![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
1 # $Id: kolab2.schema,v 1.12 2005/06/11 16:40:23 martin Exp $
2 # (c) 2003, 2004 Tassilo Erlewein <tassilo.erlewein@erfrakon.de>
3 # (c) 2003, 2004 Martin Konold <martin.konold@erfrakon.de>
4 # (c) 2003 Achim Frank <achim.frank@erfrakon.de>
5 #
6 # Redistribution and use in source and binary forms, with or without
7 # modification, are permitted provided that the following conditions are met:
8 #
9 # Redistributions of source code must retain the above copyright notice, this
10 # list of conditions and the following disclaimer.
11 #
12 # Redistributions in binary form must reproduce the above copyright notice,
13 # this list of conditions and the following disclaimer in the documentation
14 # and/or other materials provided with the distribution.
15 #
16 # The name of the author may not be used to endorse or promote products derived
17 # from this software without specific prior written permission.
18 #
19 #
20 # THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED
21 # WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
22 # MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO
23 # EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
24 # SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
25 # PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS;
26 # OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
27 # WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
28 # OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
29 # ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
31 # This schema highly depends on the core.schema, cosine.schema and the inetorgperson.schema
32 # as provided by 3rd parties like OpenLDAP.
33 #
34 # slapd.conf then looks like
35 # include /kolab/etc/openldap/schema/core.schema
36 # include /kolab/etc/openldap/schema/cosine.schema
37 # include /kolab/local/etc/openldap/schema/inetorgperson.schema
38 # include /kolab/local/etc/openldap/schema/kolab2.schema
40 #
41 ####################
42 # kolab attributes #
43 ####################
45 # helper attribute to make the kolab root easily findable in
46 # a big ldap directory
47 attributetype ( 1.3.6.1.4.1.19414.2.1.1
48 NAME ( 'k' 'kolab' )
49 DESC 'Kolab attribute'
50 SUP name )
52 # kolabDeleteflag used to be a boolean but describes with Kolab 2
53 # the fqdn of the server which is requested to delete this objects
54 # in its local store
55 attributetype ( 1.3.6.1.4.1.19414.2.1.2
56 NAME 'kolabDeleteflag'
57 DESC 'Per host deletion status'
58 EQUALITY caseIgnoreIA5Match
59 SUBSTR caseIgnoreIA5SubstringsMatch
60 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
62 # alias used to provide alternative rfc822 email addresses for kolab users
63 attributetype ( 1.3.6.1.4.1.19414.2.1.3
64 NAME 'alias'
65 DESC 'RFC1274: RFC822 Mailbox'
66 EQUALITY caseIgnoreIA5Match
67 SUBSTR caseIgnoreIA5SubstringsMatch
68 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
70 # kolabEncryptedPassword is an asymmetrically (RSA) encrypted copy of the
71 # cleartext password. This is required in order to pass the password from
72 # the maintainance/administration application to the kolabHomeServer running the
73 # resource handler application in a secure maner
74 attributetype ( 1.3.6.1.4.1.19419.2.1.4
75 NAME 'kolabEncryptedPassword'
76 DESC 'base64 encoded public key encrypted Password'
77 SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
79 # hostname including the domain name like kolab-master.bsi.de
80 attributetype ( 1.3.6.1.4.1.19414.2.1.5
81 NAME ( 'fqhostname' 'fqdnhostname' )
82 DESC 'Fully qualified Hostname including full domain component'
83 EQUALITY caseIgnoreIA5Match
84 SUBSTR caseIgnoreIA5SubstringsMatch
85 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
87 # fqdn of all hosts in a multi-location setup
88 attributetype ( 1.3.6.1.4.1.19414.2.1.6
89 NAME 'kolabHost'
90 DESC 'Multivalued -- list of hostnames in a Kolab setup'
91 EQUALITY caseIgnoreIA5Match
92 SUBSTR caseIgnoreIA5SubstringsMatch
93 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
95 # fqdn of the server containg the actual user data
96 attributetype ( 1.3.6.1.4.1.19419.1.1.1.1
97 NAME 'kolabHomeServer'
98 DESC 'server which keeps the users mailbox'
99 EQUALITY caseIgnoreIA5Match
100 SUBSTR caseIgnoreIA5SubstringsMatch
101 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
103 # flag for allowing unrestriced length of mails
104 attributetype ( 1.3.6.1.4.1.19419.1.1.1.2
105 NAME 'unrestrictedMailSize'
106 EQUALITY booleanMatch
107 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
109 # Specifies the email delegates.
110 # An email delegate can send email on behalf of the account
111 # which means using the "from" of the account.
112 # Delegates are specified by the syntax of rfc822 email addresses.
113 attributetype ( 1.3.6.1.4.1.19419.1.1.1.3
114 NAME 'kolabDelegate'
115 DESC 'Kolab user allowed to act as delegates - RFC822 Mailbox/Alias'
116 EQUALITY caseIgnoreIA5Match
117 SUBSTR caseIgnoreIA5SubstringsMatch
118 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
120 # For user, group and resource Kolab accounts
121 # Describes how to respond to invitations
122 # We keep the attribute as a string, but actually it can only have one
123 # of the following values:
124 #
125 # ACT_ALWAYS_ACCEPT
126 # ACT_ALWAYS_REJECT
127 # ACT_REJECT_IF_CONFLICTS
128 # ACT_MANUAL_IF_CONFLICTS
129 # ACT_MANUAL
130 # In addition one of these values may be prefixed with a primary email
131 # address followed by a colon like
132 # user@domain.tld: ACT_ALWAYS_ACCEPT
133 attributetype ( 1.3.6.1.4.1.19419.1.1.1.4
134 NAME ( 'kolabInvitationPolicy' 'kolabResourceAction' )
135 DESC 'Used by user, group and resource accounts to determine how to respond to invitations'
136 EQUALITY caseIgnoreIA5Match
137 SUBSTR caseIgnoreIA5SubstringsMatch
138 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
140 # time span from now to the future used for the free busy data
141 # measured in days
142 attributetype ( 1.3.6.1.4.1.19419.1.1.1.5
143 NAME 'kolabFreeBusyFuture'
144 DESC 'time in days for fb data towards the future'
145 EQUALITY integerMatch
146 SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
148 # time span from now to the past used for the free busy data
149 # measured in days
150 attributetype ( 1.3.6.1.4.1.19419.1.1.1.6
151 NAME 'kolabFreeBusyPast'
152 DESC 'time in days for fb data towards the past'
153 EQUALITY integerMatch
154 SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
156 # fqdn of the server as the default SMTP MTA
157 # not used in Kolab 2 currently as in Kolab 2 the
158 # default MTA is equivalent to the kolabHomeServer
159 attributetype ( 1.3.6.1.4.1.19419.1.1.1.7
160 NAME 'kolabHomeMTA'
161 DESC 'fqdn of default MTA'
162 EQUALITY caseIgnoreIA5Match
163 SUBSTR caseIgnoreIA5SubstringsMatch
164 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
166 # Begin date of Kolab vacation period. Sender will
167 # be notified every kolabVacationResendIntervall days
168 # that recipient is absent until kolabVacationEnd.
169 # Values in this syntax are encoded as printable strings,
170 # represented as specified in X.208.
171 # Note that the time zone must be specified.
172 # For Kolab we limit ourself to GMT
173 # YYYYMMDDHHMMZ e.g. 200512311458Z.
174 # see also: rfc 2252.
175 # Currently this attribute is not used in Kolab.
176 attributetype ( 1.3.6.1.4.1.19419.1.1.1.8
177 NAME 'kolabVacationBeginDateTime'
178 DESC 'Begin date of vacation'
179 EQUALITY generalizedTimeMatch
180 SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 )
182 # End date of Kolab vacation period. Sender will
183 # be notified every kolabVacationResendIntervall days
184 # that recipient is absent starting from kolabVacationBeginDateTime.
185 # Values in this syntax are encoded as printable strings,
186 # represented as specified in X.208.
187 # Note that the time zone must be specified.
188 # For Kolab we limit ourself to GMT
189 # YYYYMMDDHHMMZ e.g. 200601012258Z.
190 # see also: rfc 2252.
191 # Currently this attribute is not used in Kolab.
192 attributetype ( 1.3.6.1.4.1.19419.1.1.1.9
193 NAME 'kolabVacationEndDateTime'
194 DESC 'End date of vacation'
195 EQUALITY generalizedTimeMatch
196 SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 )
198 # Intervall in days after which senders get
199 # another vacation message.
200 # Currently this attribute is not used in Kolab.
201 attributetype ( 1.3.6.1.4.1.19419.1.1.1.10
202 NAME 'kolabVacationResendInterval'
203 DESC 'Vacation notice interval in days'
204 EQUALITY integerMatch
205 SYNTAX 1.3.6.1.4.1.1466.115.121.1.27)
207 # Email recipient addresses which are handled by the
208 # vacation script. There can be multiple kolabVacationAddress
209 # entries for each kolabInetOrgPerson.
210 # Default is the primary email address and all
211 # email aliases of the kolabInetOrgPerson.
212 # Currently this attribute is not used in Kolab.
213 attributetype ( 1.3.6.1.4.1.19419.1.1.1.11
214 NAME 'kolabVacationAddress'
215 DESC 'Email address for vacation to response upon'
216 EQUALITY caseIgnoreIA5Match
217 SUBSTR caseIgnoreIA5SubstringsMatch
218 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
220 # Enable sending vacation notices in reaction
221 # unsolicited commercial email.
222 # Default is no.
223 # Currently this attribute is not used in Kolab.
224 attributetype ( 1.3.6.1.4.1.19419.1.1.1.12
225 NAME 'kolabVacationReplyToUCE'
226 DESC 'Enable vacation notices to UCE'
227 EQUALITY booleanMatch
228 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7)
230 # Email recipient domains which are handled by the
231 # vacation script. There can be multiple kolabVacationReactDomain
232 # entries for each kolabInetOrgPerson
233 # Default is to handle all domains.
234 # Currently this attribute is not used in Kolab.
235 attributetype ( 1.3.6.1.4.1.19419.1.1.1.13
236 NAME 'kolabVacationReactDomain'
237 DESC 'Multivalued -- Email domain for vacation to response upon'
238 EQUALITY caseIgnoreIA5Match
239 SUBSTR caseIgnoreIA5SubstringsMatch
240 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
242 # Forward all incoming emails except UCE if kolabForwardUCE
243 # is not set to this email address.
244 # There can be multiple kolabForwardAddress entries for
245 # each kolabInetOrgPerson.
246 # Currently this attribute is not used in Kolab.
247 attributetype ( 1.3.6.1.4.1.19419.1.1.1.14
248 NAME 'kolabForwardAddress'
249 DESC 'Forward email to this address'
250 EQUALITY caseIgnoreIA5Match
251 SUBSTR caseIgnoreIA5SubstringsMatch
252 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
254 # Keep local copy when forwarding emails to list of
255 # kolabForwardAddress.
256 # Default is no.
257 # Currently this attribute is not used in Kolab.
258 attributetype ( 1.3.6.1.4.1.19419.1.1.1.15
259 NAME 'kolabForwardKeepCopy'
260 DESC 'Keep copy when forwarding'
261 EQUALITY booleanMatch
262 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
264 # Enable forwarding of UCE.
265 # Default is yes.
266 # Currently this attribute is not used in Kolab.
267 attributetype ( 1.3.6.1.4.1.19419.1.1.1.16
268 NAME 'kolabForwardUCE'
269 DESC 'Enable forwarding of mails known as UCE'
270 EQUALITY booleanMatch
271 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
273 ######################
274 # postfix attributes #
275 ######################
277 attributetype ( 1.3.6.1.4.1.19414.2.1.501
278 NAME 'postfix-mydomain'
279 EQUALITY caseIgnoreIA5Match
280 SUBSTR caseIgnoreIA5SubstringsMatch
281 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
283 attributetype ( 1.3.6.1.4.1.19414.2.1.502
284 NAME 'postfix-relaydomains'
285 EQUALITY caseIgnoreIA5Match
286 SUBSTR caseIgnoreIA5SubstringsMatch
287 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
289 attributetype ( 1.3.6.1.4.1.19414.2.1.503
290 NAME 'postfix-mydestination'
291 EQUALITY caseIgnoreIA5Match
292 SUBSTR caseIgnoreIA5SubstringsMatch
293 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
295 attributetype ( 1.3.6.1.4.1.19414.2.1.504
296 NAME 'postfix-mynetworks'
297 EQUALITY caseIgnoreIA5Match
298 SUBSTR caseIgnoreIA5SubstringsMatch
299 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
301 attributetype ( 1.3.6.1.4.1.19414.2.1.505
302 NAME 'postfix-relayhost'
303 EQUALITY caseIgnoreIA5Match
304 SUBSTR caseIgnoreIA5SubstringsMatch
305 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
307 attributetype ( 1.3.6.1.4.1.19414.2.1.506
308 NAME 'postfix-transport'
309 EQUALITY caseIgnoreIA5Match
310 SUBSTR caseIgnoreIA5SubstringsMatch
311 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
313 attributetype ( 1.3.6.1.4.1.19414.2.1.507
314 NAME 'postfix-enable-virus-scan'
315 EQUALITY booleanMatch
316 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
318 attributetype ( 1.3.6.1.4.1.19414.2.1.508
319 NAME 'postfix-allow-unauthenticated'
320 EQUALITY booleanMatch
321 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
323 attributetype ( 1.3.6.1.4.1.19414.2.1.509
324 NAME 'postfix-virtual'
325 EQUALITY caseIgnoreIA5Match
326 SUBSTR caseIgnoreIA5SubstringsMatch
327 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
329 ##########################
330 # cyrus imapd attributes #
331 ##########################
333 attributetype ( 1.3.6.1.4.1.19414.2.1.601
334 NAME 'cyrus-autocreatequota'
335 EQUALITY integerMatch
336 SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
338 attributetype ( 1.3.6.1.4.1.19414.2.1.602
339 NAME 'cyrus-admins'
340 EQUALITY caseIgnoreIA5Match
341 SUBSTR caseIgnoreIA5SubstringsMatch
342 SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
344 # enable plain imap without ssl
345 attributetype ( 1.3.6.1.4.1.19414.2.1.603
346 NAME 'cyrus-imap'
347 EQUALITY booleanMatch
348 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
350 # enable legacy pop3
351 attributetype ( 1.3.6.1.4.1.19414.2.1.604
352 NAME 'cyrus-pop3'
353 EQUALITY booleanMatch
354 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
356 # user specific quota on the cyrus imap server
357 attributetype ( 1.3.6.1.4.1.19414.2.1.605
358 NAME 'cyrus-userquota'
359 DESC 'Mailbox hard quota limit in MB'
360 EQUALITY integerMatch
361 SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
363 # enable secure imap
364 attributetype ( 1.3.6.1.4.1.19414.2.1.606
365 NAME 'cyrus-imaps'
366 EQUALITY booleanMatch
367 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
369 # enable secure pop3
370 attributetype ( 1.3.6.1.4.1.19414.2.1.607
371 NAME 'cyrus-pop3s'
372 EQUALITY booleanMatch
373 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
375 # enable sieve support (required for forward and vacation services)
376 attributetype ( 1.3.6.1.4.1.19414.2.1.608
377 NAME 'cyrus-sieve'
378 EQUALITY booleanMatch
379 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
381 # installation wide percentage which determines when to send a
382 # warning to the user
383 attributetype ( 1.3.6.1.4.1.19414.2.1.609
384 NAME 'cyrus-quotawarn'
385 EQUALITY integerMatch
386 SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
388 #############################
389 # apache and php attributes #
390 #############################
392 # enable plain http (no ssl)
393 attributetype ( 1.3.6.1.4.1.19414.2.1.701
394 NAME 'apache-http'
395 EQUALITY booleanMatch
396 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
398 # Allow freebusy download without authenticating first
399 attributetype ( 1.3.6.1.4.1.19414.2.1.702
400 NAME 'apache-allow-unauthenticated-fb'
401 EQUALITY booleanMatch
402 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
404 ##########################
405 # kolabfilter attributes #
406 ##########################
408 # enable trustable From:
409 attributetype ( 1.3.6.1.4.1.19414.2.1.750
410 NAME 'kolabfilter-verify-from-header'
411 EQUALITY booleanMatch
412 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
414 # should Sender header be allowed instead of From
415 # when present?
416 attributetype ( 1.3.6.1.4.1.19414.2.1.751
417 NAME 'kolabfilter-allow-sender-header'
418 EQUALITY booleanMatch
419 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
421 # Should reject messages with From headers that dont match
422 # the envelope? Default is to rewrite the header
423 attributetype ( 1.3.6.1.4.1.19414.2.1.752
424 NAME 'kolabfilter-reject-forged-from-header'
425 EQUALITY booleanMatch
426 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
428 ######################
429 # proftpd attributes #
430 ######################
432 attributetype ( 1.3.6.1.4.1.19414.2.1.901
433 NAME 'proftpd-defaultquota'
434 EQUALITY integerMatch
435 SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
437 attributetype ( 1.3.6.1.4.1.19414.2.1.902
438 NAME 'proftpd-ftp'
439 EQUALITY booleanMatch
440 SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
442 attributetype ( 1.3.6.1.4.1.19414.2.1.903
443 NAME 'proftpd-userPassword'
444 SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
446 ########################
447 # kolab object classes #
448 ########################
450 # main kolab server configuration
451 # storing global values and user specific default values
452 # like kolabFreeBusyFuture and kolabFreeBusyPast
453 objectclass ( 1.3.6.1.4.1.19414.2.2.1
454 NAME 'kolab'
455 DESC 'Kolab server configuration'
456 SUP top STRUCTURAL
457 MUST k
458 MAY ( kolabHost $
459 postfix-mydomain $
460 postfix-relaydomains $
461 postfix-mydestination $
462 postfix-mynetworks $
463 postfix-relayhost $
464 postfix-transport $
465 postfix-virtual $
466 postfix-enable-virus-scan $
467 postfix-allow-unauthenticated $
468 cyrus-autocreatequota $
469 cyrus-quotawarn $
470 cyrus-autocreatequota $
471 cyrus-admins $
472 cyrus-imap $
473 cyrus-pop3 $
474 cyrus-imaps $
475 cyrus-pop3s $
476 cyrus-sieve $
477 apache-http $
478 apache-allow-unauthenticated-fb $
479 kolabfilter-verify-from-header $
480 kolabfilter-allow-sender-header $
481 kolabfilter-reject-forged-from-header $
482 proftpd-ftp $
483 proftpd-defaultquota $
484 kolabFreeBusyFuture $
485 kolabFreeBusyPast $
486 uid $
487 userPassword ) )
489 # shared folders are typically visible to everyone subscribed to
490 # the server without the need for an extra login
491 objectclass ( 1.3.6.1.4.1.19414.2.2.9
492 NAME 'kolabSharedFolder'
493 DESC 'Kolab public shared folder'
494 SUP posixGroup STRUCTURAL
495 MUST cn
496 MAY ( acl $
497 cyrus-userquota $
498 kolabHomeServer $
499 kolabDeleteflag ) )
501 # used as a plain node for the LDAP tree. In contrast to unix filesystem directories
502 # LDAP nodes can and often do also have contents/attributes. We use kolabNamedObject
503 # in order to put more structure in the directory tree.
504 objectclass ( 1.3.6.1.4.1.5322.13.1.1
505 NAME 'kolabNamedObject'
506 SUP top STRUCTURAL
507 MAY (cn $ ou) )
509 # kolab account
510 # we use an auxiliary in order to ease integration
511 # with existing inetOrgPerson objects
512 # Please note that userPassword is a may
513 # attribute in the schema but is mandatory for
514 # Kolab
515 objectclass ( 1.3.6.1.4.1.19414.3.2.2
516 NAME 'kolabInetOrgPerson'
517 DESC 'Kolab Internet Organizational Person'
518 SUP top AUXILIARY
519 MAY ( c $
520 alias $
521 kolabHomeServer $
522 kolabHomeMTA $
523 unrestrictedMailSize $
524 kolabDelegate $
525 kolabEncryptedPassword $
526 cyrus-userquota $
527 kolabInvitationPolicy $
528 kolabFreeBusyFuture $
529 calFBURL $
530 kolabVacationBeginDateTime $
531 kolabVacationEndDateTime $
532 kolabVacationResendInterval $
533 kolabVacationAddress $
534 kolabVacationReplyToUCE $
535 kolabVacationReactDomain $
536 kolabForwardAddress $
537 kolabForwardKeepCopy $
538 kolabForwardUCE $
539 kolabDeleteflag ) )
541 # kolab organization with country support
542 objectclass ( 1.3.6.1.4.1.19414.3.2.3
543 NAME 'kolabOrganization'
544 DESC 'RFC2256: a Kolab organization'
545 SUP organization STRUCTURAL
546 MAY ( c $
547 mail $
548 kolabDeleteflag $
549 alias ) )
551 # kolab organizational unit with country support
552 objectclass ( 1.3.6.1.4.1.19414.3.2.4
553 NAME 'kolabOrganizationalUnit'
554 DESC 'a Kolab organizational unit'
555 SUP organizationalUnit STRUCTURAL
556 MAY ( c $
557 mail $
558 kolabDeleteflag $
559 alias ) )
561 # kolab groupOfNames with extra kolabDeleteflag and the required attribute mail.
562 # The mail attribute for kolab objects of the type kolabGroupOfNames is not arbitrary but
563 # MUST be a single attribute of the form cn@kolabdomain (e.g. employees@mydomain.com). The
564 # mail attribute MUST be worldwide unique.
565 objectclass ( 1.3.6.1.4.1.19414.3.2.5
566 NAME 'kolabGroupOfNames'
567 DESC 'Kolab group of names (DNs) derived from RFC2256'
568 SUP top AUXILIARY
569 MUST ( member $ cn )
570 MAY ( businessCategory $ seeAlso $ owner $ ou $ o $ description $ mail $ kolabDeleteflag ) )