1 # Copyright (c) 1994-1996, 1998-2015
2 # Todd C. Miller <Todd.Miller@courtesan.com>
4 # Permission to use, copy, modify, and distribute this software for any
5 # purpose with or without fee is hereby granted, provided that the above
6 # copyright notice and this permission notice appear in all copies.
8 # THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9 # WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10 # MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
11 # ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12 # WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
13 # ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
14 # OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
16 # Sponsored in part by the Defense Advanced Research Projects
17 # Agency (DARPA) and Air Force Research Laboratory, Air Force
18 # Materiel Command, USAF, under agreement number F39502-99-1-0512.
21 # Active Directory Schema for sudo configuration (sudoers)
23 # To extend your Active Directory schema, run one of the following command
24 # on your Windows DC (default port - Active Directory):
26 # ldifde -i -f schema.ActiveDirectory -c "CN=Schema,CN=Configuration,DC=X" #schemaNamingContext
28 # or on your Windows DC if using another port (with Active Directory LightWeight Directory Services / ADAM-Active Directory Application Mode)
29 # Port 50000 by example (or any other port specified when defining the ADLDS/ADAM instance
31 # ldifde -i -f schema.ActiveDirectory -t 50000 -c "CN=Schema,CN=Configuration,DC=X" #schemaNamingContext
35 # ldifde -i -f schema.ActiveDirectory -s server:port -c "CN=Schema,CN=Configuration,DC=X" #schemaNamingContext
37 # Can add username domain and password
39 # -b username domain password
41 # Can create Log file in current or any directory
46 dn: CN=sudoUser,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
49 objectClass: attributeSchema
51 distinguishedName: CN=sudoUser,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
53 attributeID: 1.3.6.1.4.1.15953.9.1.1
54 attributeSyntax: 2.5.5.5
56 showInAdvancedViewOnly: TRUE
57 adminDisplayName: sudoUser
58 adminDescription: User(s) who may run sudo
61 lDAPDisplayName: sudoUser
63 schemaIDGUID:: JrGcaKpnoU+0s+HgeFjAbg==
64 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
66 dn: CN=sudoHost,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
69 objectClass: attributeSchema
71 distinguishedName: CN=sudoHost,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
73 attributeID: 1.3.6.1.4.1.15953.9.1.2
74 attributeSyntax: 2.5.5.5
76 showInAdvancedViewOnly: TRUE
77 adminDisplayName: sudoHost
78 adminDescription: Host(s) who may run sudo
80 lDAPDisplayName: sudoHost
82 schemaIDGUID:: d0TTjg+Y6U28g/Y+ns2k4w==
83 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
85 dn: CN=sudoCommand,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
88 objectClass: attributeSchema
90 distinguishedName: CN=sudoCommand,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
92 attributeID: 1.3.6.1.4.1.15953.9.1.3
93 attributeSyntax: 2.5.5.5
95 showInAdvancedViewOnly: TRUE
96 adminDisplayName: sudoCommand
97 adminDescription: Command(s) to be executed by sudo
99 lDAPDisplayName: sudoCommand
101 schemaIDGUID:: D6QR4P5UyUen3RGYJCHCPg==
102 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
104 dn: CN=sudoRunAs,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
107 objectClass: attributeSchema
109 distinguishedName: CN=sudoRunAs,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
111 attributeID: 1.3.6.1.4.1.15953.9.1.4
112 attributeSyntax: 2.5.5.5
113 isSingleValued: FALSE
114 showInAdvancedViewOnly: TRUE
115 adminDisplayName: sudoRunAs
116 adminDescription: User(s) impersonated by sudo (deprecated)
118 lDAPDisplayName: sudoRunAs
120 schemaIDGUID:: CP98mCQTyUKKxGrQeM80hQ==
121 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
123 dn: CN=sudoOption,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
126 objectClass: attributeSchema
128 distinguishedName: CN=sudoOption,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
130 attributeID: 1.3.6.1.4.1.15953.9.1.5
131 attributeSyntax: 2.5.5.5
132 isSingleValued: FALSE
133 showInAdvancedViewOnly: TRUE
134 adminDisplayName: sudoOption
135 adminDescription: Option(s) followed by sudo
137 lDAPDisplayName: sudoOption
139 schemaIDGUID:: ojaPzBBlAEmsvrHxQctLnA==
140 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
142 dn: CN=sudoRunAsUser,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
145 objectClass: attributeSchema
147 distinguishedName: CN=sudoRunAsUser,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
149 attributeID: 1.3.6.1.4.1.15953.9.1.6
150 attributeSyntax: 2.5.5.5
151 isSingleValued: FALSE
152 showInAdvancedViewOnly: TRUE
153 adminDisplayName: sudoRunAsUser
154 adminDescription: User(s) impersonated by sudo
156 lDAPDisplayName: sudoRunAsUser
158 schemaIDGUID:: 9C52yPYd3RG3jMR2VtiVkw==
159 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
161 dn: CN=sudoRunAsGroup,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
164 objectClass: attributeSchema
166 distinguishedName: CN=sudoRunAsGroup,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
168 attributeID: 1.3.6.1.4.1.15953.9.1.7
169 attributeSyntax: 2.5.5.5
170 isSingleValued: FALSE
171 showInAdvancedViewOnly: TRUE
172 adminDisplayName: sudoRunAsGroup
173 adminDescription: Groups(s) impersonated by sudo
175 lDAPDisplayName: sudoRunAsGroup
177 schemaIDGUID:: xJhSt/Yd3RGJPTB1VtiVkw==
178 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
180 dn: CN=sudoNotBefore,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
183 objectClass: attributeSchema
185 distinguishedName: CN=sudoNotBefore,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
187 attributeID: 1.3.6.1.4.1.15953.9.1.8
188 attributeSyntax: 2.5.5.11
190 showInAdvancedViewOnly: TRUE
191 adminDisplayName: sudoNotBefore
192 adminDescription: Start of time interval for which the entry is valid
194 lDAPDisplayName: sudoNotBefore
196 schemaIDGUID:: dm1HnRfY4RGf4gopYYhwmw==
197 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
199 dn: CN=sudoNotAfter,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
202 objectClass: attributeSchema
204 distinguishedName: CN=sudoNotAfter,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
206 attributeID: 1.3.6.1.4.1.15953.9.1.9
207 attributeSyntax: 2.5.5.11
209 showInAdvancedViewOnly: TRUE
210 adminDisplayName: sudoNotAfter
211 adminDescription: End of time interval for which the entry is valid
213 lDAPDisplayName: sudoNotAfter
215 schemaIDGUID:: OAr/pBfY4RG9dBIpYYhwmw==
216 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
218 dn: CN=sudoOrder,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
221 objectClass: attributeSchema
223 distinguishedName: CN=sudoOrder,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp
225 attributeID: 1.3.6.1.4.1.15953.9.1.10
226 attributeSyntax: 2.5.5.9
228 showInAdvancedViewOnly: TRUE
229 adminDisplayName: sudoOrder
230 adminDescription: an integer to order the sudoRole entries
232 lDAPDisplayName: sudoOrder
234 schemaIDGUID:: 0J8yrRfY4RGIYBUpYYhwmw==
235 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=release-4-1-0rc3,DC=samba,DC=corp