What is Directory Metadata?

Directory metadata is the information used by the directory server during run time for processing LDAP requests.It is stored in the underlying data repository. During startup, the directory server reads this information and stores it in a local metadata cache. It then uses this cache during its runtime to process incoming LDAP operation requests.

The directory server has the following types of metadata in its local metadata cache:

• Directory Schema 
  

The definitions of object classes, attributes, and matching rules supported by the directory server.

• Access control policy point (ACP)
  

  The directory server uses ACPs when determining whether to allow a certain LDAP operation performed by a user.

• Root DSE entry
  

The root DSE (DSA-Specific Entry) contains a number of attributes that store information about the directory server itself. For e.g.Naming contexts DNs,  Sub Schema Subentry DN, etc

• Privilege groups
  

The directory schema supports directory group objects through the standard  groupofuniquenames and groupofnames object classes.Oracle Internet Directory extends these standard group objects through an auxiliary object class called orclprivilegegroup. This object class, which supports privilege groups that can be used in access control policies

• Password policy entry
  

A special entry containing information about the policies enforced by the directory server for the user password credentials.The directory server uses this information during runtime to enforce the password policies.