Le 12/09/14 15:10, Paul Johnston a écrit : > Hi, > > I need to include some service accounts in our directory. These are > application > users (i.e. used by software, not people) that need to connect to LDAP. At > the > moment I am using inetOrgPerson for these accounts. But this isn't ideal as > they > appear in the address book (which filters on "person"). What objectclass > should > I be using? There is an 'posixAccount' ObjectClass that might fit your need :
objectclass ( 1.3.6.1.1.1.2.0 NAME 'posixAccount' SUP top <http://www.zytrax.com/books/ldap/ape/core-schema.html#top> AUXILIARY DESC 'Abstraction of an account with POSIX attributes' MUST ( cn <http://www.zytrax.com/books/ldap/ape/core-schema.html#commonname> $ uid <http://www.zytrax.com/books/ldap/ape/core-schema.html#uid> $ uidNumber <http://www.zytrax.com/books/ldap/ape/nis.html#uidnumber> $ gidNumber <http://www.zytrax.com/books/ldap/ape/nis.html#gidnumber> $ homeDirectory <http://www.zytrax.com/books/ldap/ape/nis.html#homedirectory> ) MAY ( userPassword <http://www.zytrax.com/books/ldap/ape/core-schema.html#userpassword> $ loginShell <http://www.zytrax.com/books/ldap/ape/nis.html#loginshell> $ gecos <http://www.zytrax.com/books/ldap/ape/nis.html#gecos> $ description <http://www.zytrax.com/books/ldap/ape/core-schema.html#description> ) )
