LDAP object classes: cn=admin, why "simpleSecurityObject" and "organizationalRole&quo
I'm learning (Open)LDAP. And now I start to understand a little, I'm wondering about the objectclasses of the "admin" or "manager".
The object classes are "simpleSecurityObject" and "organizationalRole". Why two of them? Why these? What do the classes do for admin?
Also, browsing the schema, I noticed that the "organizationalRole" has a "ou" attribute. Should this store the ou where the object (entry) is in? I my case this attribute is empty for the admin. Is thisa problem? Or does the "ou" atrribute serve another purpose?
I don't understand.
Thanks in advance for replying.