JSI Tip 9910. What attribute names exist in my Active Directory schema?

The new version of ADFind.exe freeware has the ability to list the attribute names in the schema by typing:

adfind -schema -f "objectcategory=attributeschema" ldapdisplayname -list

My Windows Server 2003 Active Directory Schema contains the following attribute names:

accountExpires
accountNameHistory
aCSAggregateTokenRatePerUser
aCSAllocableRSVPBandwidth
aCSCacheTimeout
aCSDirection
aCSDSBMDeadTime
aCSDSBMPriority
aCSDSBMRefresh
aCSEnableACSService
aCSEnableRSVPAccounting
aCSEnableRSVPMessageLogging
aCSEventLogLevel
aCSIdentityName
aCSMaxAggregatePeakRatePerUser
aCSMaxDurationPerFlow
aCSMaxNoOfAccountFiles
aCSMaxNoOfLogFiles
aCSMaxPeakBandwidth
aCSMaxPeakBandwidthPerFlow
aCSMaxSizeOfRSVPAccountFile
aCSMaxSizeOfRSVPLogFile
aCSMaxTokenBucketPerFlow
aCSMaxTokenRatePerFlow
aCSMaximumSDUSize
aCSMinimumDelayVariation
aCSMinimumLatency
aCSMinimumPolicedSize
aCSNonReservedMaxSDUSize
aCSNonReservedMinPolicedSize
aCSNonReservedPeakRate
aCSNonReservedTokenSize
aCSNonReservedTxLimit
aCSNonReservedTxSize
aCSPermissionBits
aCSPolicyName
aCSPriority
aCSRSVPAccountFilesLocation
aCSRSVPLogFilesLocation
aCSServiceType
aCSTimeOfDay
aCSTotalNoOfFlows
aCSServerList
notes
additionalTrustedServiceNames
streetAddress
addressBookRoots
addressEntryDisplayTable
addressEntryDisplayTableMSDOS
homePostalAddress
addressSyntax
addressType
adminContextMenu
adminCount
adminDescription
adminDisplayName
adminMultiselectPropertyPages
adminPropertyPages
allowedAttributes
allowedAttributesEffective
allowedChildClasses
allowedChildClassesEffective
altSecurityIdentities
aNR
appSchemaVersion
applicationName
appliesTo
assetNumber
assistant
assocNTAccount
associatedDomain
associatedName
attributeCertificateAttribute
attributeDisplayNames
attributeID
attributeSecurityGUID
attributeSyntax
attributeTypes
audio
auditingPolicy
authenticationOptions
authorityRevocationList
auxiliaryClass
badPasswordTime
badPwdCount
birthLocation
bridgeheadServerListBL
bridgeheadTransportList
buildingName
builtinCreationTime
builtinModifiedCount
businessCategory
bytesPerMinute
cACertificate
cACertificateDN
cAConnect
cAUsages
cAWEBURL
canUpgradeScript
canonicalName
carLicense
catalogs
categories
categoryId
certificateAuthorityObject
certificateRevocationList
certificateTemplates
classDisplayName
codePage
cOMClassID
cOMCLSID
cOMInterfaceID
cOMOtherProgId
cOMProgID
cOMTreatAsClassId
cOMTypelibId
cOMUniqueLIBID
info
cn
company
contentIndexingAllowed
contextMenu
controlAccessRights
cost
countryCode
c
createDialog
createTimeStamp
createWizardExt
creationTime
creationWizard
creator
cRLObject
cRLPartitionedRevocationList
crossCertificatePair
currMachineId
currentLocation
currentParentCA
currentValue
dBCSPwd
defaultClassStore
defaultGroup
defaultHidingValue
defaultLocalPolicyObject
defaultObjectCategory
defaultPriority
defaultSecurityDescriptor
deltaRevocationList
department
departmentNumber
description
desktopProfile
destinationIndicator
dhcpClasses
dhcpFlags
dhcpIdentification
dhcpMask
dhcpMaxKey
dhcpObjDescription
dhcpObjName
dhcpOptions
dhcpProperties
dhcpRanges
dhcpReservations
dhcpServers
dhcpSites
dhcpState
dhcpSubnets
dhcpType
dhcpUniqueKey
dhcpUpdateTime
displayName
displayNamePrintable
dITContentRules
division
dMDLocation
dmdName
dNReferenceUpdate
dnsAllowDynamic
dnsAllowXFR
dNSHostName
dnsNotifySecondaries
dNSProperty
dnsRecord
dnsRoot
dnsSecureSecondaries
dNSTombstoned
documentAuthor
documentIdentifier
documentLocation
documentPublisher
documentTitle
documentVersion
domainCAs
dc
domainCrossRef
domainID
domainIdentifier
domainPolicyObject
domainPolicyReference
domainReplica
domainWidePolicy
drink
driverName
driverVersion
dSCorePropagationData
dSHeuristics
dSUIAdminMaximum
dSUIAdminNotification
dSUIShellMaximum
dSASignature
dynamicLDAPServer
mail
eFSPolicy
employeeID
employeeNumber
employeeType
Enabled
enabledConnection
enrollmentProviders
entryTTL
extendedAttributeInfo
extendedCharsAllowed
extendedClassInfo
extensionName
extraColumns
facsimileTelephoneNumber
fileExtPriority
flags
flatName
forceLogoff
foreignIdentifier
friendlyNames
fromEntry
fromServer
frsComputerReference
frsComputerReferenceBL
fRSControlDataCreation
fRSControlInboundBacklog
fRSControlOutboundBacklog
fRSDirectoryFilter
fRSDSPoll
fRSExtensions
fRSFaultCondition
fRSFileFilter
fRSFlags
fRSLevelLimit
fRSMemberReference
fRSMemberReferenceBL
fRSPartnerAuthLevel
fRSPrimaryMember
fRSReplicaSetGUID
fRSReplicaSetType
fRSRootPath
fRSRootSecurity
fRSServiceCommand
fRSServiceCommandStatus
fRSStagingPath
fRSTimeLastCommand
fRSTimeLastConfigChange
fRSUpdateTimeout
fRSVersion
fRSVersionGUID
fRSWorkingPath
fSMORoleOwner
garbageCollPeriod
generatedConnection
generationQualifier
givenName
globalAddressList
governsID
gPLink
gPOptions
gPCFileSysPath
gPCFunctionalityVersion
gPCMachineExtensionNames
gPCUserExtensionNames
gPCWQLFilter
groupAttributes
groupMembershipSAM
groupPriority
groupType
groupsToIgnore
hasMasterNCs
hasPartialReplicaNCs
helpData16
helpData32
helpFileName
hideFromAB
homeDirectory
homeDrive
houseIdentifier
host
iconPath
implementedCategories
indexedScopes
initialAuthIncoming
initialAuthOutgoing
initials
installUiLevel
instanceType
interSiteTopologyFailover
interSiteTopologyGenerator
interSiteTopologyRenew
internationalISDNNumber
invocationId
ipsecData
ipsecDataType
ipsecFilterReference
ipsecID
ipsecISAKMPReference
ipsecName
iPSECNegotiationPolicyAction
ipsecNegotiationPolicyReference
iPSECNegotiationPolicyType
ipsecNFAReference
ipsecOwnersReference
ipsecPolicyReference
isCriticalSystemObject
isDefunct
isDeleted
isEphemeral
memberOf
isMemberOfPartialAttributeSet
isPrivilegeHolder
isSingleValued
jpegPhoto
keywords
knowledgeInformation
labeledURI
lastBackupRestorationTime
lastContentIndexed
lastKnownParent
lastLogoff
lastLogon
lastLogonTimestamp
lastSetTime
lastUpdateSequence
lDAPAdminLimits
lDAPDisplayName
lDAPIPDenyList
legacyExchangeDN
linkID
linkTrackSecret
lmPwdHistory
localPolicyFlags
localPolicyReference
localeID
l
localizedDescription
localizationDisplayId
location
lockOutObservationWindow
lockoutDuration
lockoutThreshold
lockoutTime
thumbnailLogo
logonCount
logonHours
logonWorkstation
lSACreationTime
lSAModifiedCount
machineArchitecture
machinePasswordChangeInterval
machineRole
machineWidePolicy
managedBy
managedObjects
manager
mAPIID
marshalledInterface
masteredBy
maxPwdAge
maxRenewAge
maxStorage
maxTicketAge
mayContain
meetingAdvertiseScope
meetingApplication
meetingBandwidth
meetingBlob
meetingContactInfo
meetingDescription
meetingEndTime
meetingID
meetingIP
meetingIsEncrypted
meetingKeyword
meetingLanguage
meetingLocation
meetingMaxParticipants
meetingName
meetingOriginator
meetingOwner
meetingProtocol
meetingRating
meetingRecurrence
meetingScope
meetingStartTime
meetingType
meetingURL
member
mhsORAddress
minPwdAge
minPwdLength
minTicketAge
modifiedCount
modifiedCountAtLastProm
modifyTimeStamp
moniker
monikerDisplayName
moveTreeState
msCOM-DefaultPartitionLink
msCOM-ObjectId
msCOM-PartitionLink
msCOM-PartitionSetLink
msCOM-UserLink
msCOM-UserPartitionSetLink
msDRM-IdentityCertificate
msDS-AdditionalDnsHostName
msDS-AdditionalSamAccountName
msDS-AllUsersTrustQuota
msDS-AllowedDNSSuffixes
msDS-AllowedToDelegateTo
msDS-Auxiliary-Classes
msDS-Approx-Immed-Subordinates
msDS-AzApplicationData
msDS-AzApplicationName
msDS-AzApplicationVersion
msDS-AzBizRule
msDS-AzBizRuleLanguage
msDS-AzClassId
msDS-AzDomainTimeout
msDS-AzGenerateAudits
msDS-AzLastImportedBizRulePath
msDS-AzLDAPQuery
msDS-AzMajorVersion
msDS-AzMinorVersion
msDS-AzOperationID
msDS-AzScopeName
msDS-AzScriptEngineCacheMax
msDS-AzScriptTimeout
msDS-AzTaskIsRoleDefinition
msDS-Behavior-Version
msDS-ByteArray
msDS-Cached-Membership
msDS-Cached-Membership-Time-Stamp
mS-DS-ConsistencyGuid
mS-DS-ConsistencyChildCount
mS-DS-CreatorSID
msDS-DateTime
msDS-DefaultQuota
msDS-DnsRootAlias
msDS-Entry-Time-To-Die
msDS-ExecuteScriptPassword
msDS-ExternalKey
msDS-ExternalStore
msDS-FilterContainers
msDS-HasInstantiatedNCs
msDS-HasDomainNCs
msDS-hasMasterNCs
msDS-Integer
msDS-IntId
msDS-KeyVersionNumber
msDS-LogonTimeSyncInterval
msDs-masteredBy
msDs-MaxValues
msDS-MembersForAzRole
msDS-MembersForAzRoleBL
msDS-NonMembers
msDS-NonMembersBL
msDS-TrustForestTrustInfo
msDS-TombstoneQuotaFactor
msDS-TopQuotaUsage
ms-DS-MachineAccountQuota
msDS-ObjectReference
msDS-ObjectReferenceBL
msDS-OperationsForAzRole
msDS-OperationsForAzRoleBL
msDS-OperationsForAzTask
msDS-OperationsForAzTaskBL
msDS-Other-Settings
msDS-QuotaAmount
msDS-QuotaEffective
msDS-QuotaTrustee
msDS-QuotaUsed
msDS-NCReplCursors
msDS-NCReplInboundNeighbors
msDS-NCReplOutboundNeighbors
msDS-NC-Replica-Locations
msDS-Non-Security-Group-Extra-Classes
msDS-PerUserTrustQuota
msDS-PerUserTrustTombstonesQuota
msDS-Preferred-GC-Site
msDS-ReplAttributeMetaData
msDS-ReplValueMetaData
mS-DS-ReplicatesNCReason
msDS-Replication-Notify-First-DSA-Delay
msDS-Replication-Notify-Subsequent-DSA-Delay
msDS-ReplicationEpoch
msDS-RetiredReplNCSignatures
msDs-Schema-Extensions
msDS-SDReferenceDomain
msDS-Security-Group-Extra-Classes
msDS-Settings
msDS-Site-Affinity
msDS-SPNSuffixes
msDS-TasksForAzRole
msDS-TasksForAzRoleBL
msDS-TasksForAzTask
msDS-TasksForAzTaskBL
msDS-User-Account-Control-Computed
msDS-UpdateScript
msExchAssistantName
msExchHouseIdentifier
msExchLabeledURI
ownerBL
msFRS-Hub-Member
msFRS-Topology-Pref
msieee80211-Data
msieee80211-DataType
msieee80211-ID
msIIS-FTPDir
msIIS-FTPRoot
msPKI-Cert-Template-OID
msPKI-Certificate-Application-Policy
msPKI-Certificate-Name-Flag
msPKI-Certificate-Policy
msPKI-Enrollment-Flag
msPKI-Minimal-Key-Size
msPKI-OID-Attribute
msPKI-OID-CPS
msPKI-OIDLocalizedName
msPKI-OID-User-Notice
msPKI-Private-Key-Flag
msPKI-Supersede-Templates
msPKI-Template-Minor-Revision
msPKI-Template-Schema-Version
msPKI-RA-Application-Policies
msPKI-RA-Policies
msPKI-RA-Signature
msRRASAttribute
msRRASVendorAttributeEntry
mS-SQL-Name
mS-SQL-RegisteredOwner
mS-SQL-Contact
mS-SQL-Location
mS-SQL-Memory
mS-SQL-Build
mS-SQL-ServiceAccount
mS-SQL-CharacterSet
mS-SQL-SortOrder
mS-SQL-UnicodeSortOrder
mS-SQL-Clustered
mS-SQL-NamedPipe
mS-SQL-MultiProtocol
mS-SQL-SPX
mS-SQL-TCPIP
mS-SQL-AppleTalk
mS-SQL-Vines
mS-SQL-Status
mS-SQL-LastUpdatedDate
mS-SQL-InformationURL
mS-SQL-ConnectionURL
mS-SQL-PublicationURL
mS-SQL-GPSLatitude
mS-SQL-GPSLongitude
mS-SQL-GPSHeight
mS-SQL-Version
mS-SQL-Language
mS-SQL-Description
mS-SQL-Type
mS-SQL-InformationDirectory
mS-SQL-Database
mS-SQL-AllowAnonymousSubscription
mS-SQL-Alias
mS-SQL-Size
mS-SQL-CreationDate
mS-SQL-LastBackupDate
mS-SQL-LastDiagnosticDate
mS-SQL-Applications
mS-SQL-Keywords
mS-SQL-Publisher
mS-SQL-AllowKnownPullSubscription
mS-SQL-AllowImmediateUpdatingSubscription
mS-SQL-AllowQueuedUpdatingSubscription
mS-SQL-AllowSnapshotFilesFTPDownloading
mS-SQL-ThirdParty
msTAPI-ConferenceBlob
msTAPI-IpAddress
msTAPI-ProtocolId
msTAPI-uid
msWMI-Author
msWMI-ChangeDate
msWMI-Class
msWMI-ClassDefinition
msWMI-CreationDate
msWMI-Genus
msWMI-ID
msWMI-IntDefault
msWMI-intFlags1
msWMI-intFlags2
msWMI-intFlags3
msWMI-intFlags4
msWMI-IntMax
msWMI-IntMin
msWMI-IntValidValues
msWMI-Int8Default
msWMI-Int8Max
msWMI-Int8Min
msWMI-Int8ValidValues
msWMI-Mof
msWMI-Name
msWMI-NormalizedClass
msWMI-Parm1
msWMI-Parm2
msWMI-Parm3
msWMI-Parm4
msWMI-PropertyName
msWMI-Query
msWMI-QueryLanguage
msWMI-ScopeGuid
msWMI-SourceOrganization
msWMI-StringDefault
msWMI-StringValidValues
msWMI-TargetClass
msWMI-TargetNameSpace
msWMI-TargetObject
msWMI-TargetPath
msWMI-TargetType
mscopeId
msiFileList
msiScript
msiScriptName
msiScriptPath
msiScriptSize
mSMQAuthenticate
mSMQBasePriority
mSMQComputerType
mSMQComputerTypeEx
mSMQCost
mSMQCSPName
mSMQDependentClientService
mSMQDependentClientServices
mSMQDigests
mSMQDigestsMig
mSMQDsService
mSMQDsServices
mSMQEncryptKey
mSMQForeign
mSMQInRoutingServers
mSMQInterval1
mSMQInterval2
mSMQJournal
mSMQJournalQuota
mSMQLabel
mSMQLabelEx
mSMQLongLived
mSMQMigrated
MSMQ-MulticastAddress
mSMQNameStyle
mSMQNt4Flags
mSMQNt4Stub
mSMQOSType
mSMQOutRoutingServers
mSMQOwnerID
mSMQPrevSiteGates
mSMQPrivacyLevel
mSMQQMID
mSMQQueueJournalQuota
mSMQQueueNameExt
mSMQQueueQuota
mSMQQueueType
mSMQQuota
msMQ-Recipient-FormatName
mSMQRoutingService
mSMQRoutingServices
MSMQ-SecuredSource
mSMQServiceType
mSMQServices
mSMQSignCertificates
mSMQSignCertificatesMig
mSMQSignKey
mSMQSite1
mSMQSite2
mSMQSiteForeign
mSMQSiteGates
mSMQSiteGatesMig
mSMQSiteID
mSMQSiteName
mSMQSiteNameEx
mSMQSites
mSMQTransactional
mSMQUserSid
mSMQVersion
msNPAllowDialin
msNPCalledStationID
msNPCallingStationID
msNPSavedCallingStationID
msRADIUSCallbackNumber
msRADIUSFramedIPAddress
msRADIUSFramedRoute
msRADIUSServiceType
msRASSavedCallbackNumber
msRASSavedFramedIPAddress
msRASSavedFramedRoute
mustContain
nameServiceFlags
nCName
nETBIOSName
netbootAllowNewClients
netbootAnswerOnlyValidClients
netbootAnswerRequests
netbootCurrentClientCount
netbootGUID
netbootInitialization
netbootIntelliMirrorOSes
netbootLimitClients
netbootLocallyInstalledOSes
netbootMachineFilePath
netbootMaxClients
netbootMirrorDataFile
netbootNewMachineNamingPolicy
netbootNewMachineOU
netbootSCPBL
netbootServer
netbootSIFFile
netbootTools
networkAddress
nextLevelStore
nextRid
nonSecurityMember
nonSecurityMemberBL
notificationList
nTGroupMembers
nTMixedDomain
ntPwdHistory
nTSecurityDescriptor
distinguishedName
objectCategory
objectClass
objectClassCategory
objectClasses
objectCount
objectGUID
objectSid
objectVersion
oEMInformation
oMObjectClass
oMSyntax
oMTGuid
oMTIndxGuid
operatingSystem
operatingSystemHotfix
operatingSystemServicePack
operatingSystemVersion
operatorCount
optionDescription
options
optionsLocation
o
ou
organizationalStatus
originalDisplayTable
originalDisplayTableMSDOS
otherLoginWorkstations
otherMailbox
middleName
otherWellKnownObjects
owner
packageFlags
packageName
packageType
parentCA
parentCACertificateChain
parentGUID
partialAttributeDeletionList
partialAttributeSet
pekKeyChangeInterval
pekList
pendingCACertificates
pendingParentCA
perMsgDialogDisplayTable
perRecipDialogDisplayTable
personalTitle
otherFacsimileTelephoneNumber
otherHomePhone
homePhone
otherIpPhone
ipPhone
primaryInternationalISDNNumber
otherMobile
mobile
otherTelephone
otherPager
pager
photo
physicalDeliveryOfficeName
physicalLocationObject
thumbnailPhoto
pKICriticalExtensions
pKIDefaultCSPs
pKIDefaultKeySpec
pKIEnrollmentAccess
pKIExpirationPeriod
pKIExtendedKeyUsage
pKIKeyUsage
pKIMaxIssuingDepth
pKIOverlapPeriod
pKT
pKTGuid
policyReplicationFlags
portName
possSuperiors
possibleInferiors
postOfficeBox
postalAddress
postalCode
preferredDeliveryMethod
preferredLanguage
preferredOU
prefixMap
presentationAddress
previousCACertificates
previousParentCA
primaryGroupID
primaryGroupToken
printAttributes
printBinNames
printCollate
printColor
printDuplexSupported
printEndTime
printFormName
printKeepPrintedJobs
printLanguage
printMACAddress
printMaxCopies
printMaxResolutionSupported
printMaxXExtent
printMaxYExtent
printMediaReady
printMediaSupported
printMemory
printMinXExtent
printMinYExtent
printNetworkAddress
printNotify
printNumberUp
printOrientationsSupported
printOwner
printPagesPerMinute
printRate
printRateUnit
printSeparatorFile
printShareName
printSpooling
printStaplingSupported
printStartTime
printStatus
printerName
priorSetTime
priorValue
priority
privateKey
privilegeAttributes
privilegeDisplayName
privilegeHolder
privilegeValue
productCode
profilePath
proxiedObjectName
proxyAddresses
proxyGenerationEnabled
proxyLifetime
publicKeyPolicy
purportedSearch
pwdHistoryLength
pwdLastSet
pwdProperties
qualityOfService
queryFilter
queryPolicyBL
queryPolicyObject
queryPoint
rangeLower
rangeUpper
name
rDNAttID
registeredAddress
remoteServerName
remoteSource
remoteSourceType
remoteStorageGUID
replPropertyMetaData
replTopologyStayOfExecution
replUpToDateVector
replicaSource
directReports
replInterval
repsFrom
repsTo
requiredCategories
retiredReplDSASignatures
tokenGroups
tokenGroupsGlobalAndUniversal
tokenGroupsNoGCAcceptable
revision
rid
rIDAllocationPool
rIDAvailablePool
rIDManagerReference
rIDNextRID
rIDPreviousAllocationPool
rIDSetReferences
rIDUsedPool
rightsGuid
roleOccupant
roomNumber
rootTrust
rpcNsAnnotation
rpcNsBindings
rpcNsCodeset
rpcNsEntryFlags
rpcNsGroup
rpcNsInterfaceID
rpcNsObjectID
rpcNsPriority
rpcNsProfileEntry
rpcNsTransferSyntax
sAMAccountName
sAMAccountType
schedule
schemaFlagsEx
schemaIDGUID
schemaInfo
schemaUpdate
schemaVersion
scopeFlags
scriptPath
sDRightsEffective
searchFlags
searchGuide
secretary
securityIdentifier
seeAlso
seqNotification
serialNumber
serverName
serverReference
serverReferenceBL
serverRole
serverState
serviceBindingInformation
serviceClassID
serviceClassInfo
serviceClassName
serviceDNSName
serviceDNSNameType
serviceInstanceVersion
servicePrincipalName
setupCommand
shellContextMenu
shellPropertyPages
shortServerName
showInAddressBook
showInAdvancedViewOnly
sIDHistory
signatureAlgorithms
siteGUID
siteLinkList
siteList
siteObject
siteObjectBL
siteServer
mailAddress
sPNMappings
st
street
structuralObjectClass
subClassOf
subRefs
subSchemaSubEntry
superScopeDescription
superScopes
superiorDNSRoot
supplementalCredentials
supportedApplicationContext
sn
syncAttributes
syncMembership
syncWithObject
syncWithSID
systemAuxiliaryClass
systemFlags
systemMayContain
systemMustContain
systemOnly
systemPossSuperiors
telephoneNumber
teletexTerminalIdentifier
telexNumber
primaryTelexNumber
templateRoots
terminalServer
co
textEncodedORAddress
timeRefresh
timeVolChange
title
tombstoneLifetime
transportAddressAttribute
transportDLLName
transportType
treatAsLeaf
treeName
trustAttributes
trustAuthIncoming
trustAuthOutgoing
trustDirection
trustParent
trustPartner
trustPosixOffset
trustType
uASCompat
uid
uNCName
unicodePwd
uniqueIdentifier
uniqueMember
unstructuredAddress
unstructuredName
upgradeProductCode
uPNSuffixes
userAccountControl
userCert
comment
userParameters
userPassword
userClass
userPKCS12
userPrincipalName
userSharedFolder
userSharedFolderOther
userSMIMECertificate
userWorkstations
uSNChanged
uSNCreated
uSNDSALastObjRemoved
USNIntersite
uSNLastObjRem
uSNSource
validAccesses
vendor
versionNumber
versionNumberHi
versionNumberLo
volTableGUID
volTableIdxGUID
volumeCount
wbemPath
wellKnownObjects
whenChanged
whenCreated
winsockAddresses
wWWHomePage
url
x121Address
x500uniqueIdentifier
userCertificate
pcaHostEntry



Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish