Updates from Alain Roy to provide better examples for importing the

schema and to fix problems caused by Windows validating attributes
which have not yet been added before committing the changes.

doc/schema.ActiveDirectory

@@ -1,172 +1,195 @@
-#
+#
-# Active Directory Schema for sudo configuration (sudoers)
+# Active Directory Schema for sudo configuration (sudoers)
-#
+#
-# To extend your Active Directory schema, run the following command
+# To extend your Active Directory schema, run one of the following command
-# on your Windows DC:
+# on your Windows DC (default port - Active Directory):
-#
+# 
-#  ldifde -i -f schema.ActiveDirectory -c dc=X dc=YOURDOMAIN,DC=COM
+#  ldifde -i -f schema.ActiveDirectory -c "CN=Schema,CN=Configuration,DC=X" #schemaNamingContext
-#
+#
-
+# or on your Windows DC if using another port (with Active Directory LightWeight Directory Services / ADAM-Active Directory Application Mode)
-dn: CN=sudoUser,CN=Schema,CN=Configuration,DC=X
+# Port 50000 by example (or any other port specified when defining the ADLDS/ADAM instance
-changetype: add
+#
-objectClass: top
+#  ldifde -i -f schema.ActiveDirectory -t 50000 -c "CN=Schema,CN=Configuration,DC=X" #schemaNamingContext
-objectClass: attributeSchema
+#
-cn: sudoUser
+# or 
-distinguishedName: CN=sudoUser,CN=Schema,CN=Configuration,DC=X
+#
-instanceType: 4
+#  ldifde -i -f schema.ActiveDirectory -s server:port -c "CN=Schema,CN=Configuration,DC=X" #schemaNamingContext
-attributeID: 1.3.6.1.4.1.15953.9.1.1
+#
-attributeSyntax: 2.5.5.5
+# Can add username domain and password
-isSingleValued: FALSE
+#
-showInAdvancedViewOnly: TRUE
+# -b username domain password
-adminDisplayName: sudoUser
+#
-adminDescription: User(s) who may run sudo
+# Can create Log file in current or any directory
-oMSyntax: 22
+#
-searchFlags: 1
+# -j .
-lDAPDisplayName: sudoUser
+#
-name: sudoUser
+
-schemaIDGUID:: JrGcaKpnoU+0s+HgeFjAbg==
+dn: CN=sudoUser,CN=Schema,CN=Configuration,DC=X
-objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
+changetype: add
-
+objectClass: top
-dn: CN=sudoHost,CN=Schema,CN=Configuration,DC=X
+objectClass: attributeSchema
-changetype: add
+cn: sudoUser
-objectClass: top
+distinguishedName: CN=sudoUser,CN=Schema,CN=Configuration,DC=X
-objectClass: attributeSchema
+instanceType: 4
-cn: sudoHost
+attributeID: 1.3.6.1.4.1.15953.9.1.1
-distinguishedName: CN=sudoHost,CN=Schema,CN=Configuration,DC=X
+attributeSyntax: 2.5.5.5
-instanceType: 4
+isSingleValued: FALSE
-attributeID: 1.3.6.1.4.1.15953.9.1.2
+showInAdvancedViewOnly: TRUE
-attributeSyntax: 2.5.5.5
+adminDisplayName: sudoUser
-isSingleValued: FALSE
+adminDescription: User(s) who may run sudo
-showInAdvancedViewOnly: TRUE
+oMSyntax: 22
-adminDisplayName: sudoHost
+searchFlags: 1
-adminDescription: Host(s) who may run sudo
+lDAPDisplayName: sudoUser
-oMSyntax: 22
+name: sudoUser
-lDAPDisplayName: sudoHost
+schemaIDGUID:: JrGcaKpnoU+0s+HgeFjAbg==
-name: sudoHost
+objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
-schemaIDGUID:: d0TTjg+Y6U28g/Y+ns2k4w==
+
-objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
+dn: CN=sudoHost,CN=Schema,CN=Configuration,DC=X
-
+changetype: add
-dn: CN=sudoCommand,CN=Schema,CN=Configuration,DC=X
+objectClass: top
-changetype: add
+objectClass: attributeSchema
-objectClass: top
+cn: sudoHost
-objectClass: attributeSchema
+distinguishedName: CN=sudoHost,CN=Schema,CN=Configuration,DC=X
-cn: sudoCommand
+instanceType: 4
-distinguishedName: CN=sudoCommand,CN=Schema,CN=Configuration,DC=X
+attributeID: 1.3.6.1.4.1.15953.9.1.2
-instanceType: 4
+attributeSyntax: 2.5.5.5
-attributeID: 1.3.6.1.4.1.15953.9.1.3
+isSingleValued: FALSE
-attributeSyntax: 2.5.5.5
+showInAdvancedViewOnly: TRUE
-isSingleValued: FALSE
+adminDisplayName: sudoHost
-showInAdvancedViewOnly: TRUE
+adminDescription: Host(s) who may run sudo
-adminDisplayName: sudoCommand
+oMSyntax: 22
-adminDescription: Command(s) to be executed by sudo
+lDAPDisplayName: sudoHost
-oMSyntax: 22
+name: sudoHost
-lDAPDisplayName: sudoCommand
+schemaIDGUID:: d0TTjg+Y6U28g/Y+ns2k4w==
-name: sudoCommand
+objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
-schemaIDGUID:: D6QR4P5UyUen3RGYJCHCPg==
+
-objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
+dn: CN=sudoCommand,CN=Schema,CN=Configuration,DC=X
-
+changetype: add
-dn: CN=sudoRunAs,CN=Schema,CN=Configuration,DC=X
+objectClass: top
-changetype: add
+objectClass: attributeSchema
-objectClass: top
+cn: sudoCommand
-objectClass: attributeSchema
+distinguishedName: CN=sudoCommand,CN=Schema,CN=Configuration,DC=X
-cn: sudoRunAs
+instanceType: 4
-distinguishedName: CN=sudoRunAs,CN=Schema,CN=Configuration,DC=X
+attributeID: 1.3.6.1.4.1.15953.9.1.3
-instanceType: 4
+attributeSyntax: 2.5.5.5
-attributeID: 1.3.6.1.4.1.15953.9.1.4
+isSingleValued: FALSE
-attributeSyntax: 2.5.5.5
+showInAdvancedViewOnly: TRUE
-isSingleValued: FALSE
+adminDisplayName: sudoCommand
-showInAdvancedViewOnly: TRUE
+adminDescription: Command(s) to be executed by sudo
-adminDisplayName: sudoRunAs
+oMSyntax: 22
-adminDescription: User(s) impersonated by sudo (deprecated)
+lDAPDisplayName: sudoCommand
-oMSyntax: 22
+name: sudoCommand
-lDAPDisplayName: sudoRunAs
+schemaIDGUID:: D6QR4P5UyUen3RGYJCHCPg==
-name: sudoRunAs
+objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
-schemaIDGUID:: CP98mCQTyUKKxGrQeM80hQ==
+
-objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
+dn: CN=sudoRunAs,CN=Schema,CN=Configuration,DC=X
-
+changetype: add
-dn: CN=sudoOption,CN=Schema,CN=Configuration,DC=X
+objectClass: top
-changetype: add
+objectClass: attributeSchema
-objectClass: top
+cn: sudoRunAs
-objectClass: attributeSchema
+distinguishedName: CN=sudoRunAs,CN=Schema,CN=Configuration,DC=X
-cn: sudoOption
+instanceType: 4
-distinguishedName: CN=sudoOption,CN=Schema,CN=Configuration,DC=X
+attributeID: 1.3.6.1.4.1.15953.9.1.4
-instanceType: 4
+attributeSyntax: 2.5.5.5
-attributeID: 1.3.6.1.4.1.15953.9.1.5
+isSingleValued: FALSE
-attributeSyntax: 2.5.5.5
+showInAdvancedViewOnly: TRUE
-isSingleValued: FALSE
+adminDisplayName: sudoRunAs
-showInAdvancedViewOnly: TRUE
+adminDescription: User(s) impersonated by sudo (deprecated)
-adminDisplayName: sudoOption
+oMSyntax: 22
-adminDescription: Option(s) followed by sudo
+lDAPDisplayName: sudoRunAs
-oMSyntax: 22
+name: sudoRunAs
-lDAPDisplayName: sudoOption
+schemaIDGUID:: CP98mCQTyUKKxGrQeM80hQ==
-name: sudoOption
+objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
-schemaIDGUID:: ojaPzBBlAEmsvrHxQctLnA==
+
-objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
+dn: CN=sudoOption,CN=Schema,CN=Configuration,DC=X
-
+changetype: add
-dn: CN=sudoRunAsUser,CN=Schema,CN=Configuration,DC=X
+objectClass: top
-changetype: add
+objectClass: attributeSchema
-objectClass: top
+cn: sudoOption
-objectClass: attributeSchema
+distinguishedName: CN=sudoOption,CN=Schema,CN=Configuration,DC=X
-cn: sudoRunAsUser
+instanceType: 4
-distinguishedName: CN=sudoRunAsUser,CN=Schema,CN=Configuration,DC=X
+attributeID: 1.3.6.1.4.1.15953.9.1.5
-instanceType: 4
+attributeSyntax: 2.5.5.5
-attributeID: 1.3.6.1.4.1.15953.9.1.6
+isSingleValued: FALSE
-attributeSyntax: 2.5.5.5
+showInAdvancedViewOnly: TRUE
-isSingleValued: FALSE
+adminDisplayName: sudoOption
-showInAdvancedViewOnly: TRUE
+adminDescription: Option(s) followed by sudo
-adminDisplayName: sudoRunAsUser
+oMSyntax: 22
-adminDescription: User(s) impersonated by sudo
+lDAPDisplayName: sudoOption
-oMSyntax: 22
+name: sudoOption
-lDAPDisplayName: sudoRunAsUser
+schemaIDGUID:: ojaPzBBlAEmsvrHxQctLnA==
-name: sudoRunAsUser
+objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
-schemaIDGUID:: 9C52yPYd3RG3jMR2VtiVkw==
+
-objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
+dn: CN=sudoRunAsUser,CN=Schema,CN=Configuration,DC=X
-
+changetype: add
-dn: CN=sudoRunAsGroup,CN=Schema,CN=Configuration,DC=X
+objectClass: top
-changetype: add
+objectClass: attributeSchema
-objectClass: top
+cn: sudoRunAsUser
-objectClass: attributeSchema
+distinguishedName: CN=sudoRunAsUser,CN=Schema,CN=Configuration,DC=X
-cn: sudoRunAsGroup
+instanceType: 4
-distinguishedName: CN=sudoRunAsGroup,CN=Schema,CN=Configuration,DC=X
+attributeID: 1.3.6.1.4.1.15953.9.1.6
-instanceType: 4
+attributeSyntax: 2.5.5.5
-attributeID: 1.3.6.1.4.1.15953.9.1.7
+isSingleValued: FALSE
-attributeSyntax: 2.5.5.5
+showInAdvancedViewOnly: TRUE
-isSingleValued: FALSE
+adminDisplayName: sudoRunAsUser
-showInAdvancedViewOnly: TRUE
+adminDescription: User(s) impersonated by sudo
-adminDisplayName: sudoRunAsGroup
+oMSyntax: 22
-adminDescription: Groups(s) impersonated by sudo
+lDAPDisplayName: sudoRunAsUser
-oMSyntax: 22
+name: sudoRunAsUser
-lDAPDisplayName: sudoRunAsGroup
+schemaIDGUID:: 9C52yPYd3RG3jMR2VtiVkw==
-name: sudoRunAsGroup
+objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
-schemaIDGUID:: xJhSt/Yd3RGJPTB1VtiVkw==
+
-objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
+dn: CN=sudoRunAsGroup,CN=Schema,CN=Configuration,DC=X
-
+changetype: add
-dn: CN=sudoRole,CN=Schema,CN=Configuration,DC=X
+objectClass: top
-changetype: add
+objectClass: attributeSchema
-objectClass: top
+cn: sudoRunAsGroup
-objectClass: classSchema
+distinguishedName: CN=sudoRunAsGroup,CN=Schema,CN=Configuration,DC=X
-cn: sudoRole
+instanceType: 4
-distinguishedName: CN=sudoRole,CN=Schema,CN=Configuration,DC=X
+attributeID: 1.3.6.1.4.1.15953.9.1.7
-instanceType: 4
+attributeSyntax: 2.5.5.5
-possSuperiors: container
+isSingleValued: FALSE
-possSuperiors: top
+showInAdvancedViewOnly: TRUE
-subClassOf: top
+adminDisplayName: sudoRunAsGroup
-governsID: 1.3.6.1.4.1.15953.9.2.1
+adminDescription: Groups(s) impersonated by sudo
-mayContain: sudoCommand
+oMSyntax: 22
-mayContain: sudoHost
+lDAPDisplayName: sudoRunAsGroup
-mayContain: sudoOption
+name: sudoRunAsGroup
-mayContain: sudoRunAs
+schemaIDGUID:: xJhSt/Yd3RGJPTB1VtiVkw==
-mayContain: sudoRunAsUser
+objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
-mayContain: sudoRunAsGroup
+
-mayContain: sudoUser
+dn:
-rDNAttID: cn
+changetype: modify
-showInAdvancedViewOnly: FALSE
+add: schemaUpdateNow
-adminDisplayName: sudoRole
+schemaUpdateNow: 1
-adminDescription: Sudoer Entries
+-
-objectClassCategory: 1
+
-lDAPDisplayName: sudoRole
+dn: CN=sudoRole,CN=Schema,CN=Configuration,DC=X
-name: sudoRole
+changetype: add
-schemaIDGUID:: SQn432lnZ0+ukbdh3+gN3w==
+objectClass: top
-systemOnly: FALSE
+objectClass: classSchema
-objectCategory: CN=Class-Schema,CN=Schema,CN=Configuration,DC=X
+cn: sudoRole
-defaultObjectCategory: CN=sudoRole,CN=Schema,CN=Configuration,DC=X
+distinguishedName: CN=sudoRole,CN=Schema,CN=Configuration,DC=X
+instanceType: 4
+possSuperiors: container
+possSuperiors: top
+subClassOf: top
+governsID: 1.3.6.1.4.1.15953.9.2.1
+mayContain: sudoCommand
+mayContain: sudoHost
+mayContain: sudoOption
+mayContain: sudoRunAs
+mayContain: sudoRunAsUser
+mayContain: sudoRunAsGroup
+mayContain: sudoUser
+rDNAttID: cn
+showInAdvancedViewOnly: FALSE
+adminDisplayName: sudoRole
+adminDescription: Sudoer Entries
+objectClassCategory: 1
+lDAPDisplayName: sudoRole
+name: sudoRole
+schemaIDGUID:: SQn432lnZ0+ukbdh3+gN3w==
+systemOnly: FALSE
+objectCategory: CN=Class-Schema,CN=Schema,CN=Configuration,DC=X
+defaultObjectCategory: CN=sudoRole,CN=Schema,CN=Configuration,DC=X