Friday, February 28, 2003
And so here is my first LDAP schema. It's pretty simple, it just holds the D3 server and SSH Public key for a user. It goes in /etc/openldap/schema/cli.schema on Red Hat Linux using OpenLDAP:
#
# My Fabulous private schema
#
# OIDS:
# iso.org.dod.internet.private.enterprise.me.myclient.ldap.attributetype
# 1 3 6 1 4 1 15823 1 1 1
# iso.org.dod.internet.private.enterprise.me.myclient.ldap.objectclass
# 1 3 6 1 4 1 15823 1 1 2
#
# Created by: John Lombardo <JohnLombardo@acm.org>
#
# Attribute Type Definitions
attributetype ( 1.3.6.1.4.1.15823.1.1.1.1 NAME 'SSHPublicKey'
DESC 'Public key for ssh'
EQUALITY caseExactIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.15823.1.1.1.2 NAME 'DBHost'
DESC 'Which DB server does this user use.'
EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.44
SINGLE-VALUE )
# Object Class Definitions
objectclass ( 1.3.6.1.4.1.15823.1.1.2.1 NAME 'CliUser'
DESC 'CliUser' SUP top AUXILIARY
MUST ( uid )
MAY ( SSHPublicKey $ D3Host )
)
# posted by John : 1:52 PM
