555-6789
pager: 415-555-6789
OID 0.9.2342.19200300.100.1.42
Syntax TelephoneNumber
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.302. parentOrganization

The parentOrganization attribute identifies the parent organization of an organization or organizational unit.
OID 1.3.6.1.4.1.1466.101.120.41
Syntax DN
Multi- or Single-Valued Single-valued
Defined in Netscape

2.303. personalSignature

The personalSignature attribute contains the entry's signature file, in binary format.
personalSignature:: AAAAAA==
OID 0.9.2342.19200300.100.1.53
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.304. personalTitle

The personalTitle attribute contains a person's honorific, such as Ms., Dr., Prof., and Rev.
personalTitle: Mr.
OID 0.9.2342.19200300.100.1.40
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.305. photo

The photo attribute contains a photo file, in a binary format.
photo:: AAAAAA==
OID 0.9.2342.19200300.100.1.7
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.306. physicalDeliveryOfficeName

The physicalDeliveryOffice contains the city or town in which a physical postal delivery office is located.
physicalDeliveryOfficeName: Raleigh
OID 2.5.4.19
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.307. postalAddress

The postalAddress attribute identifies the entry's mailing address. This field is intended to include multiple lines. When represented in LDIF format, each line should be separated by a dollar sign ($).
To represent an actual dollar sign ($) or backslash (\) within the entry text, use the escaped hex values \24 and \5c respectively. For example, to represent the string:
The dollar ($) value can be found
in the c:\cost file.
provide the string:
The dollar (\24) value can be found$in the c:\5ccost file.
OID 2.5.4.16
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.308. postalCode

The postalCode contains the zip code for an entry located within the United States.
postalCode: 44224
OID 2.5.4.17
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.309. postOfficeBox

The postOfficeBox attribute contains the postal addres number or post office box number for an entry's physical mailing address.
postOfficeBox: 1234
OID 2.5.4.18
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.310. preferredDeliveryMethod

The preferredDeliveryMethod contains an entry's preferred contact or delivery method. For example:
preferredDeliveryMethod: telephone
OID 2.5.4.28
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.311. preferredLanguage

The preferredLanguage attribute contains a person's preferred written or spoken language. The value should conform to the syntax for HTTP Accept-Language header values.
OID 2.16.840.1.113730.3.1.39
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in RFC 2798

2.312. preferredLocale

A locale identifies language-specific information about how users of a specific region, culture, or custom expect data to be presented, including how data of a given language is interpreted and how data is to be sorted. Directory Server supports three locales for American English, Japanese, and German.
The preferredLocale attribute sets which locale is preferred by a user.
OID 1.3.6.1.4.1.1466.101.120.42
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape

2.313. preferredTimeZone

The preferredTimeZone attribute sets the time zone to use for the user entry.
OID 1.3.6.1.4.1.1466.101.120.43
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in Netscape

2.314. presentationAddress

The presentationAddress attribute contains the OSI presentation address for an entry. This attribute includes the OSI Network Address and up to three selectors, one each for use by the transport, session, and presentation entities. For example:
presentationAddress: TELEX+00726322+RFC-1006+02+130.59.2.1
OID 2.5.4.29
Syntax IA5String
Multi- or Single-Valued Single-valued
Defined in RFC 2256

2.315. protocolInformation

The protocolInformation attribute, used together with the presentationAddress attribute, provides additional information about the OSO network service.
OID 2.5.4.48
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.316. ref

The ref attribute is used to support LDAPv3 smart referrals. The value of this attribute is an LDAP URL:
ldap: host_name:port_number/subtree_dn
The port number is optional.
For example:
ref: ldap://server.example.com:389/ou=People,dc=example,dc=com
OID 2.16.840.1.113730.3.1.34
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in LDAPv3 Referrals Internet Draft

2.317. registeredAddress

This attribute contains a postal address for receiving telegrams or expedited documents. The recipient's signature is usually required on delivery.
OID 2.5.4.26
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.318. roleOccupant

This attribute contains the distinguished name of the person acting in the role defined in the organizationalRole entry.
roleOccupant: uid=bjensen,dc=example,dc=com
OID 2.5.4.33
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.319. roomNumber

This attribute specifies the room number of an object. The cn attribute should be used for naming room objects.
roomNumber: 230
OID 0.9.2342.19200300.100.1.6
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.320. searchGuide

The searchGuide attribute specifies information for suggested search criteria when using the entry as the base object in the directory tree for a search operation. When constructing search filters, use the enhancedSearchGuide attribute instead.
OID 2.5.4.14
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.321. secretary

The secretary attribute identifies an entry's secretary or administrative assistant.
secretary: cn=John Smith,dc=example,dc=com
OID 0.9.2342.19200300.100.1.21
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.322. seeAlso

The seeAlso attribute identifies another Directory Server entry that may contain information related to this entry.
seeAlso: cn=Quality Control Inspectors,ou=manufacturing,dc=example,dc=com
OID 2.5.4.34
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.323. serialNumber

The serialNumber attribute contains the serial number of a device.
serialNumber: 555-1234-AZ
OID 2.5.4.5
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.324. serverHostName

The serverHostName attribute contains the hostname of the server on which the Directory Server is running.
OID 2.16.840.1.113730.3.1.76
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in
Red Hat Administration Services

2.325. serverProductName

The serverProductName attribute contains the name of the server product.
OID 2.16.840.1.113730.3.1.71
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in
Red Hat Administration Services

2.326. serverRoot

This attribute is obsolete.
This attribute shows the installation directory (server root) of Directory Servers version 7.1 or older.
OID 2.16.840.1.113730.3.1.70
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Administration Services

2.327. serverVersionNumber

The serverVersionNumber attribute contains the server version number.
OID 2.16.840.1.113730.3.1.72
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in
Red Hat Administration Services

2.328. shadowExpire

The shadowExpire attribute contains the date that the shadow account expires. The format of the date is in the number days since EPOCH, in UTC. To calculate this on the system, run a command like the following, using -d for the current date and -u to specify UTC:
$ echo `date -u -d 20100108 +%s` /24/60/60 |bc

14617
The result (14617 in the example) is then the value of shadowExpire.
shadowExpire: 14617

NOTE

The shadowExpire attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.10
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.329. shadowFlag

The shadowFlag attribute identifies what area in the shadow map stores the flag values.
shadowFlag: 150

NOTE

The shadowFlag attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.11
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.330. shadowInactive

The shadowInactive attribute sets how long, in days, the shadow account can be inactive.
shadowInactive: 15

NOTE

The shadowInactive attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.9
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.331. shadowLastChange

The shadowLastChange attribute contains the time and date of the last modification to the shadow account.
hadowLastChange: 201003180130

NOTE

The shadowLastChange attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.5
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.332. shadowMax

The shadowMax attribute Sets the maximum number of days that a shadow password is valid.
shadowMax: 10

NOTE

The shadowMax attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.7
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.333. shadowMin

The shadowMin attribute sets the minimum number of days that must pass between changing the shadow password.
shadowMin: 3

NOTE

The shadowMin attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.6
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.334. shadowWarning

The shadowWarning attribute sets how may days in advance of password expiration to send a warning to the user.
shadowWarning: 2

NOTE

The shadowWarning attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.8
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.335. singleLevelQuality

The singleLevelQuality specifies the purported data quality at the level immediately below in the directory tree.
OID 0.9.2342.19200300.100.1.50
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in RFC 1274

2.336. sn (surname)

The surname, or sn, attribute contains an entry's surname, also called a last name or family name.
surname: Jensen
sn: Jensen
OID 2.5.4.4
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.337. st (stateOrProvinceName)

The stateOrProvinceName, or st, attributes contains the entry's state or province.
stateOrProvinceName: California
st: California
OID 2.5.4.8
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.338. street

The streetAddress, or street, attribute contains an entry's street name and residential address.
streetAddress: 1234 Ridgeway Drive 
street: 1234 Ridgeway Drive
OID 2.5.4.9
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.339. subject

The subject attribute contains information about the subject matter of the document entry.
subject: employee option grants
OID 0.9.2342.19200300.102.1.8
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Internet White Pages Pilot

2.340. subtreeMaximumQuality

The subtreeMaximumQuality attribute specifies the purported maximum data quality for a directory subtree.
OID 0.9.2342.19200300.100.1.52
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in RFC 1274

2.341. subtreeMinimumQuality

The subtreeMinimumQuality specifies the purported minimum data quality for a directory subtree.
OID 0.9.2342.19200300.100.1.51
Syntax DirectoryString
Multi- or Single-Valued Single-valued
Defined in RFC 1274

2.342. supportedAlgorithms

The supportedAlgorithms attribute contains algorithms which are requested and stored in a binary form, such as supportedAlgorithms;binary.
supportedAlgorithms:: AAAAAA==
OID 2.5.4.52
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.343. supportedApplicationContext

This attribute contains the identifiers of OSI application contexts.
OID 2.5.4.30
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.344. telephoneNumber

The telephoneNumber contains an entry's phone number. For example:
telephoneNumber: 415-555-2233
OID 2.5.4.20
Syntax TelephoneNumber
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.345. teletexTerminalIdentifier

The teletexTerminalIdentifier attribute contains an entry's teletex terminal identifier. The first printable string in the example is the encoding of the first portion of the teletex terminal identifier to be encoded, and the subsequent 0 or more octetstrings are subsequent portions of the teletex terminal identifier:
teletex-id = ttx-term 0*("$" ttx-param)
ttx-term = printablestring
ttx-param = ttx-key ":" ttx-value
ttx-key = "graphic" / "control" / "misc" / "page" / "private"
ttx-value = octetstring
OID 2.5.4.22
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.346. telexNumber

This attribute defines the telex number of the entry. The format of the telex number is as follows:
actual-number "$" country "$" answerback
  • actual-number is the syntactic representation of the number portion of the telex number being encoded.
  • country is the TELEX country code.
  • answerback is the answerback code of a TELEX terminal.
OID 2.5.4.21
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.347. textEncodedORAddress

The textEncodedORAddress attribute defines the text-encoded Originator/Recipient (X.400) address of the entry as defined in RFC 987.
textEncodedORAddress: /S=doe/OU=eng/O=example/ADMD=telemail/C=us/
OID 0.9.2342.19200300.100.1.2
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.348. title

The title attribute contains a person's title within the organization.
title: Senior QC Inspector
OID 2.5.4.12
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.349. ttl (TimeToLive)

The timeToLive, or ttl, attribute contains the time, in seconds, that cached information about an entry should be considered valid. Once the specified time has elapsed, the information is considered out of date. A value of zero (0) indicates that the entry should not be cached.
timeToLive: 120
ttl: 120
OID 1.3.6.1.4.250.1.60
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in LDAP Caching Internet Draft

2.350. uid (userID)

The userID, more commonly uid, attribute contains the entry's unique username.
userid: jsmith
uid: jsmith
OID 0.9.2342.19200300.100.1.1
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.351. uidNumber

The uidNumber attribute contains a unique numberic identifier for a user entry. This is analogous to the user number in Unix.
uidNumber: 120

NOTE

The uidNumber attribute is defined in 10rfc2307.ldif in the Directory Server. To use the updated RFC 2307 schema, remove the 10rfc2307.ldif file and copy the 10rfc2307bis.ldif file from the /usr/share/dirsrv/data directory to the /etc/dirsrv/slapd-instance_name/schema directory.
OID 1.3.6.1.1.1.1.0
Syntax Integer
Multi- or Single-Valued Single-valued
Defined in RFC 2307

2.352. uniqueIdentifier

This attribute identifies a specific item used to distinguish between two entries when a distinguished name has been reused. This attribute is intended to detect any instance of a reference to a distinguished name that has been deleted. This attribute is assigned by the server.
uniqueIdentifier:: AAAAAA==
OID 0.9.2342.19200300.100.1.44
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.353. uniqueMember

The uniqueMember attribute identifies a group of names associated with an entry where each name was given a uniqueIdentifier to ensure its uniqueness. A value for the uniqueMember attribute is a DN followed by the uniqueIdentifier.
OID 2.5.4.50
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.354. updatedByDocument

The updatedByDocument attribute contains the distinguished name of a document that is an updated version of the document entry.
OID 0.9.2342.19200300.102.1.6
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in Internet White Pages Pilot

2.355. updatesDocument

The updatesDocument attribute contains the distinguished name of a document for which this document is an updated version.
OID 0.9.2342.19200300.102.1.5
Syntax DN
Multi- or Single-Valued Multi-valued
Defined in Internet White Pages Pilot

2.356. userCertificate

This attribute is stored and requested in the binary form, as userCertificate;binary.
userCertificate;binary:: AAAAAA==
OID 2.5.4.36
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.357. userClass

This attribute specifies a category of computer user. The semantics of this attribute are arbitrary. The organizationalStatus attribute makes no distinction between computer users and other types of users users and may be more applicable.
userClass: intern
OID 0.9.2342.19200300.100.1.8
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in RFC 1274

2.358. userPassword

This attribute identifies the entry's password and encryption method in the format {encryption method}encrypted password. For example:
userPassword: {sha}FTSLQhxXpA05
Transferring cleartext passwords is strongly discouraged where the underlying transport service cannot guarantee confidentiality. Transferring in cleartext may result in disclosure of the password to unauthorized parties.
OID 2.5.4.35
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.359. userPKCS12

This attribute provides a format for the exchange of personal identity information. The attribute is stored and requested in binary form, as userPKCS12;binary. The attribute values are PFX PDUs stored as binary data.
OID 2.16.840.1.113730.3.1.216
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2798

2.360. userSMIMECertificate

The userSMIMECertificate attribute contains certificates which can be used by mail clients for S/MIME. This attribute requests and stores data in a binary format. For example:
userSMIMECertificate;binary:: AAAAAA==
OID 2.16.840.1.113730.3.1.40
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2798

2.361. vacationEndDate

This attribute shows the ending date of the user's vacation period.
OID 2.16.840.1.113730.3.1.708
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.362. vacationStartDate

This attribute shows the start date of the user's vacation period.
OID 2.16.840.1.113730.3.1.707
Syntax DirectoryString
Multi- or Single-Valued Multi-valued
Defined in Netscape Messaging Server

2.363. x121Address

The x121Address attribute contains a user's X.121 address.
OID 2.5.4.24
Syntax IA5String
Multi- or Single-Valued Multi-valued
Defined in RFC 2256

2.364. x500UniqueIdentifier

Reserved for future use. An X.500 identifier is a binary method of identification useful for differentiating objects when a distinguished name has been reused.
x500UniqueIdentifier:: AAAAAA==
OID 2.5.4.45
Syntax Binary
Multi- or Single-Valued Multi-valued
Defined in RFC 2256