<xsd:element name="activedirectory_test" substitutionGroup="oval:test">
<xsd:annotation>
<xsd:documentation>This test gathers information about specified entries in active directory.</xsd:documentation>
<xsd:appinfo>
<test_name>Active Directory Test</test_name>
<extends>standardTestType</extends>
<valid_sections>notes, object, data</valid_sections>
<example>
<activedirectory_test id="wat-0" check="all" comment="allow execute permissions to HTTP virtual dir" xmlns="http://oval.mitre.org/XMLSchema/oval#windows">
<oval:notes xmlns:oval="http://oval.mitre.org/XMLSchema/oval">
<oval:note>This is an example test written under version 4 of the OVAL schema. It is meant to give a short overview of the test and might not contain every possible child element.</oval:note>
</oval:notes>
<object>
<naming_context>configuration</naming_context>
<relative_dn operator="pattern match">^CN=[^,]+,CN=[^,]+,CN=HTTP,CN=Protocols,CN=[^,]*,CN=Servers,CN=[^,]*,CN=Administrative Groups,CN=[^,]*,CN=Microsoft Exchange,CN=Services$</relative_dn>
<attribute>msExchAccessFlags</attribute>
</object>
<data operation="AND">
<adstype>ADSTYPE_INTEGER</adstype>
<value operator="bitwise and">512</value>
</data>
</activedirectory_test>
</example>
</xsd:appinfo>
</xsd:annotation>
<xsd:complexType>
<xsd:complexContent>
<xsd:extension base="oval:standardTestType">
<xsd:sequence>
<xsd:element name="object" minOccurs="1" maxOccurs="1">
<xsd:complexType>
<xsd:complexContent>
<xsd:extension base="oval:objectType">
<xsd:sequence>
<xsd:element name="naming_context" minOccurs="1" maxOccurs="1">
<xsd:annotation>
<xsd:documentation>Each object in active directory exists under a certain naming context (also known as a partition). A naming context is defined as a single object in the Directory Information Tree (DIT) along with every object in the tree subordinate to it. There are three default naming contexts in Active Directory: domain, configuration, and schema.</xsd:documentation>
<xsd:appinfo>
<parent_test>Active Directory Test</parent_test>
<cardinality>1</cardinality>
<content>string</content>
<valid_datatypes>string</valid_datatypes>
<valid_operators>equals, not equal</valid_operators>
</xsd:appinfo>
</xsd:annotation>
<xsd:complexType>
<xsd:simpleContent>
<xsd:restriction base="oval:subtestStringType">
<xsd:enumeration value="domain" />
<xsd:enumeration value="configuration" />
<xsd:enumeration value="schema" />
</xsd:restriction>
</xsd:simpleContent>
</xsd:complexType>
</xsd:element>
<xsd:element name="relative_dn" type="oval:subtestStringType" minOccurs="1" maxOccurs="1">
<xsd:annotation>
<xsd:documentation>The relative_dn field is used to uniquely identify an object inside the specified naming context. It contains all the parts of the objects distinguished name except those outlined by the naming context.</xsd:documentation>
<xsd:appinfo>
<parent_test>Active Directory Test</parent_test>
<cardinality>1</cardinality>
<content>string</content>
<valid_datatypes>string</valid_datatypes>
<valid_operators>equals, not equal, pattern match</valid_operators>
</xsd:appinfo>
</xsd:annotation>
</xsd:element>
<xsd:element name="attribute" type="oval:subtestStringType" minOccurs="1" maxOccurs="1">
<xsd:annotation>
<xsd:documentation>Specifies a named value contained by the object.</xsd:documentation>
<xsd:appinfo>
<parent_test>Active Directory Test</parent_test>
<cardinality>1</cardinality>
<content>string</content>
<valid_datatypes>string</valid_datatypes>
<valid_operators>equals, not equal, pattern match</valid_operators>
</xsd:appinfo>
</xsd:annotation>
</xsd:element>
</xsd:sequence>
</xsd:extension>
</xsd:complexContent>
</xsd:complexType>
</xsd:element>
<xsd:element name="data" minOccurs="0" maxOccurs="1">
<xsd:complexType>
<xsd:complexContent>
<xsd:extension base="oval:dataType">
<xsd:sequence>
<xsd:element name="object_class" type="oval:subtestStringType" minOccurs="0" maxOccurs="1">
<xsd:annotation>
<xsd:documentation>The name of the class of which the object is an instance.</xsd:documentation>
<xsd:appinfo>
<parent_test>Active Directory Test</parent_test>
<cardinality>0-1</cardinality>
<content>string</content>
<valid_datatypes>string</valid_datatypes>
<valid_operators>equals, not equal, pattern match</valid_operators>
</xsd:appinfo>
</xsd:annotation>
</xsd:element>
<xsd:element name="adstype" minOccurs="0" maxOccurs="1">
<xsd:annotation>
<xsd:documentation>Specifies the type of information that the specified attribute represents.</xsd:documentation>
<xsd:appinfo>
<parent_test>Active Directory Test</parent_test>
<cardinality>0-1</cardinality>
<content>string</content>
<valid_datatypes>string</valid_datatypes>
<valid_operators>equals, not equal</valid_operators>
</xsd:appinfo>
</xsd:annotation>
<xsd:complexType>
<xsd:simpleContent>
<xsd:restriction base="oval:subtestStringType">
<xsd:enumeration value="ADSTYPE_INVALID" />
<xsd:enumeration value="ADSTYPE_DN_STRING" />
<xsd:enumeration value="ADSTYPE_CASE_EXACT_STRING" />
<xsd:enumeration value="ADSTYPE_CASE_IGNORE_STRING" />
<xsd:enumeration value="ADSTYPE_PRINTABLE_STRING" />
<xsd:enumeration value="ADSTYPE_NUMERIC_STRING" />
<xsd:enumeration value="ADSTYPE_BOOLEAN" />
<xsd:enumeration value="ADSTYPE_INTEGER" />
<xsd:enumeration value="ADSTYPE_OCTET_STRING" />
<xsd:enumeration value="ADSTYPE_UTC_TIME" />
<xsd:enumeration value="ADSTYPE_LARGE_INTEGER" />
<xsd:enumeration value="ADSTYPE_PROV_SPECIFIC" />
<xsd:enumeration value="ADSTYPE_OBJECT_CLASS" />
<xsd:enumeration value="ADSTYPE_CASEIGNORE_LIST" />
<xsd:enumeration value="ADSTYPE_OCTET_LIST" />
<xsd:enumeration value="ADSTYPE_PATH" />
<xsd:enumeration value="ADSTYPE_POSTALADDRESS" />
<xsd:enumeration value="ADSTYPE_TIMESTAMP" />
<xsd:enumeration value="ADSTYPE_BACKLINK" />
<xsd:enumeration value="ADSTYPE_TYPEDNAME" />
<xsd:enumeration value="ADSTYPE_HOLD" />
<xsd:enumeration value="ADSTYPE_NETADDRESS" />
<xsd:enumeration value="ADSTYPE_REPLICAPOINTER" />
<xsd:enumeration value="ADSTYPE_FAXNUMBER" />
<xsd:enumeration value="ADSTYPE_EMAIL" />
<xsd:enumeration value="ADSTYPE_NT_SECURITY_DESCRIPTOR" />
<xsd:enumeration value="ADSTYPE_UNKNOWN" />
<xsd:enumeration value="ADSTYPE_DN_WITH_BINARY" />
<xsd:enumeration value="ADSTYPE_DN_WITH_STRING" />
</xsd:restriction>
</xsd:simpleContent>
</xsd:complexType>
</xsd:element>
<xsd:element name="value" type="oval:subtestStringType" minOccurs="0" maxOccurs="1">
<xsd:annotation>
<xsd:documentation>The actual value of the specified active directory attribute.</xsd:documentation>
<xsd:appinfo>
<parent_test>Active Directory Test</parent_test>
<cardinality>0-1</cardinality>
<content>string</content>
<valid_datatypes>binary, boolean, float, int, string</valid_datatypes>
<valid_operators>equals, not equal, greater than, less than, greater than or equal, less than or equal, bitwise and, bitwise or, pattern match</valid_operators>
</xsd:appinfo>
</xsd:annotation>
</xsd:element>
</xsd:sequence>
</xsd:extension>
</xsd:complexContent>
</xsd:complexType>
</xsd:element>
</xsd:sequence>
</xsd:extension>
</xsd:complexContent>
</xsd:complexType>
</xsd:element>
|
XSD Schema Diagram:
