Classes
dp-User-Secret
This class represents the user Secret object that stores the secure application data (i.e. encryption keys) for the user.
| Class property | Value | Description |
|---|---|---|
|
adminDisplayName |
dp-User-Secret |
Display name of this object for use in directory service administrative tools. |
|
adminDescription |
dp-User-Secret |
Description of this object for use in directory service administrative tools. |
|
cn |
dp-User-Secret |
Common name. |
|
iDAPDisplayName |
dpUserSecret |
The name used by LDAP clients to refer to the object's class. |
|
objectClass |
ClassSchema |
The class of which this object is an instance. |
|
objectCategory |
ClassSchema |
Reference to an object class or one of its superclasses, which is used when searching for this object. |
|
objectClassCategory |
1 |
1 means structural classes. 2 means abstract classes. 3 means auxiliary classes. |
|
defaultObjectCategory |
dp-User-Secret |
Object-Category used in queries for objects of this class. |
|
rDNAttID |
cn |
Attribute name used as the Relative Distinguished Name (RDN) for this class. |
|
subClassOf |
Top |
Immediate superclass of this class. |
|
systemAuxiliaryClass |
|
Auxiliary classes that this class inherits from. |
|
governsID |
1.2.840.113556.1.8000.651.5 |
A unique OID identifying the class. |
|
schemaIDGUID |
|
A GUID that uniquely identifies this object. You can use this string value in an ACE to control access to objects of this object. |
|
defaultSecurityDescriptor |
D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA) (A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY) (A;;RPLCLORC;;;AU) S:(AU;SAFA;WDWOSDDTWPCRCCDCSW;;;WD) |
The default security descriptor for new instances of this class. |
|
defaultHidingValue |
TRUE |
TRUE means that new object instances are hidden in the Administrative snap-ins and the Windows shell. FALSE covers all other situations. |
|
showInAdvancedViewOnly |
TRUE |
TRUE means that the object will appear in the Advanced View of the Users and Computers snap-in only, but not in the Windows shell. FALSE means that the object will appear in Normal view of the Users and Computers snap-in and the Windows shell. |
|
systemPossSuperiors |
User |
Structural classes that can be containers of instances of this class. For the complete set of classes that can contain this class, you must include, in addition to any values shown on the left, those inherited from its superclasses as listed in the subClassOf attribute above. |
|
systemOnly |
FALSE |
TRUE means that only Active Directory can modify the class of this object. FALSE means users can make the modification as well. |
|
systemMustContain |
|
Mandatory attributes that MUST be present on instances of this class. For the complete set of mandatory attributes for this class, you must, in addition to any values shown on the left, include those inherited from its superclasses as listed in the subClassOf attribute above and/or those derived from any of its auxiliary classes as specified in the systemAuxiliary attribute above and as inherited from its superclasses. |
|
systemMayContain |
dpUserPrivateData dpUserDataType |
Optional attributes that may be present on instances of this class. For the complete set of optional attributes for this class, you must include, in addition to any values shown on the left, those inherited from its superclasses as listed in the subClassOf attribute above and/or those derived from any of its auxiliary classes as specified in the systemAuxiliary attribute above and as inherited from its superclasses. |
dp-Authentication-Servers-Container
Container for Authentication Server objects.
| Class property | Value | Description |
|---|---|---|
|
adminDisplayName |
dp-Authentication-Servers-Container |
Display name of this object for use in directory service administrative tools. |
|
adminDescription |
dp-Authentication-Servers-Container |
Description of this object for use in directory service administrative tools. |
|
cn |
dp-Authentication-Servers-Container |
Common name. |
|
lDAPDisplayName |
dpAuthenticationServersContainer |
The name used by LDAP clients to refer to the object's class. |
|
objectClass |
ClassSchema |
The class of which this object is an instance. |
|
objectCategory |
ClassSchema |
Reference to an object class or one of its superclasses, which is used when searching for this object. |
|
objectClassCategory |
1 |
1 means structural classes. 2 means abstract classes. 3 means auxiliary classes. |
|
defaultObjectCategory |
dp-Authentication-Servers-Container |
Object-Category used in queries for objects of this class. |
|
rDNAttID |
cn |
Attribute name used as the Relative Distinguished Name (RDN) for this class. |
|
subClassOf |
Container |
Immediate superclass of this class. |
|
systemAuxiliaryClass |
|
Auxiliary classes that this class inherits from. |
|
governsID |
1.2.840.113556.1.8000.651.11 |
A unique OID identifying the class. |
|
schemaIDGUID |
|
A GUID that uniquely identifies this object. You can use this string value in an ACE to control access to objects of this object. |
|
defaultSecurityDescriptor |
D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY) (A;;CCDCLC;;;DA) (A;;CCDCLC;;;EA) (A;;CCDCLC;;;BA) (A;CIIO;RPWPCRCCDCLCLORCWOWDSDDTSW;;;BA) (OA;;RP;BF9679E5-0DE6-11D0-A285-00AA003049E2;;AU) (OA;;RP;26D97369-6070-11D1-A9C6-0000F80367C1;;AU) (A;;LC;;;AU) |
The default security descriptor for new instances of this class. |
|
defaultHidingValue |
TRUE |
TRUE means that new object instances are hidden in the Administrative snap-ins and the Windows shell. FALSE covers all other situations. |
|
showInAdvancedViewOnly |
TRUE |
TRUE means that the object will appear in the Advanced View of the Users and Computers snap-in only, but not in the Windows shell. FALSE means that the object will appear in Normal view of the Users and Computers snap-in and the Windows shell. |
|
systemPossSuperiors |
Container |
Structural classes that can be containers of instances of this class. For the complete set of classes that can contain this class, you must include, in addition to any values shown on the left, those inherited from its superclasses as listed in the subClassOf attribute above. |
|
systemOnly |
FALSE |
TRUE means that only Active Directory can modify the class of this object. FALSE means users can make the modification as well. |
|
systemMustContain |
|
Mandatory attributes that MUST be present on instances of this class. For the complete set of mandatory attributes for this class, you must, in addition to any values shown on the left, include those inherited from its superclasses as listed in the subClassOf attribute above and/or those derived from any of its auxiliary classes as specified in the systemAuxiliary attribute above and as inherited from its superclasses. |
|
systemMayContain |
dpServersData dpServersConfiguration userCertificate |
Optional attributes that may be present on instances of this class. For the complete set of optional attributes for this class, you must include, in addition to any values shown on the left, those inherited from its superclasses as listed in the subClassOf attribute above and/or those derived from any of its auxiliary classes as specified in the systemAuxiliary attribute above and as inherited from its superclasses. |
dp-Service-Configuration
Class that represents global configuration information (i.e. schema version, license).
| Class property | Value | Description |
|---|---|---|
|
adminDisplayName |
dp-Service-Configuration |
Display name of this object for use in directory service administrative tools. |
|
adminDescription |
dp-Service-Configuration |
Description of this object for use in directory service administrative tools. |
|
cn |
dp-Service-Configuration |
Common name. |
|
lDAPDisplayName |
dpServiceConfiguration |
The name used by LDAP clients to refer to the object's class. |
|
objectClass |
ClassSchema |
The class of which this object is an instance. |
|
objectCategory |
ClassSchema |
Reference to an object class or one of its superclasses, which is used when searching for this object. |
|
objectClassCategory |
1 |
1 means structural classes. 2 means abstract classes. 3 means auxiliary classes. |
|
defaultObjectCategory |
dp-Service-Configuration |
Object-Category used in queries for objects of this class. |
|
rDNAttID |
cn |
Attribute name used as the Relative Distinguished Name (RDN) for this class. |
|
subClassOf |
Top |
Immediate superclass of this class. |
|
systemAuxiliaryClass |
|
Auxiliary classes that this class inherits from. |
|
governsID |
1.2.840.113556.1.8000.651.12 |
A unique OID identifying the class. |
|
schemaIDGUID |
|
A GUID that uniquely identifies this object. You can use this string value in an ACE to control access to objects of this object. |
|
defaultSecurityDescriptor |
D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA) (A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY) (A;;RPLCLORC;;;AU) S:(AU;SAFA;WDWOSDDTWPCRCCDCSW;;;WD) |
The default security descriptor for new instances of this class. |
|
defaultHidingValue |
TRUE |
TRUE means that new object instances are hidden in the Administrative snap-ins and the Windows shell. FALSE covers all other situations. |
|
showInAdvancedViewOnly |
TRUE |
TRUE means that the object will appear in the Advanced View of the Users and Computers snap-in only, but not in the Windows shell. FALSE means that the object will appear in Normal view of the Users and Computers snap-in and the Windows shell. |
|
systemPossSuperiors |
Container |
Structural classes that can be containers of instances of this class. For the complete set of classes that can contain this class, you must include, in addition to any values shown on the left, those inherited from its superclasses as listed in the subClassOf attribute above. |
|
systemOnly |
FALSE |
TRUE means that only Active Directory can modify the class of this object. FALSE means users can make the modification as well. |
|
systemMustContain |
|
Mandatory attributes that MUST be present on instances of this class. For the complete set of mandatory attributes for this class, you must, in addition to any values shown on the left, include those inherited from its superclasses as listed in the subClassOf attribute above and/or those derived from any of its auxiliary classes as specified in the systemAuxiliary attribute above and as inherited from its superclasses. |
|
systemMayContain |
AppSchemaVersion dpLicense |
Optional attributes that may be present on instances of this class. For the complete set of optional attributes for this class, you must include, in addition to any values shown on the left, those inherited from its superclasses as listed in the subClassOf attribute above and/or those derived from any of its auxiliary classes as specified in the systemAuxiliary attribute above and as inherited from its superclasses. |
dp-Authentication-Service-Connection-Point
This class represents the Authentication Server. It provides information about Authentication Server (i.e. version, service principal name, binding information).
| Class property | Value | Description |
|---|---|---|
|
adminDisplayName |
dp-Authentication-Service-Connection-Point |
Display name of this object for use in directory service administrative tools. |
|
adminDescription |
dp-Authentication-Service-Connection-Point |
Description of this object for use in directory service administrative tools. |
|
cn |
dp-Authentication-Service-Connection-Point |
Common name. |
|
lDAPDisplayName |
dpauthenticationServiceConnectionPoint |
The name used by LDAP clients to refer to the object's class. |
|
objectClass |
ClassSchema |
The class of which this object is an instance. |
|
objectCategory |
ClassSchema |
Reference to an object class or one of its superclasses, which is used when searching for this object. |
|
objectClassCategory |
1 |
1 means structural classes. 2 means abstract classes. 3 means auxiliary classes. |
|
defaultObjectCategory |
dp-Authentication-Service-Connection-Point |
Object-Category used in queries for objects of this class. |
|
rDNAttID |
cn |
Attribute name used as the Relative Distinguished Name (RDN) for this class. |
|
subClassOf |
ServiceConnectionPoint |
Immediate superclass of this class. |
|
systemAuxiliaryClass |
|
Auxiliary classes that this class inherits from. |
|
governsID |
1.2.840.113556.1.8000.651.13 |
A unique OID identifying the class. |
|
schemaIDGUID |
|
A GUID that uniquely identifies this object. You can use this string value in an ACE to control access to objects of this object. |
|
defaultSecurityDescriptor |
D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA) (A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY) (A;;RPLCLORC;;;AU) S:(AU;SAFA;WDWOSDDTWPCRCCDCSW;;;WD) |
The default security descriptor for new instances of this class. |
|
defaultHidingValue |
TRUE |
TRUE means that new object instances are hidden in the Administrative snap-ins and the Windows shell. FALSE covers all other situations. |
|
showInAdvancedViewOnly |
TRUE |
TRUE means that the object will appear in the Advanced View of the Users and Computers snap-in only, but not in the Windows shell. FALSE means that the object will appear in Normal view of the Users and Computers snap-in and the Windows shell. |
|
systemPossSuperiors |
Container |
Structural classes that can be containers of instances of this class. For the complete set of classes that can contain this class, you must include, in addition to any values shown on the left, those inherited from its superclasses as listed in the subClassOf attribute above. |
|
systemOnly |
FALSE |
TRUE means that only Active Directory can modify the class of this object. FALSE means users can make the modification as well. |
|
systemMustContain |
|
Mandatory attributes that MUST be present on instances of this class. For the complete set of mandatory attributes for this class, you must, in addition to any values shown on the left, include those inherited from its superclasses as listed in the subClassOf attribute above and/or those derived from any of its auxiliary classes as specified in the systemAuxiliary attribute above and as inherited from its superclasses. |
|
systemMayContain |
AppSchemaVersion MarshalledInterface Vendor VersionNumber VersionNumberHi VersionNumberLo |
Optional attributes that may be present on instances of this class. For the complete set of optional attributes for this class, you must include, in addition to any values shown on the left, those inherited from its superclasses as listed in the subClassOf attribute above and/or those derived from any of its auxiliary classes as specified in the systemAuxiliary attribute above and as inherited from its superclasses. |
dp-OTP-Token
Class that represents the hardware Time-based OTP token.
| Class property | Value | Description |
|---|---|---|
|
adminDisplayName |
dp-OTP-Token |
Display name of this object for use in directory service administrative tools. |
|
adminDescription |
dp-OTP-Token |
Description of this object for use in directory service administrative tools. |
|
cn |
dp-OTP-Token |
Common name. |
|
lDAPDisplayName |
dpOTPToken |
The name used by LDAP clients to refer to the object's class. |
|
objectClass |
ClassSchema |
The class of which this object is an instance. |
|
objectCategory |
ClassSchema |
Reference to an object class or one of its superclasses, which is used when searching for this object. |
|
objectClassCategory |
1 |
1 means structural classes. 2 means abstract classes. 3 means auxiliary classes. |
|
defaultObjectCategory |
dp-OTP-Token |
Object-Category used in queries for objects of this class. |
|
rDNAttID |
cn |
Attribute name used as the Relative Distinguished Name (RDN) for this class. |
|
subClassOf |
device |
Immediate superclass of this class. |
|
systemAuxiliaryClass |
|
Auxiliary classes that this class inherits from. |
|
governsID |
1.2.840.113556.1.8000.651.034 |
A unique OID identifying the class. |
|
schemaIDGUID |
YWQM2TgaD0OrjtJX3lL4vg== |
A GUID that uniquely identifies this object. You can use this string value in an ACE to control access to objects of this object. |
|
defaultSecurityDescriptor |
D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY) (A;;RPLCLORC;;;AU)S:(AU;SAFA;WDWOSDDTWPCRCCDCSW;;;WD) |
The default security descriptor for new instances of this class. |
|
defaultHidingValue |
TRUE |
TRUE means that new object instances are hidden in the Administrative snap-ins and the Windows shell. FALSE covers all other situations. |
|
showInAdvancedViewOnly |
TRUE |
TRUE means that the object will appear in the Advanced View of the Users and Computers snap-in only, but not in the Windows shell. FALSE means that the object will appear in Normal view of the Users and Computers snap-in and the Windows shell. |
|
systemPossSuperiors |
Container |
Structural classes that can be containers of instances of this class. For the complete set of classes that can contain this class, you must include, in addition to any values shown on the left, those inherited from its superclasses as listed in the subClassOf attribute above. |
|
systemOnly |
FALSE |
TRUE means that only Active Directory can modify the class of this object. FALSE means users can make the modification as well. |
|
systemMustContain |
|
Mandatory attributes that MUST be present on instances of this class. For the complete set of mandatory attributes for this class, you must, in addition to any values shown on the left, include those inherited from its superclasses as listed in the subClassOf attribute above and/or those derived from any of its auxiliary classes as specified in the systemAuxiliary attribute above and as inherited from its superclasses. |
|
systemMayContain |
dpOTPKey dpOTPLength dpOTPTimeInterval |
Optional attributes that may be present on instances of this class. For the complete set of optional attributes for this class, you must include, in addition to any values shown on the left, those inherited from its superclasses as listed in the subClassOf attribute above and/or those derived from any of its auxiliary classes as specified in the systemAuxiliary attribute above and as inherited from its superclasses. |
Standard Classes Extensions
User Class:
mayContain: dp-User-Credentials-Data, dp-User-Account-Control.
