Subordinate Referral


Subordinate Referral may be provided to delegate a subtree.

Subordinate Referral points downward in the DIT to other partitions.

The referral object acts as a delegation point, gluing two services together. This mechanism allows for hierarchical directory services to be constructed.

A referral object has a STRUCTURAL object class of Referral and has the same Distinguished Name as the delegated subtree.

Often the referral object may also provide the auxiliary object class extensibleObject which allows the entry to contain appropriate Relative Distinguished Name values. This is best demonstrated by example.

If the server a.example.net holds dc=example,dc=net and wished to delegate the subtree ou=subtree,dc=example,dc=net to another server b.example.net, the following named referral object would be added to a.example.net:

        dn: dc=subtree,dc=example,dc=net
        objectClass: referral
        objectClass: extensibleObject
        dc: subtree
        ref: ldap://b.example.net/dc=subtree,dc=example,dc=net
The server uses this information to generate referrals and search continuations to subordinate servers.

