Help wanted - simple python or perl script for schema conversion

Andrew Bartlett abartlet at samba.org
Fri Dec 5 08:04:04 GMT 2008 

As you might imagine, Samba4 uses a schema very much like the AD schema,
which we currently extract from an AD server and process via a tool:
minschema.py

However, in future we would like to move to using the schema as
published in the Microsoft WSPP documentation.  For example:

cn: Account-Expires
ldapDisplayName: accountExpires
attributeId: 1.2.840.113556.1.4.159
attributeSyntax: 2.5.5.16
omSyntax: 65
isSingleValued: TRUE
schemaIdGuid: bf967915-0de6-11d0-a285-00aa003049e2
systemOnly: FALSE
searchFlags: fCOPY
attributeSecurityGuid: 4c164200-20c0-11d0-a768-00aa006e0529
systemFlags: FLAG_SCHEMA_BASE_OBJECT
schemaFlagsEx: FLAG_ATTR_IS_CRITICAL

The current output from minschema.py for this is:

dn: CN=Account-Expires,${SCHEMADN}
objectClass: top
objectClass: attributeSchema
attributeID: 1.2.840.113556.1.4.159
attributeSyntax: 2.5.5.16
isSingleValued: TRUE
showInAdvancedViewOnly: TRUE
adminDisplayName: Account-Expires
adminDescription: Account-Expires
oMSyntax: 65
searchFlags: 16
lDAPDisplayName: accountExpires
schemaIDGUID: bf967915-0de6-11d0-a285-00aa003049e2
attributeSecurityGUID: 4c164200-20c0-11d0-a768-00aa006e0529
systemOnly: FALSE
systemFlags: 16

As you can see, the translation isn't hard - mostly a matter of looking
up fCOPY and FLAG_* etc.  

I wonder if someone on the list might want to take this project on?  

The full schema is the MS-ADA1, MS-ADA2, MS-ADA3 and MS-ADSC PDF files
from the WSPP set.  (I have a text file with them in it - to avoid the
painful extraction, but am just awaiting permission to redistribute)

Andrew Bartlett
-- 
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20081205/4f1742fd/attachment.bin

More information about the samba-technical mailing list