Describes the hierarchical structure of LDAP entries. components from X.509 certificates and domain names are used to form higher level and lower level LDAP entries.
What Is Hierarchical Structure of LDAP Entries?
Hierarchical structure of LDAP entries is a tree structure
formed by LDAP entries based on their parent-child relations.
Main features of the LDAP tree are:
LDAP entries use components similar to those used
in X.509 certificates and domain names
like country, state, city, organization, organization unit,
common name, top-level tomain, etc., to form higher level and
lower level entries.
The DN (Distinguished Name) of a lower level entry
must carry the DN of its parent to specify their parent-child relation.
For example, the DN "ou=cloud,dc=dev,dc=herongyang,dc=com"
of the "ou=cloud" organization unit carries the
DN "dc=dev,dc=herongyang,dc=com" organization.
The diagram (source: thecustomizewindows.com) below shows you a good example of a LDAP entry tree.