1 tony 1.1 // ===================================================================
2 // Title: User-Security Roles 2.8
3 // Filename: User28_Role.mof
4 // Version: 2.8
5 // Status: Final
6 // Date: Jan 26, 2004
7 // ===================================================================
8 // Copyright 2000-2004 Distributed Management Task Force, Inc. (DMTF).
9 // All rights reserved.
10 // DMTF is a not-for-profit association of industry members dedicated
11 // to promoting enterprise and systems management and interoperability.
12 // DMTF specifications and documents may be reproduced for uses
13 // consistent with this purpose by members and non-members,
14 // provided that correct attribution is given.
15 // As DMTF specifications may be revised from time to time,
16 // the particular version and release date should always be noted.
17 //
18 // Implementation of certain elements of this standard or proposed
19 // standard may be subject to third party patent rights, including
20 // provisional patent rights (herein "patent rights"). DMTF makes
21 // no representations to users of the standard as to the existence
22 tony 1.1 // of such rights, and is not responsible to recognize, disclose, or
23 // identify any or all such third party patent right, owners or
24 // claimants, nor for any incomplete or inaccurate identification or
25 // disclosure of such rights, owners or claimants. DMTF shall have no
26 // liability to any party, in any manner or circumstance, under any
27 // legal theory whatsoever, for failure to recognize, disclose, or
28 // identify any such third party patent rights, or for such party's
29 // reliance on the standard or incorporation thereof in its product,
30 // protocols or testing procedures. DMTF shall have no liability to
31 // any party implementing such standard, whether such implementation
32 // is foreseeable or not, nor to any patent owner or claimant, and shall
33 // have no liability or responsibility for costs or losses incurred if
34 // a standard is withdrawn or modified after publication, and shall be
35 // indemnified and held harmless by any party implementing the
36 // standard from any and all claims of infringement by a patent owner
37 // for such implementations.
38 //
39 // For information about patents held by third-parties which have
40 // notified the DMTF that, in their opinion, such patent may relate to
41 // or impact implementations of DMTF standards, visit
42 // http://www.dmtf.org/about/policies/disclosures.php.
43 tony 1.1 // ===================================================================
44 // Description: The User Model extends the management concepts that
45 // are related to users and security.
46 // This file defines the concepts and classes for roles.
47 //
48 // The object classes below are listed in an order that
49 // avoids forward references. Required objects, defined
50 // by other working groups, are omitted.
51 // ===================================================================
52 // Change Log for v2.8: None
53 //
54 // Change Log for v2.7
55 // (ERRATA) CR855 - Change cardinality of the Antecedent from 0..1
56 // to 1 for MoreOrganizationInfo and MoreOrgUnitInfo
57 // ===================================================================
58
59 #pragma Locale ("en_US")
60
61
62 // ==================================================================
63 // Role
64 tony 1.1 // ==================================================================
65 [Version ( "2.6.0" ), Description (
66 "The Role object class is used to represent a position or set "
67 "of responsibilities within an organization, organizational "
68 "unit or system administration scope and is filled by a person "
69 "or persons (or non-human entities represented by "
70 "ManagedSystemElement subclasses) that may be explicitly or "
71 "implicitly members of this collection subclass. The class is "
72 "defined so as to incorporate commonly-used LDAP attributes to "
73 "permit implementations to easily derive this information from "
74 "LDAP-accessible directories. The members of a role are "
75 "frequently called role occupants. This class's properties are "
76 "a subset of a related class, OtherRoleInformation, which "
77 "defines all the group properties and in array form for "
78 "directory compatibility.")]
79 class CIM_Role : CIM_Collection {
80
81 [Key, Description (
82 "CreationClassName indicates the name of the class or the "
83 "subclass used in the creation of an instance. When used "
84 "with the other key properties of this class, this property "
85 tony 1.1 "allows all instances of this class and its subclasses to be "
86 "uniquely identified."),
87 MaxLen ( 256 )]
88 string CreationClassName;
89
90 [Key, Description (
91 "The Name property defines the label by which the object is "
92 "known. In the case of an LDAP-derived instance, the Name "
93 "property value may be set to the distinguished name of the "
94 "LDAP-accessed object instance."),
95 MaxLen ( 1024 )]
96 string Name;
97
98 [Description (
99 "This property may be used to describe the kind of business "
100 "activity performed by the members (role occupants) in the "
101 "position or set of responsibilities represented by the "
102 "Role."),
103 MaxLen ( 128 )]
104 string BusinessCategory;
105
106 tony 1.1 [Required, Description (
107 "A Common Name is a (possibly ambiguous) name by which the "
108 "role is commonly known in some limited scope (such as an "
109 "organization) and conforms to the naming conventions of the "
110 "country or culture with which it is associated.")]
111 string CommonName;
112 };
113
114
115 // ==================================================================
116 // OtherRoleInformation
117 // ==================================================================
118 [Version ( "2.6.0" ), Description (
119 "The OtherRoleInformation class is used to provide additional "
120 "information about an associated Role instance. This class is "
121 "defined so as to incorporate commonly-used LDAP attributes to "
122 "permit implementations to easily derive this information from "
123 "LDAP-accessible directories.")]
124 class CIM_OtherRoleInformation : CIM_ManagedElement {
125
126 [Key, Description (
127 tony 1.1 "CreationClassName indicates the name of the class or the "
128 "subclass used in the creation of an instance. When used "
129 "with the other key properties of this class, this property "
130 "allows all instances of this class and its subclasses to be "
131 "uniquely identified."),
132 MaxLen ( 256 )]
133 string CreationClassName;
134
135 [Key, Description (
136 "The Name property defines the label by which the object is "
137 "known. In the case of an LDAP-derived instance, the Name "
138 "property value may be set to the distinguished name of the "
139 "LDAP-accessed object instance."),
140 MaxLen ( 1024 )]
141 string Name;
142
143 [Description (
144 "In the case of an LDAP-derived instance, the ObjectClass "
145 "property value(s) may be set to the objectClass attribute "
146 "values.")]
147 string ObjectClass[];
148 tony 1.1
149 [Description (
150 "This property may be used to describe the kind of business "
151 "activity performed by the members (role occupants) in the "
152 "position or set of responsibilities represented by the "
153 "Role."),
154 MaxLen ( 128 )]
155 string BusinessCategory[];
156
157 [Description (
158 "A CommonName is a (possibly ambiguous) name by which the "
159 "role is commonly known in some limited scope (such as an "
160 "organization) and conforms to the naming conventions of the "
161 "country or culture with which it is associated.")]
162 string CommonName[];
163
164 [Description (
165 "The Descriptions property values may contain human-readable "
166 "descriptions of the object. In the case of an LDAP-derived "
167 "instance, the description attribute may have multiple "
168 "values that, therefore, cannot be placed in the inherited "
169 tony 1.1 "Description property."),
170 MaxLen ( 1024 )]
171 string Descriptions[];
172
173 [Description (
174 "This property is used for the role occupants' telegram "
175 "service."),
176 MaxLen ( 128 )]
177 string DestinationIndicator[];
178
179 [Description (
180 "The role occupants' facsimile telephone number.")]
181 string FacsimileTelephoneNumber[];
182
183 [Description (
184 "The role occupants' International ISDN number."),
185 MaxLen ( 16 )]
186 string InternationaliSDNNumber[];
187
188 [Description (
189 "The name of an organizational unit related to the role.")]
190 tony 1.1 string OU[];
191
192 [Description (
193 "The PhysicalDeliveryOfficeName property specifies the name "
194 "of the city, village, etc. where a physical delivery office "
195 "is situated."),
196 MaxLen ( 128 )]
197 string PhysicalDeliveryOfficeName[];
198
199 [Description (
200 "The PostalAddress property values specify the address "
201 "information required for the physical delivery of postal "
202 "messages by the postal authority to the role occupants.")]
203 string PostalAddress[];
204
205 [Description (
206 "The PostalCode property specifies the postal code for the "
207 "role occupants. If this value is present it will be part of "
208 "the object's postal address."),
209 MaxLen ( 40 )]
210 string PostalCode[];
211 tony 1.1
212 [Description (
213 "The PostOfficeBox property specifies the PO box by which "
214 "the role occupants will receive physical postal delivery. "
215 "If present, the property value is part of the object's "
216 "postal address."),
217 MaxLen ( 40 )]
218 string PostOfficeBox[];
219
220 [Description (
221 "The PreferredDeliveryMethod property specifies the role "
222 "occupants' preferred method to be used for contacting them "
223 "in their role.")]
224 string PreferredDeliveryMethod;
225
226 [Description (
227 "This property specifies a postal address suitable for "
228 "receipt of telegrams or expedited documents, where it is "
229 "necessary to have the recipient accept delivery.")]
230 string RegisteredAddress[];
231
232 tony 1.1 [Description (
233 "In the case of an LDAP-derived instance, the SeeAlso "
234 "property specifies distinguished name of other Directory "
235 "objects which may be other aspects (in some sense) of the "
236 "same real world object.")]
237 string SeeAlso[];
238
239 [Description (
240 "The State or Province name property specifies a state or "
241 "province.")]
242 string StateOrProvince[];
243
244 [Description (
245 "The Street address property specifies a site for the local "
246 "distribution and physical delivery in a postal address, "
247 "i.e. the street name, place, avenue, and the number."),
248 MaxLen ( 128 )]
249 string Street[];
250
251 [Description (
252 "The TelephoneNumber property specifies a telephone number "
253 tony 1.1 "of the role occupants, e.g. + 44 582 10101)."),
254 MaxLen ( 32 )]
255 string TelephoneNumber[];
256
257 [Description (
258 "The TeletexTerminalIdentifier property specifies the "
259 "Teletex terminal identifier (and, optionally, parameters) "
260 "for a teletex terminal associated with the role occupants.")]
261 string TeletexTerminalIdentifier[];
262
263 [Description (
264 "The TelexNumber property specifies the telex number, "
265 "country code, and answerback code of a telex terminal for "
266 "the role occupants.")]
267 string TelexNumber[];
268
269 [Description (
270 "An X.121 address for the role occupants."),
271 MaxLen ( 15 )]
272 string X121Address[];
273 };
274 tony 1.1
275
276 // ==================================================================
277 // MoreRoleInfo
278 // ==================================================================
279 [Association, Version ( "2.7.0" ), Description (
280 "CIM_MoreRoleInfo is an association used to extend the "
281 "information in a CIM_Role class instance.")]
282 class CIM_MoreRoleInfo : CIM_Dependency {
283
284 [Override ( "Antecedent" ), Min ( 1 ), Max ( 1 ), Description (
285 "The Role which has more information.")]
286 CIM_Role REF Antecedent;
287
288 [Override ( "Dependent" ), Max ( 1 ), Description (
289 "Additional data concerning the Role.")]
290 CIM_OtherRoleInformation REF Dependent;
291 };
292
293
294 // ==================================================================
295 tony 1.1 // SystemAdministratorRole
296 // ==================================================================
297 [Association, Version ( "2.6.0" ), Description (
298 "CIM_SystemAdministratorRole is an association used to identify "
299 "a system administrator Role for a CIM_System.")]
300 class CIM_SystemAdministratorRole : CIM_Dependency {
301
302 [Override ( "Antecedent" ), Description (
303 "The administered system.")]
304 CIM_System REF Antecedent;
305
306 [Override ( "Dependent" ), Description (
307 "The system administration role.")]
308 CIM_Role REF Dependent;
309 };
310
311
312 // ===================================================================
313 // end of file
314 // ===================================================================
|