- 论坛徽章:
- 0
|
受教了 diy大 提供的书的确经典,我所说的Person 是指 Person.schema 这样的模板文件。是否是我理解上有误区,官方定义的objectClass是不是因该都存在于schema的目录下。如果不存在schema目录下,我如何知道在定义的objectclass下,是否支持以uid、cn、sn、id等等来命名dn。
我遇到了这样一个问题
........
dn: id=1,dc=mydomain,dc=com
objectclass: Person
........
ldapadd 加入时报错:
adding new entry "id=1,dc=ldapm,dc=com"
ldap_add: Object class violation (65)
additional info: attribute 'id' not allowed
感觉是和objectclass 定义有关,但是查不到Person相关的定义.
官方定义的objectClass:
alias
applicationEntity
dSA
applicationProcess
bootableDevice
certificationAuthority
certificationAuthority-V2
country
cRLDistributionPoint
dcObject
device
dmd
domain
domainNameForm
extensibleObject
groupOfNames
groupOfUniqueNames
ieee802Device
ipHost
ipNetwork
ipProtocol
ipService
locality
dcLocalityNameForm
nisMap
nisNetgroup
nisObject
oncRpc
organization
dcOrganizationNameForm
organizationalRole
organizationalUnit
dcOrganizationalUnitNameForm
person
organizationalPerson
inetOrgPerson
uidOrganizationalPersonNameForm
residentialPerson
posixAccount
posixGroup
shadowAccount
strongAuthenticationUser
uidObject
userSecurityInformation |
|