2 # Active Directory Schema for sudo configuration (sudoers)
\r
4 # To extend your Active Directory schema, run one of the following command
\r
5 # on your Windows DC (default port - Active Directory):
\r
7 # ldifde -i -f schema.ActiveDirectory -c "CN=Schema,CN=Configuration,DC=X" #schemaNamingContext
\r
9 # or on your Windows DC if using another port (with Active Directory LightWeight Directory Services / ADAM-Active Directory Application Mode)
\r
10 # Port 50000 by example (or any other port specified when defining the ADLDS/ADAM instance
\r
12 # ldifde -i -f schema.ActiveDirectory -t 50000 -c "CN=Schema,CN=Configuration,DC=X" #schemaNamingContext
\r
16 # ldifde -i -f schema.ActiveDirectory -s server:port -c "CN=Schema,CN=Configuration,DC=X" #schemaNamingContext
\r
18 # Can add username domain and password
\r
20 # -b username domain password
\r
22 # Can create Log file in current or any directory
\r
27 dn: CN=sudoUser,CN=Schema,CN=Configuration,DC=X
\r
30 objectClass: attributeSchema
\r
32 distinguishedName: CN=sudoUser,CN=Schema,CN=Configuration,DC=X
\r
34 attributeID: 1.3.6.1.4.1.15953.9.1.1
\r
35 attributeSyntax: 2.5.5.5
\r
36 isSingleValued: FALSE
\r
37 showInAdvancedViewOnly: TRUE
\r
38 adminDisplayName: sudoUser
\r
39 adminDescription: User(s) who may run sudo
\r
42 lDAPDisplayName: sudoUser
\r
44 schemaIDGUID:: JrGcaKpnoU+0s+HgeFjAbg==
\r
45 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
\r
47 dn: CN=sudoHost,CN=Schema,CN=Configuration,DC=X
\r
50 objectClass: attributeSchema
\r
52 distinguishedName: CN=sudoHost,CN=Schema,CN=Configuration,DC=X
\r
54 attributeID: 1.3.6.1.4.1.15953.9.1.2
\r
55 attributeSyntax: 2.5.5.5
\r
56 isSingleValued: FALSE
\r
57 showInAdvancedViewOnly: TRUE
\r
58 adminDisplayName: sudoHost
\r
59 adminDescription: Host(s) who may run sudo
\r
61 lDAPDisplayName: sudoHost
\r
63 schemaIDGUID:: d0TTjg+Y6U28g/Y+ns2k4w==
\r
64 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
\r
66 dn: CN=sudoCommand,CN=Schema,CN=Configuration,DC=X
\r
69 objectClass: attributeSchema
\r
71 distinguishedName: CN=sudoCommand,CN=Schema,CN=Configuration,DC=X
\r
73 attributeID: 1.3.6.1.4.1.15953.9.1.3
\r
74 attributeSyntax: 2.5.5.5
\r
75 isSingleValued: FALSE
\r
76 showInAdvancedViewOnly: TRUE
\r
77 adminDisplayName: sudoCommand
\r
78 adminDescription: Command(s) to be executed by sudo
\r
80 lDAPDisplayName: sudoCommand
\r
82 schemaIDGUID:: D6QR4P5UyUen3RGYJCHCPg==
\r
83 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
\r
85 dn: CN=sudoRunAs,CN=Schema,CN=Configuration,DC=X
\r
88 objectClass: attributeSchema
\r
90 distinguishedName: CN=sudoRunAs,CN=Schema,CN=Configuration,DC=X
\r
92 attributeID: 1.3.6.1.4.1.15953.9.1.4
\r
93 attributeSyntax: 2.5.5.5
\r
94 isSingleValued: FALSE
\r
95 showInAdvancedViewOnly: TRUE
\r
96 adminDisplayName: sudoRunAs
\r
97 adminDescription: User(s) impersonated by sudo (deprecated)
\r
99 lDAPDisplayName: sudoRunAs
\r
101 schemaIDGUID:: CP98mCQTyUKKxGrQeM80hQ==
\r
102 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
\r
104 dn: CN=sudoOption,CN=Schema,CN=Configuration,DC=X
\r
107 objectClass: attributeSchema
\r
109 distinguishedName: CN=sudoOption,CN=Schema,CN=Configuration,DC=X
\r
111 attributeID: 1.3.6.1.4.1.15953.9.1.5
\r
112 attributeSyntax: 2.5.5.5
\r
113 isSingleValued: FALSE
\r
114 showInAdvancedViewOnly: TRUE
\r
115 adminDisplayName: sudoOption
\r
116 adminDescription: Option(s) followed by sudo
\r
118 lDAPDisplayName: sudoOption
\r
120 schemaIDGUID:: ojaPzBBlAEmsvrHxQctLnA==
\r
121 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
\r
123 dn: CN=sudoRunAsUser,CN=Schema,CN=Configuration,DC=X
\r
126 objectClass: attributeSchema
\r
128 distinguishedName: CN=sudoRunAsUser,CN=Schema,CN=Configuration,DC=X
\r
130 attributeID: 1.3.6.1.4.1.15953.9.1.6
\r
131 attributeSyntax: 2.5.5.5
\r
132 isSingleValued: FALSE
\r
133 showInAdvancedViewOnly: TRUE
\r
134 adminDisplayName: sudoRunAsUser
\r
135 adminDescription: User(s) impersonated by sudo
\r
137 lDAPDisplayName: sudoRunAsUser
\r
138 name: sudoRunAsUser
\r
139 schemaIDGUID:: 9C52yPYd3RG3jMR2VtiVkw==
\r
140 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
\r
142 dn: CN=sudoRunAsGroup,CN=Schema,CN=Configuration,DC=X
\r
145 objectClass: attributeSchema
\r
147 distinguishedName: CN=sudoRunAsGroup,CN=Schema,CN=Configuration,DC=X
\r
149 attributeID: 1.3.6.1.4.1.15953.9.1.7
\r
150 attributeSyntax: 2.5.5.5
\r
151 isSingleValued: FALSE
\r
152 showInAdvancedViewOnly: TRUE
\r
153 adminDisplayName: sudoRunAsGroup
\r
154 adminDescription: Groups(s) impersonated by sudo
\r
156 lDAPDisplayName: sudoRunAsGroup
\r
157 name: sudoRunAsGroup
\r
158 schemaIDGUID:: xJhSt/Yd3RGJPTB1VtiVkw==
\r
159 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
\r
161 dn: CN=sudoNotBefore,CN=Schema,CN=Configuration,DC=X
164 objectClass: attributeSchema
166 distinguishedName: CN=sudoNotBefore,CN=Schema,CN=Configuration,DC=X
168 attributeID: 1.3.6.1.4.1.15953.9.1.8
169 attributeSyntax: 1.3.6.1.4.1.1466.115.121.1.24
171 showInAdvancedViewOnly: TRUE
172 adminDisplayName: sudoNotBefore
173 adminDescription: Start of time interval for which the entry is valid
175 lDAPDisplayName: sudoNotBefore
177 schemaIDGUID:: xJhSt/Yd3RGJPTB1VtiVkw==
178 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
180 dn: CN=sudoNotAfter,CN=Schema,CN=Configuration,DC=X
183 objectClass: attributeSchema
185 distinguishedName: CN=sudoNotAfter,CN=Schema,CN=Configuration,DC=X
187 attributeID: 1.3.6.1.4.1.15953.9.1.9
188 attributeSyntax: 1.3.6.1.4.1.1466.115.121.1.24
190 showInAdvancedViewOnly: TRUE
191 adminDisplayName: sudoNotAfter
192 adminDescription: End of time interval for which the entry is valid
194 lDAPDisplayName: sudoNotAfter
196 schemaIDGUID:: xJhSt/Yd3RGJPTB1VtiVkw==
197 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
199 dn: CN=sudoOrder,CN=Schema,CN=Configuration,DC=X
202 objectClass: attributeSchema
204 distinguishedName: CN=sudoOrder,CN=Schema,CN=Configuration,DC=X
206 attributeID: 1.3.6.1.4.1.15953.9.1.10
207 attributeSyntax: 1.3.6.1.4.1.1466.115.121.1.27
209 showInAdvancedViewOnly: TRUE
210 adminDisplayName: sudoOrder
211 adminDescription: an integer to order the sudoRole entries
213 lDAPDisplayName: sudoOrder
215 schemaIDGUID:: xJhSt/Yd3RGJPTB1VtiVkw==
216 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
220 add: schemaUpdateNow
\r
224 dn: CN=sudoRole,CN=Schema,CN=Configuration,DC=X
\r
227 objectClass: classSchema
\r
229 distinguishedName: CN=sudoRole,CN=Schema,CN=Configuration,DC=X
\r
231 possSuperiors: container
\r
234 governsID: 1.3.6.1.4.1.15953.9.2.1
\r
235 mayContain: sudoCommand
\r
236 mayContain: sudoHost
\r
237 mayContain: sudoOption
\r
238 mayContain: sudoRunAs
\r
239 mayContain: sudoRunAsUser
\r
240 mayContain: sudoRunAsGroup
\r
241 mayContain: sudoUser
\r
242 mayContain: sudoNotBefore
243 mayContain: sudoNotAfter
244 mayContain: sudoOrder
246 showInAdvancedViewOnly: FALSE
\r
247 adminDisplayName: sudoRole
\r
248 adminDescription: Sudoer Entries
\r
249 objectClassCategory: 1
\r
250 lDAPDisplayName: sudoRole
\r
252 schemaIDGUID:: SQn432lnZ0+ukbdh3+gN3w==
\r
254 objectCategory: CN=Class-Schema,CN=Schema,CN=Configuration,DC=X
\r
255 defaultObjectCategory: CN=sudoRole,CN=Schema,CN=Configuration,DC=X
\r