HP-UX Directory Server Administrator Guide HP-UX Directory Server Version 8.1 (5900-3098, May 2013)
A dialog box appears to confirm the deletion. Click Yes.
NOTE:
Deleting a role deletes the role entry but does not delete the nsRoleDN attribute for each role
member. To delete the nsRoleDN attribute for each role member, enable the Referential Integrity
plug-in, and configure it to manage the nsRoleDN attribute. For more information on the Referential
Integrity plug-in, see “Maintaining Referential Integrity” (page 126).
5.1.3 Managing roles using the command line
Roles inherit from the ldapsubentry object class, which is defined in the ITU X.509 standard.
In addition, each type of role has two specific object classes that inherit from the
nsRoleDefinition object class. When a role is created, members are assigned to it as follows:
• Members of a managed role have the nsRoleDN attribute in their entry.
• Members of a filtered role are entries that match the filter specified in the nsRoleFilter
attribute.
• Members of a nested role are members of the roles specified in the nsRoleDN attributes of
the nested role definition entry.
Table 20 (page 184) lists the object classes and attributes associated with each type of role.
Table 20 Object classes and attributes for roles
AttributesObject classesRole type
description (optional)Managed Role nsSimpleRoleDefinition
nsManagedRoleDefinition
Filtered Role nsRoleFilternsComplexRoleDefinition
Description (optional)nsFilteredRoleDefinition
Nested Role nsRoleDNnsComplexRoleDefinition
184 Organizing Entries with roles, Class of service, and Views