ObjectClass is a LDAP Schema element AttributeType defined in RFC 4512

Each LDAP Entry in the DIT has an 'ObjectClass' attribute.

ObjectClass attribute specifies the object classes of an entry, which (among other things) are used in conjunction with the controlling schema to determine the permitted attributes of an entry.

Values of this attribute can be modified by clients, but the 'objectClass' attribute cannot be removed.

Every LDAP Entry must have exactly one STRUCTURAL object class, and it may have zero or more AUXILIARY classes.

The complete set of object classes in an entry define the set of AttributeTypes that are required or allowed to be present. The STRUCTURAL class may also be used to link the entry with a NameForm, DitContentRules, and/or DITStructureRules.

LDAP Attribute Definition#

The ObjectClass AttributeTypes is defined as:

The Object Class Description format is described in RFC 4512

Reading ObjectClass from the Schema#

The set of object classes defined in the server may be determined by retrieving the objectClasses attribute of the SubschemaSubentry. For more information about object classes, see the Understanding Object Classes document.

Object Class Inheritance#

As specified in the above description, object classes can have zero or more superior classes. If an object class references a superior class, then all of the required and optional attributes associated with that superior class are also associated with the subordinate class.

More Information#

There might be more information for this subject on one of the following: