An extension that allows to inject controls to incoming requests.
Supported controls and their OIDs:
- AdministrativeOperation (1.3.6.1.4.1.30221.2.5.11)
- DontUseCopy (1.3.6.1.1.22)
- ExtendedSchemaInfo (1.3.6.1.4.1.30221.2.5.12)
- HardDelete (1.3.6.1.4.1.30221.2.5.22)
- IgnoreNoUserModification (1.3.6.1.4.1.30221.2.5.5)
- ManageDsaIT (2.16.840.1.113730.3.4.2)
- NameWithEntryUUID (1.3.6.1.4.1.30221.2.5.44)
- NoOp (1.3.6.1.4.1.4203.1.10.2)
- PermissiveModify (1.2.840.113556.1.4.1413)
- RealAttributesOnly (2.16.840.1.113730.3.4.17)
- ReplicationRepair (1.3.6.1.4.1.30221.1.5.2)
- RetainIdentity (1.3.6.1.4.1.30221.2.5.3)
- ReturnConflictEntries (1.3.6.1.4.1.30221.2.5.13)
- Subentries (1.3.6.1.4.1.7628.5.101.1)
- SubtreeDelete (1.2.840.113556.1.4.805)
- SuppressReferentialIntegrityUpdates (1.3.6.1.4.1.30221.2.5.30)
- Undelete (1.3.6.1.4.1.30221.2.5.23)
- VirtualAttributesOnly (2.16.840.1.113730.3.4.19)
The list above is provided because you may have to add ACI rules to allow for the control to be used. For example:
(targetcontrol="1.3.6.1.4.1.4203.1.10.2")(version 3.0; acl "allow use of NoOp control on own entry"; allow(read) userdn="ldap:///self";)
Allowed Arguments
Argument Name: | request-control |
Description: | The name of a supported request control. Currently supported controls list: AdministrativeOperation DontUseCopy ExtendedSchemaInfo HardDelete IgnoreNoUserModification ManageDsaIT NameWithEntryUUID NoOp PermissiveModify RealAttributesOnly ReplicationRepair RetainIdentity ReturnConflictEntries Subentries SubtreeDelete SuppressReferentialIntegrityUpdates Undelete VirtualAttributesOnly |
Data Type: | String |
Is Required: | true |
Maximum Occurrences: | 1 |