3.1.1.2.4.8 Class classSchema

  • Article

The attributes of class classSchema are specified in the following table.

The term "Unique" (in quotation marks) in the table is defined in section 3.1.1.2.3.

The term system-only in the table is defined in section 3.1.1.2.3.

Attribute

Description

objectClass

Equals the sequence [ top, classSchema ]. System-only.

governsID

"Unique" OID that identifies this class. System-only.

schemaIDGUID

"Unique" GUID that identifies this class, used in security descriptors. If not specified on Add, the DC generates a GUID. This GUID MUST NOT be the NULL GUID. System-only.

msDS-IntId

Optional. 32-bit unsigned integer. System-only.

rDNAttID

Optional. attributeID of the RDN attribute. If the rDNAttID is not present, the RDN attribute is inherited from the superclass of this class. System-only.

subClassOf

governsID of the superclass of this class. System-only. Also see section 3.1.1.2.5.2 for auto-generated behavior when a new classSchema object is created.

systemMustContain

Optional. attributeIDs of the mandatory attributes of this class. This attribute is system-only.

systemMayContain

Optional. attributeIDs of the optional attributes of this class. This attribute is system-only.

systemPossSuperiors

Optional. governsIDs of the classes that can be parents of this class within an NC tree. This attribute is system-only.

systemAuxiliaryClass

Optional. governsIDs of the auxiliary classes that are statically linked to this class. This attribute is system-only.

objectClassCategory

Class category (section 3.1.1.2.4.1), encoded as follows:

0: 88 Class

1: Structural class

2: Abstract class

3: Auxiliary class

System-only.

systemFlags

Optional. Flags that determine specific system operations; see section 2.2.10 for values. The single systemFlags value specific to a classSchema object is:

FLAG_SCHEMA_BASE_OBJECT: this class is part of the base schema. Modifications to a base schema object are restricted as described in section 3.1.1.2.5.

System-only.

systemOnly

Optional. Only a DC can create (section 3.1.1.5.2.2) and modify (section 3.1.1.5.3.2) instances of a system-only class. System-only.

cn

RDN for the schema object.

lDAPDisplayName

"Unique" name that identifies this class, used by LDAP clients. If not specified on Add, the DC generates a value as specified in section 3.1.1.2.3.4. The syntax of lDAPDisplayName is described in [RFC2251] section 4.1.4.

mustContain

Optional. attributeIDs of the mandatory attributes of this class in addition to the systemMustContain attributes.

mayContain

Optional. attributeIDs of the optional attributes of this class in addition to the systemMayContain attributes.

possSuperiors

Optional. governsIDs of the classes that can be parents of this class within an NC tree, in addition to the systemPossSuperiors classes.

auxiliaryClass

Optional. governsIDs of the auxiliary classes that are statically linked to this class, in addition to the systemAuxiliaryClass classes.

defaultSecurityDescriptor

Optional. The default security descriptor (in SDDL format, [MS-DTYP] section 2.5.1) that is assigned to new instances of this class if no security descriptor is specified during creation of the class or is merged into a security descriptor if one is specified. The rules for security descriptor merging are specified in [MS-DTYP] section 2.5.3.4.

defaultObjectCategory

A reference to some classSchema object. This value is the default value of the objectCategory attribute of new instances of this class if none is specified during LDAP Add. Also see section 3.1.1.2.5.2 for auto-generated behavior when a new classSchema object is created.

defaultHidingValue

Optional. If defaultHidingValue is TRUE on a classSchema object, then when an Add creates an instance of this class (that is, where this class is the most specific class) and the Add does not specify a value for the showInAdvancedViewOnly attribute, it is as if the Add had specified TRUE for the showInAdvancedViewOnly attribute.

The showInAdvancedViewOnly attribute is interpreted by LDAP clients, not by the DC. If TRUE, certain user interfaces do not display the object.

showInAdvancedViewOnly

Specifies whether the attribute is to be visible in the advanced mode of user interfaces.

Also see defaultHidingValue defined previously and section 3.1.1.2.5.2 for auto-generated behavior when a new classSchema object is created.