Home Explore Help
Register Sign In
Apq
/
389-ds-base
mirror of https://github.com/389ds/389-ds-base.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 7e23b9668f
Branches Tags
389-ds-base
/
ldap
/
clients
/
dsgw
/
html
/
manual
/
dn.htm

dn.htm 8.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293 
  1. <!-- --- BEGIN COPYRIGHT BLOCK ---
    2. 

  2.  This Program is free software; you can redistribute it and/or modify it under
    3. 

  3.  the terms of the GNU General Public License as published by the Free Software
    4. 

  4.  Foundation; version 2 of the License.
    5. 

  5. 

  6.  This Program is distributed in the hope that it will be useful, but WITHOUT
    7. 

  7.  ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
    8. 

  8.  FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
    9. 

  9. 

  10.  You should have received a copy of the GNU General Public License along with
    11. 

  11.  this Program; if not, write to the Free Software Foundation, Inc., 59 Temple
    12. 

  12.  Place, Suite 330, Boston, MA 02111-1307 USA.
    13. 

  13. 

  14.  In addition, as a special exception, Red Hat, Inc. gives You the additional
    15. 

  15.  right to link the code of this Program with code not covered under the GNU
    16. 

  16.  General Public License ("Non-GPL Code") and to distribute linked combinations
    17. 

  17.  including the two, subject to the limitations in this paragraph. Non-GPL Code
    18. 

  18.  permitted under this exception must only link to the code of this Program
    19. 

  19.  through those well defined interfaces identified in the file named EXCEPTION
    20. 

  20.  found in the source code files (the "Approved Interfaces"). The files of
    21. 

  21.  Non-GPL Code may instantiate templates or use macros or inline functions from
    22. 

  22.  the Approved Interfaces without causing the resulting work to be covered by
    23. 

  23.  the GNU General Public License. Only Red Hat, Inc. may make changes or
    24. 

  24.  additions to the list of Approved Interfaces. You must obey the GNU General
    25. 

  25.  Public License in all respects for all of the Program code and other code used
    26. 

  26.  in conjunction with the Program except the Non-GPL Code covered by this
    27. 

  27.  exception. If you modify this file, you may extend this exception to your
    28. 

  28.  version of the file, but you are not obligated to do so. If you do not wish to
    29. 

  29.  provide this exception without modification, you must delete this exception
    30. 

  30.  statement from your version and license this file solely under the GPL without
    31. 

  31.  exception. 
    32. 

  32. 

  33.  
    34. 

  34.  Copyright (C) 2001 Sun Microsystems, Inc. Used by permission.
    35. 

  35.  Copyright (C) 2005 Red Hat, Inc.
    36. 

  36.  All rights reserved.
    37. 

  37.   --- END COPYRIGHT BLOCK ---  -->
    38. 

  38. <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
    39. 

  39. <HTML>
    40. 

  40. <HEAD>
    41. 

  41.    <TITLE></TITLE>
    42. 

  42.    <META NAME="GENERATOR" CONTENT="Mozilla/3.0b6Gold (WinNT; I) [Netscape]">
    43. 

  43. </HEAD>
    44. 

  44. <BODY>
    45. 

  45. 

  46. <P><A NAME="1001595"></A></P>
    47. 

  47. 

  48. <P><A NAME="1001596"></A></P>
    49. 

  49. 

  50. <P><A NAME="996824"></A></P>
    51. 

  51. 

  52. <H1>Distinguished Names</H1>
    53. 

  53. 

  54. <P><A NAME="1017708"></A>Distinguished
    55. 

  55. Names (DNs) are the string representation for entry names in the Directory
    56. 

  56. Server database. You use DNs to name entries when you add entries to the
    57. 

  57. directory, add members to groups, etc..</P>
    58. 

  58. 

  59. <P><A NAME="1017709"></A>A DN can consist of virtually any attributes you
    60. 

  60. wish to use. The only caveat is that if schema checking is turned on, then
    61. 

  61. the attributes must be recognized by the Directory Server (if you do not
    62. 

  62. know whether schema checking is turned on in the server, contact your directory
    63. 

  63. manager, or consult the <I>Netscape Directory Server Administrator's Guide</I>
    64. 

  64. for more information).</P>
    65. 

  65. 

  66. <P><A NAME="1017710"></A>Traditionally, a DN consists of:</P>
    67. 

  67. 

  68. <UL>
    69. 

  69. <P><A NAME="1017711"></A></P>
    70. 

  70. 

  71. <LI>A common name followed by<A NAME="1017712"></A></LI>
    72. 

  72. 

  73. <LI>a list of regional or organizational attributes followed by<A NAME="1017713"></A></LI>
    74. 

  74. 

  75. <LI>a country designation.</LI>
    76. 

  76. </UL>
    77. 

  77. 

  78. <P><A NAME="1017714"></A>This string of identifying attributes uniquely
    79. 

  79. locates the entry within your Directory Server database. If you choose,
    80. 

  80. you can also use this naming structure to uniquely identify your entries
    81. 

  81. within the global directory tree as defined in the X.500 standard.</P>
    82. 

  82. 

  83. <P><A NAME="1017715"></A>Because a DN represents a path through the directory
    84. 

  84. tree, the DN components are order-dependent. For example, the following
    85. 

  85. DNs do not represent the same entry:</P>
    86. 

  86. 

  87. <P><A NAME="1017716"></A></P>
    88. 

  88. 

  89. <PRE>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;cn=Ralph Swenson, ou=Accounting, o=Example Corp, c=US
    90. 

  90. &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;cn=Ralph Swenson, o=Example Corp, ou=Accounting, c=US
    91. 

  91. </PRE>
    92. 

  92. 

  93. <P><A NAME="Distinguished Name syntax"></A><A NAME="1017717"></A></P>
    94. 

  94. 

  95. <H2>Distinguished Name syntax</H2>
    96. 

  96. 

  97. <P><A NAME="1017718"></A>The traditional syntax for a DN string representation
    98. 

  98. is as follows:</P>
    99. 

  99. 

  100. <P><A NAME="1017719"></A></P>
    101. 

  101. 

  102. <UL>
    103. 

  103. <PRE>cn=<I>common name</I>, [street=<I>address</I>, l=<I>locality</I>, st = <I>state or province</I>,
    104. 

  104. ou=<I>organizational unit</I>, o=<I>organization</I>], c=<I>country name</I>
    105. 

  105. </PRE>
    106. 

  106. </UL>
    107. 

  107. 

  108. <P><A NAME="1017720"></A>Generally a DN begins with a specific common name,
    109. 

  109. and proceeds with increasingly broader areas of identification until the
    110. 

  110. country name is specified. Note, however, that the actual DN attributes
    111. 

  111. you use, and the order in which you choose to specify them, is up to you
    112. 

  112. and how you want to organize your database. The only real requirement is
    113. 

  113. that DN attributes must be separated by a comma (,) and can optionally
    114. 

  114. use a space ( ) following the separator.</P>
    115. 

  115. 

  116. <P><A NAME="Distinguished Name attributes"></A><A NAME="1017721"></A></P>
    117. 

  117. 

  118. <H2>Distinguished Name attributes</H2>
    119. 

  119. 

  120. <P><A NAME="1017792"></A>The various standard attributes that comprise
    121. 

  121. a DN are as follows:</P>
    122. 

  122. 

  123. <TABLE BORDER=2 >
    124. 

  124. <CAPTION></CAPTION>
    125. 

  125. 

  126. <TR>
    127. 

  127. <TH><A NAME="1017730"></A><B>Attribute</B></TH>
    128. 

  128. 

  129. <TH><A NAME="1017732"></A><B>Name</B></TH>
    130. 

  130. 

  131. <TH><A NAME="1017734"></A><B>Definition</B></TH>
    132. 

  132. </TR>
    133. 

  133. 

  134. <TR>
    135. 

  135. <TD><A NAME="1017736"></A>c</TD>
    136. 

  136. 

  137. <TD><A NAME="1017738"></A>country</TD>
    138. 

  138. 

  139. <TD><A NAME="1017740"></A>Identifies the name of the country under which
    140. 

  140. the entry resides. For example,
    141. 

  141. <UL>
    142. 

  142. <P><A NAME="1017741"></A></P>
    143. 

  143. 

  144. <LI>c=US<A NAME="1017742"></A></LI>
    145. 

  145. 

  146. <LI>c=GB</LI>
    147. 

  147. </UL>
    148. 

  148. </TD>
    149. 

  149. </TR>
    150. 

  150. 

  151. <TR>
    152. 

  152. <TD><A NAME="1017744"></A>cn</TD>
    153. 

  153. 

  154. <TD><A NAME="1017746"></A>common name</TD>
    155. 

  155. 

  156. <TD><A NAME="1017748"></A>Required attribute that identifies the person
    157. 

  157. or object defined by the entry. For example:
    158. 

  158. <UL>
    159. 

  159. <P><A NAME="1017749"></A></P>
    160. 

  160. 

  161. <LI>cn=Wally Henderson<A NAME="1017750"></A></LI>
    162. 

  162. 

  163. <LI>cn=Database Administrators<A NAME="1017751"></A></LI>
    164. 

  164. 

  165. <LI>cn=printer3b</LI>
    166. 

  166. </UL>
    167. 

  167. </TD>
    168. 

  168. </TR>
    169. 

  169. 

  170. <TR>
    171. 

  171. <TD><A NAME="1017753"></A>l</TD>
    172. 

  172. 

  173. <TD><A NAME="1017755"></A>locality</TD>
    174. 

  174. 

  175. <TD><A NAME="1017757"></A>Identifies the locality in which the entry resides.
    176. 

  176. The locality could be a city, county, township, or other geographic region.
    177. 

  177. For example:
    178. 

  178. <UL>
    179. 

  179. <P><A NAME="1017758"></A></P>
    180. 

  180. 

  181. <LI>l=Tucson<A NAME="1017759"></A></LI>
    182. 

  182. 

  183. <LI>l=Pacific Northwest<A NAME="1017760"></A></LI>
    184. 

  184. 

  185. <LI>l=Anoka County</LI>
    186. 

  186. </UL>
    187. 

  187. </TD>
    188. 

  188. </TR>
    189. 

  189. 

  190. <TR>
    191. 

  191. <TD><A NAME="1017762"></A>o</TD>
    192. 

  192. 

  193. <TD><A NAME="1017764"></A>organization</TD>
    194. 

  194. 

  195. <TD><A NAME="1017766"></A>Identifies the organization in which the entry
    196. 

  196. resides. For example:
    197. 

  197. <UL>
    198. 

  198. <P><A NAME="1017767"></A></P>
    199. 

  199. 

  200. <LI>o=Netscape Communications Corp<A NAME="1017768"></A></LI>
    201. 

  201. 

  202. <LI>o=Public Power &amp; Gas</LI>
    203. 

  203. </UL>
    204. 

  204. </TD>
    205. 

  205. </TR>
    206. 

  206. 

  207. <TR>
    208. 

  208. <TD><A NAME="1017770"></A>ou</TD>
    209. 

  209. 

  210. <TD><A NAME="1017772"></A>organizational unit</TD>
    211. 

  211. 

  212. <TD><A NAME="1017774"></A>Identifies a unit within the organization. For
    213. 

  213. example:
    214. 

  214. <UL>
    215. 

  215. <P><A NAME="1017775"></A></P>
    216. 

  216. 

  217. <LI>ou=Sales<A NAME="1017776"></A></LI>
    218. 

  218. 

  219. <LI>ou=Manufacturing</LI>
    220. 

  220. </UL>
    221. 

  221. </TD>
    222. 

  222. </TR>
    223. 

  223. 

  224. <TR>
    225. 

  225. <TD><A NAME="1017778"></A>st</TD>
    226. 

  226. 

  227. <TD><A NAME="1017780"></A>state or province name</TD>
    228. 

  228. 

  229. <TD><A NAME="1017782"></A>Identifies the state or province in which the
    230. 

  230. entry resides. For example:
    231. 

  231. <UL>
    232. 

  232. <P><A NAME="1017783"></A></P>
    233. 

  233. 

  234. <LI>st=Iowa<A NAME="1017784"></A></LI>
    235. 

  235. 

  236. <LI>st=British Columbia</LI>
    237. 

  237. </UL>
    238. 

  238. </TD>
    239. 

  239. </TR>
    240. 

  240. 

  241. <TR>
    242. 

  242. <TD><A NAME="1017786"></A>street</TD>
    243. 

  243. 

  244. <TD><A NAME="1017788"></A>street address</TD>
    245. 

  245. 

  246. <TD><A NAME="1017790"></A>Identifies the street address at which the entry
    247. 

  247. resides. For example:
    248. 

  248. <UL>
    249. 

  249. <P><A NAME="1017791"></A></P>
    250. 

  250. 

  251. <LI>street=494 Rice Creek Terrace</LI>
    252. 

  252. </UL>
    253. 

  253. </TD>
    254. 

  254. </TR>
    255. 

  255. </TABLE>
    256. 

  256. 

  257. <TABLE>
    258. 

  258. <TR>
    259. 

  259. <TD></TD>
    260. 

  260. </TR>
    261. 

  261. </TABLE>
    262. 

  262. 

  263. <P><A NAME="Distinguished Name examples"></A><A NAME="1017793"></A></P>
    264. 

  264. 

  265. <H2>Distinguished Name examples</H2>
    266. 

  266. 

  267. <P><A NAME="1017794"></A>The following are some examples of DNs:</P>
    268. 

  268. 

  269. <P><A NAME="1017795"></A></P>
    270. 

  270. 

  271. <UL>
    272. 

  272. <PRE>cn=Wally Henderson,ou=Product Development,o=Example Corp,st=Minnesota,c=US
    273. 

  273. </PRE>
    274. 

  274. </UL>
    275. 

  275. 

  276. <P><A NAME="1017796"></A></P>
    277. 

  277. 

  278. <UL>
    279. 

  279. <PRE>cn=Retch Sweeny, ou=Product Test, o=Example Corp, st=Michigan, c=US
    280. 

  280. </PRE>
    281. 

  281. </UL>
    282. 

  282. 

  283. <P><A NAME="1017797"></A></P>
    284. 

  284. 

  285. <UL>
    286. 

  286. <PRE>cn=printer3b, l=room 308, o=Example Corp, c=US
    287. 

  287. </PRE>
    288. 

  288. </UL>
    289. 

  289. 

  290. <P><A NAME="997436"></A></P>
    291. 

  291. 

  292. </BODY>
    293. 

  293. </HTML>
    294.