| # |
| # OpenLDAP schema file for Sudo |
| # Save as /etc/openldap/schema/sudo.schema |
| # |
| |
| attributetype ( 1.3.6.1.4.1.15953.9.1.1 |
| NAME 'sudoUser' |
| DESC 'User(s) who may run sudo' |
| EQUALITY caseExactIA5Match |
| SUBSTR caseExactIA5SubstringsMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) |
| |
| attributetype ( 1.3.6.1.4.1.15953.9.1.2 |
| NAME 'sudoHost' |
| DESC 'Host(s) who may run sudo' |
| EQUALITY caseExactIA5Match |
| SUBSTR caseExactIA5SubstringsMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) |
| |
| attributetype ( 1.3.6.1.4.1.15953.9.1.3 |
| NAME 'sudoCommand' |
| DESC 'Command(s) to be executed by sudo' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) |
| |
| attributetype ( 1.3.6.1.4.1.15953.9.1.4 |
| NAME 'sudoRunAs' |
| DESC 'User(s) impersonated by sudo (deprecated)' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) |
| |
| attributetype ( 1.3.6.1.4.1.15953.9.1.5 |
| NAME 'sudoOption' |
| DESC 'Options(s) followed by sudo' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) |
| |
| attributetype ( 1.3.6.1.4.1.15953.9.1.6 |
| NAME 'sudoRunAsUser' |
| DESC 'User(s) impersonated by sudo' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) |
| |
| attributetype ( 1.3.6.1.4.1.15953.9.1.7 |
| NAME 'sudoRunAsGroup' |
| DESC 'Group(s) impersonated by sudo' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) |
| |
| objectclass ( 1.3.6.1.4.1.15953.9.2.1 NAME 'sudoRole' SUP top STRUCTURAL |
| DESC 'Sudoer Entries' |
| MUST ( cn ) |
| MAY ( sudoUser $ sudoHost $ sudoCommand $ sudoRunAs $ sudoRunAsUser $ sudoRunAsGroup $ sudoOption $ |
| description ) |
| ) |