Export (0) Print
Expand All
Collapse the table of content
Expand the table of content
Expand Minimize

2.45 Attribute objectSid

This attribute specifies a binary value that specifies the security identifier (SID) of a security principal object. The SID is a unique value used to identify security principal objects. For more information on the SID data type, refer to [MS-DTYP] section 2.4.2. SID usage is also discussed in [MS-ADTS], in particular in section 3.1.1.1.3.

Because this is an attribute of String(SID) syntax, an application writing to this attribute via the LDAP protocol can specify a value for this attribute as a valid SDDL SID string, as specified in [MS-ADTS] section 3.1.1.3.1.2.5. The directory service will convert that value to its binary value equivalent.

 cn: Object-Sid
 ldapDisplayName: objectSid
 attributeId: 1.2.840.113556.1.4.146
 attributeSyntax: 2.5.5.17
 omSyntax: 4
 isSingleValued: TRUE
 schemaIdGuid: bf9679e8-0de6-11d0-a285-00aa003049e2
 systemOnly: TRUE
 searchFlags: fPRESERVEONDELETE | fATTINDEX
 rangeLower: 0
 rangeUpper: 28
 attributeSecurityGuid: 59ba2f42-79a2-11d0-9020-00c04fc2d3cf
 mapiID: 32807
 isMemberOfPartialAttributeSet: TRUE
 systemFlags: FLAG_SCHEMA_BASE_OBJECT | 
  FLAG_ATTR_REQ_PARTIAL_SET_MEMBER
 schemaFlagsEx: FLAG_ATTR_IS_CRITICAL

Version-Specific Behavior: Implemented on Windows 2000 Server operating system, Windows Server 2003 operating system, Windows Server 2003 R2 operating system, Windows Server 2008 operating system, Windows Server 2008 R2 operating system, Windows Server 2012 operating system, Windows Server 2012 R2 operating system, and Windows Server 2016 operating system.

In Windows 2000 Server, the following attributes are defined differently:

 systemOnly: FALSE

The schemaFlagsEx attribute was added to this attribute definition in Windows Server 2008.

Show:
© 2016 Microsoft