Ldap Schema

Our IANA PEN is 1.3.6.1.4.1.8186.12. We were given this number by Caltech.

See http://www.openldap.org/doc/admin22/schema.html for help on editing schemas.

When editing files, use slaptest to see if your config files are correct. This saves you the headache of having the ldap server not start back up because you goofed the config file (which is pretty easy to do, it's kinda picky)

Last used objectclass OID: 1.3.6.1.4.1.8186.12.2.3

Lat used attributetype OID: 1.3.6.1.4.1.8186.12.1.11

=OU's=
 * People: all users go under here
 * Groups: groups go under here
 * Hosts: All hosts go in here
 * Maillists: A custom UGCS ou, it contains all the mailing lists (at least the ones that have ldap entries). The principal remctl/maillist has write access to it.
 * Loginrecords: Another custom UGCS ou, it contains login records (see objectclass "loginrecord" )

=Object Classes= Object Classes go under 1.3.6.1.4.1.8186.12.2

maillist
Represents a UGCS mailing list. Currently it just exists so you can make it an amavisAccount and add spam filtering stuff to it.
 * OID 1.3.6.1.4.1.8186.12.2.1, MUST mail, cn

loginrecord

 * OID 1.3.6.1.4.1.8186.12.2.2 MUST cn, uid, status, logintime, ipHostNumber, source MAY logouttime
 * The CN for this record should be a unique login session id (randomly generated)
 * source should not be publicly readable, the rest don't matter


 * Attribute status: OID 1.3.6.1.4.1.8186.12.1.1, text, should be one of "loggedin", "loggedout"
 * Attribute logintime, logouttime: OID 1.3.6.1.4.1.8186.12.1.(2,3)
 * Attribute source: 1.3.6.1.4.1.8186.12.1.5, IP of the computer they logged in from, "gdm" for graphical login, or "tty#" for a terminal

ugcshost

 * OID 1.3.6.1.4.1.8186.12.2.3 MAY hostclass, hoststatus, mssh


 * Attribute hostclass- "coreserver", "shellserver", etc
 * Attribute hoststatus- should be one of "up" or "down"
 * Attribute mssh: if mssh should include this computer
 * Attribute load: The last known load of the machine
 * Attribute nusers: The number of users currently logged in
 * Attribute lastupdate: The last time that the load was updated

ugcsuser

 * OID 1.3.6.1.4.1.8186.12.2.4 MAY migratedPassword, isClub, listWebsite, websiteShortDesc, websiteDesc
 * Attribute 1.3.6.1.4.1.8186.15.1.6 migratedPassword- boolean if the user has migrated their password
 * Attribute isClub 1.3.6.1.4.1.8186.15.1.7- boolean if the user is a club (currently unused)
 * Attribute listWebsite 1.3.6.1.4.1.8186.15.1.8- boolean if the user wants their site listed on our directory
 * Attribute websiteShortDesc 1.3.6.1.4.1.8186.15.1.9- short description of the user's website