LDAP Add custom Fields

Source: Internet
Author: User
Tags ldap openldap

For project reasons, you need to configure two custom properties for the InetOrgPerson object class in LDAP.

    • Isabsent 128-character characters string, single-value

    • Substitutes 128-character characters string, multi-value


After you have reviewed the administrative documentation for OPENLDAP and the examples on the web, the solution is as follows:

Edit OpenLDAP Schema Definition file inetorgperson.schema, add attribute definition

AttributeType (2.16.840.1.113730.3.1.900
  name ' isabsent '
  desc ' whether the person is absent from work '
  equality caseignorematch
  syntax 1.3.6.1.4.1.1466.115.121.1.15{
  single-value)

AttributeType (2.16.840.1.113730.3.1.901
  name ' Substitutes '
  desc ' people substitutes when absent '
  equality caseignorematch
   syntax 1.3.6.1.4.1.1466.115.121.1.15{128})


where 2.16.840.1.113730.3.1.900 and 901 are selected for unused OIDs (do not know if they have been used?). Google bar), while 1.3.6.1.4.1.1466.115.121.1.15 is the syntax for string types.

Enable these 2 properties in the InetOrgPerson class

objectclass (2.16.840.1.113730.3.2.2
NAME ' InetOrgPerson '
DESC ' rfc2798:internet organizational person '
SUP Organizationalperson
STRUCTURAL
May (
...
Isabsent $ substitutes)
)

Enable Inetorgperson.schema in slapd.conf

#
# See slapd.conf (5) For details on configuration options.
# This file should is not being world readable.
#
Ucdata-path./ucdata
Include./schema/core.schema
Include./schema/cosine.schema
Include./schema/inetorgperson.schema
Include./schema/nis.schema

After restarting the LDAP service, everything is done.


LDAP Add custom Fields

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.