# this file goes into /etc/openldap/schema or into your schema directory for your LDAP v3 server
# make sure you have it, otherwise, Directory administrator will complain when changing user accounts
# unless you don't do schema checking

attributetype ( 5.3.6.1.1.1.1.0 NAME 'trustModel'
	DESC 'Access scheme'
	EQUALITY caseIgnoreIA5Match
	SUBSTR caseIgnoreIA5SubstringsMatch
	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )

attributetype ( 5.3.6.1.1.1.1.1 NAME 'accessTo'
	DESC 'Access to which servers user is allowed'
	EQUALITY caseIgnoreIA5Match
	SUBSTR caseIgnoreIA5SubstringsMatch
	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )

objectclass ( 5.3.6.1.1.1.2.0 NAME 'trustAccount' SUP top AUXILIARY
	DESC 'Sets trust accounts information'
	MUST ( trustModel )
	MAY ( accessTo ) )