Extending the Schema on Linux or Solaris Systems

The following sections provide information about extending the schema on Linux* and Solaris* systems:


Using the ndssch Utility to Extend the Schema on Linux or Solaris

You can use ndssch, the eDirectory schema extension utility, to extend the schema on Linux or Solaris systems. The attributes and classes that you specify in the schema file (.SCH) will be used to modify the schema of the tree. The association between the attributes and classes are created as specified in the .SCH file.

To extend the schema:

  1. Use the following syntax:

    ndssch [-h <hostname>[:<port>]] [-t tree_nameadmin-FDN schemafile...

    ndssch [-h <hostname>[:<port>]] [-t tree_name] [-d] admin_FDN schemafile [schema_description]...

    2.


Table 27. ndssch Parameters

ndssch Parameters Description

-h hostname

The name or IP address of the server on which the schema is to be extended. The schema of the tree that the specified server belongs to will be extended. This is an optional parameter if the tree is located on the host whose schema is to be extended, otherwise it is a mandatory parameter.

port

Specifies the server port.

-t tree_name

Name of the tree on which the schema is to be extended. This is an optional parameter. The default tree name is the one specified in the /etc/nds.conf file. For more information, see Configuration Parameters.

admin-FDN

Name with the full context of the user with eDirectory administrator rights to the Tree.

schemafile

Filename that contains information about the schema to be extended.

-d, schema_description

When this option is used, every schema file must be followed by a description of the schema file.

Extending the RFC 2307 Schema

The attributes and object classes defined in RFC 2307 are user or group related and NIS related. The user or group related definitions are compiled into the /usr/lib/nds-modules/schema/rfc2307-usergroup.sch file. The NIS related definitions are compiled into the /usr/lib/nds-modules/schema/rfc2307-nis.sch file. The corresponding files in the LDIF format are also provided (/usr/lib/nds-modules/schema/rfc2307-usergroup.ldif and /usr/lib/nds-modules/schema/rfc2307-nis.ldif respectively).

You can extend the RFC 2307 schema using the ndssch utility or the ldapmodify tool.

To extend the schema using the ndssch utility:

  1. Enter the following command:

    ndssch -t /usr/lib/nds-modules/schema/rfc2307-usergroup.sch

    or

    ndssch -t /usr/lib/nds-modules/schema/rfc2307-nis.sch


    Table 28. ndssch Parameters

    ndssch Parameter Description

    -t

    The name of the tree on which the schema is to be extended. This is an optional parameter. If this parameter is not specified, the tree name is taken from the /etc/nds.conf file.

To extend the schema using the ldapmodify utility:

  1. Enter the following command:

    ldapmodify -h -D -w -f /usr/lib/nds-modules/schema/rfc2307-usergroup.ldif

    or

    ldapmodify -h -D -w -f /usr/lib/nds-modules/schema/rfc2307-nis.ldif


    Table 29. ldapmodify Parameters

    ldapmodify Parameters Description

    -h ldaphost

    Specify an alternate host on which the LDAP server is running.

    -D binddn

    Use binddn to bind to the X.500 directory. binddn should be a string-represented DN as defined in RFC 1779.

    -w passwd

    Use passwd as the password for simple authentication.

    -f file

    Read the entry modification information from file instead of from standard input.


Previous | Next