User class
This class is used to store information about an employee or contractor who works for an organization. It is also possible to apply this class to long term visitors.
| Entry | Value |
|---|---|
| CN | User |
| Ldap-Display-Name | user |
| Update Privilege | Domain administrator or account owner. |
| Update Frequency | This record will be updated each time a new person joins or leaves the company. |
| Schema-Id-Guid | bf967aba-0de6-11d0-a285-00aa003049e2 |
Implementations
- Windows 2000 Server
- Windows Server 2003
- Windows Server 2003 R2
- Windows Server 2008
- Windows Server 2008 R2
- Windows Server 2012
Windows 2000 Server
| Entry | Value |
|---|---|
| System-Only | False |
| Object-Category | 1 |
| Default-Object-Category | Person |
| Governs-Id | 1.2.840.113556.1.5.9 |
| Default-Hiding-Value | 0 |
| Rdn-Att-Id | Common-Name |
| Subclass of | Organizational-Person |
| Possible Superiors | Domain-DNSOrganizational-UnitBuiltin-Domain |
| Auxiliary Classes | Mail-Recipient (System)Security-Principal (System) |
| NT-Security-Descriptor | O:BAG:BAD:S: |
| Default Security Descriptor | D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;AO)(A;;RPLCLORC;;;PS)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a54-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a56-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;RPWP;77B5B886-944A-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B2-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B3-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RP;037088f8-0ae1-11d2-b422-00a0c968f939;;RS)(OA;;RP;4c164200-20c0-11d0-a768-00aa006e0529;;RS)(OA;;RP;bc0ac240-79a9-11d0-9020-00c04fc2d4cf;;RS)(A;;RC;;;AU)(OA;;RP;59ba2f42-79a2-11d0-9020-00c04fc2d3cf;;AU)(OA;;RP;77B5B886-944A-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;E45795B3-9455-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;e48d0154-bcf8-11d1-8702-00c04fb96050;;AU)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;WD)(OA;;RP;5f202010-79a5-11d0-9020-00c04fc2d4cf;;RS)(OA;;RPWP;bf967a7f-0de6-11d0-a285-00aa003049e2;;CA) |
| System-Flags | 0x00000010 |
Windows 2000 Server Attributes
This class contains the following attributes for Windows 2000 Server:
Windows 2000 Server Extended Rights
This class contains the following extended rights for Windows 2000 Server:
| Common Name |
|---|
| User-Change-Password |
| User-Force-Change-Password |
| Send-As |
| Receive-As |
Windows 2000 Server Property Sets
This class contains the following property sets for Windows 2000 Server:
| Common Name |
|---|
| General-Information |
| User-Account-Restrictions |
| User-Logon |
| Membership |
| Personal-Information |
| Email-Information |
| Web-Information |
| Public-Information |
| RAS-Information |
Windows Server 2003
| Entry | Value |
|---|---|
| System-Only | False |
| Object-Category | 1 |
| Default-Object-Category | Person |
| Governs-Id | 1.2.840.113556.1.5.9 |
| Default-Hiding-Value | 0 |
| Rdn-Att-Id | Common-Name |
| Subclass of | Organizational-Person |
| Possible Superiors | Domain-DNSOrganizational-UnitBuiltin-Domain |
| Auxiliary Classes | Mail-Recipient (System)Security-Principal (System) |
| NT-Security-Descriptor | O:BAG:BAD:S: |
| Default Security Descriptor | D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;AO)(A;;RPLCLORC;;;PS)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a54-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a56-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;RPWP;77B5B886-944A-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B2-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B3-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RP;037088f8-0ae1-11d2-b422-00a0c968f939;;RS)(OA;;RP;4c164200-20c0-11d0-a768-00aa006e0529;;RS)(OA;;RP;bc0ac240-79a9-11d0-9020-00c04fc2d4cf;;RS)(A;;RC;;;AU)(OA;;RP;59ba2f42-79a2-11d0-9020-00c04fc2d3cf;;AU)(OA;;RP;77B5B886-944A-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;E45795B3-9455-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;e48d0154-bcf8-11d1-8702-00c04fb96050;;AU)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;WD)(OA;;RP;5f202010-79a5-11d0-9020-00c04fc2d4cf;;RS)(OA;;RPWP;bf967a7f-0de6-11d0-a285-00aa003049e2;;CA)(OA;;RP;46a9b11d-60ae-405a-b7e8-ff8a58d456d2;;S-1-5-32-560)(OA;;WPRP;6db69a1c-9422-11d1-aebd-0000f80367c1;;S-1-5-32-561) |
| System-Flags | 0x00000010 |
Windows Server 2003 Attributes
This class contains the following attributes for Windows Server 2003:
Windows Server 2003 Extended Rights
This class contains the following extended rights for Windows Server 2003:
| Common Name |
|---|
| User-Change-Password |
| User-Force-Change-Password |
| Send-As |
| Receive-As |
| Allowed-To-Authenticate |
Windows Server 2003 Property Sets
This class contains the following property sets for Windows Server 2003:
| Common Name |
|---|
| General-Information |
| User-Account-Restrictions |
| User-Logon |
| Membership |
| Personal-Information |
| Email-Information |
| Web-Information |
| Public-Information |
| RAS-Information |
Windows Server 2003 R2
| Entry | Value |
|---|---|
| System-Only | False |
| Object-Category | 1 |
| Default-Object-Category | Person |
| Governs-Id | 1.2.840.113556.1.5.9 |
| Default-Hiding-Value | 0 |
| Rdn-Att-Id | Common-Name |
| Subclass of | Organizational-Person |
| Possible Superiors | Domain-DNSOrganizational-UnitBuiltin-Domain |
| Auxiliary Classes | posixAccountshadowAccountMail-Recipient (System)Security-Principal (System) |
| NT-Security-Descriptor | O:BAG:BAD:S: |
| Default Security Descriptor | D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;AO)(A;;RPLCLORC;;;PS)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a54-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a56-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;RPWP;77B5B886-944A-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B2-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B3-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RP;037088f8-0ae1-11d2-b422-00a0c968f939;;RS)(OA;;RP;4c164200-20c0-11d0-a768-00aa006e0529;;RS)(OA;;RP;bc0ac240-79a9-11d0-9020-00c04fc2d4cf;;RS)(A;;RC;;;AU)(OA;;RP;59ba2f42-79a2-11d0-9020-00c04fc2d3cf;;AU)(OA;;RP;77B5B886-944A-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;E45795B3-9455-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;e48d0154-bcf8-11d1-8702-00c04fb96050;;AU)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;WD)(OA;;RP;5f202010-79a5-11d0-9020-00c04fc2d4cf;;RS)(OA;;RPWP;bf967a7f-0de6-11d0-a285-00aa003049e2;;CA)(OA;;RP;46a9b11d-60ae-405a-b7e8-ff8a58d456d2;;S-1-5-32-560)(OA;;WPRP;6db69a1c-9422-11d1-aebd-0000f80367c1;;S-1-5-32-561) |
| System-Flags | 0x00000010 |
Windows Server 2003 R2 Attributes
This class contains the following attributes for Windows Server 2003 R2:
Windows Server 2003 R2 Extended Rights
This class contains the following extended rights for Windows Server 2003 R2:
| Common Name |
|---|
| User-Change-Password |
| User-Force-Change-Password |
| Send-As |
| Receive-As |
| Allowed-To-Authenticate |
Windows Server 2003 R2 Property Sets
This class contains the following property sets for Windows Server 2003 R2:
| Common Name |
|---|
| General-Information |
| User-Account-Restrictions |
| User-Logon |
| Membership |
| Personal-Information |
| Email-Information |
| Web-Information |
| Public-Information |
| RAS-Information |
Windows Server 2008
| Entry | Value |
|---|---|
| System-Only | False |
| Object-Category | 1 |
| Default-Object-Category | Person |
| Governs-Id | 1.2.840.113556.1.5.9 |
| Default-Hiding-Value | 0 |
| Rdn-Att-Id | Common-Name |
| Subclass of | Organizational-Person |
| Possible Superiors | Domain-DNSOrganizational-UnitBuiltin-Domain |
| Auxiliary Classes | posixAccountshadowAccountMail-Recipient (System)Security-Principal (System) |
| NT-Security-Descriptor | O:BAG:BAD:S: |
| Default Security Descriptor | D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;AO)(A;;RPLCLORC;;;PS)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a54-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a56-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;RPWP;77B5B886-944A-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B2-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B3-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RP;037088f8-0ae1-11d2-b422-00a0c968f939;;RS)(OA;;RP;4c164200-20c0-11d0-a768-00aa006e0529;;RS)(OA;;RP;bc0ac240-79a9-11d0-9020-00c04fc2d4cf;;RS)(A;;RC;;;AU)(OA;;RP;59ba2f42-79a2-11d0-9020-00c04fc2d3cf;;AU)(OA;;RP;77B5B886-944A-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;E45795B3-9455-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;e48d0154-bcf8-11d1-8702-00c04fb96050;;AU)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;WD)(OA;;RP;5f202010-79a5-11d0-9020-00c04fc2d4cf;;RS)(OA;;RPWP;bf967a7f-0de6-11d0-a285-00aa003049e2;;CA)(OA;;RP;46a9b11d-60ae-405a-b7e8-ff8a58d456d2;;S-1-5-32-560)(OA;;WPRP;6db69a1c-9422-11d1-aebd-0000f80367c1;;S-1-5-32-561)(OA;;WPRP;5805bc62-bdc9-4428-a5e2-856a0f4c185e;;S-1-5-32-561) |
| System-Flags | 0x00000010 |
Windows Server 2008 Attributes
This class contains the following attributes for Windows Server 2008:
Windows Server 2008 Extended Rights
This class contains the following extended rights for Windows Server 2008:
| Common Name |
|---|
| User-Change-Password |
| User-Force-Change-Password |
| Send-As |
| Receive-As |
| Allowed-To-Authenticate |
Windows Server 2008 Property Sets
This class contains the following property sets for Windows Server 2008:
Windows Server 2008 R2
| Entry | Value |
|---|---|
| System-Only | False |
| Object-Category | 1 |
| Default-Object-Category | Person |
| Governs-Id | 1.2.840.113556.1.5.9 |
| Default-Hiding-Value | 0 |
| Rdn-Att-Id | Common-Name |
| Subclass of | Organizational-Person |
| Possible Superiors | Domain-DNSOrganizational-UnitBuiltin-Domain |
| Auxiliary Classes | posixAccountshadowAccountMail-Recipient (System)Security-Principal (System) |
| NT-Security-Descriptor | O:BAG:BAD:S: |
| Default Security Descriptor | D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;AO)(A;;RPLCLORC;;;PS)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a54-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a56-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;RPWP;77B5B886-944A-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B2-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B3-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RP;037088f8-0ae1-11d2-b422-00a0c968f939;;RS)(OA;;RP;4c164200-20c0-11d0-a768-00aa006e0529;;RS)(OA;;RP;bc0ac240-79a9-11d0-9020-00c04fc2d4cf;;RS)(A;;RC;;;AU)(OA;;RP;59ba2f42-79a2-11d0-9020-00c04fc2d3cf;;AU)(OA;;RP;77B5B886-944A-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;E45795B3-9455-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;e48d0154-bcf8-11d1-8702-00c04fb96050;;AU)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;WD)(OA;;RP;5f202010-79a5-11d0-9020-00c04fc2d4cf;;RS)(OA;;RPWP;bf967a7f-0de6-11d0-a285-00aa003049e2;;CA)(OA;;RP;46a9b11d-60ae-405a-b7e8-ff8a58d456d2;;S-1-5-32-560)(OA;;WPRP;6db69a1c-9422-11d1-aebd-0000f80367c1;;S-1-5-32-561)(OA;;WPRP;5805bc62-bdc9-4428-a5e2-856a0f4c185e;;S-1-5-32-561) |
| System-Flags | 0x00000010 |
Windows Server 2008 R2 Attributes
This class contains the following attributes for Windows Server 2008 R2:
Windows Server 2008 R2 Extended Rights
This class contains the following extended rights for Windows Server 2008 R2:
| Common Name |
|---|
| User-Change-Password |
| User-Force-Change-Password |
| Send-As |
| Receive-As |
| Allowed-To-Authenticate |
Windows Server 2008 R2 Property Sets
This class contains the following property sets for Windows Server 2008 R2:
Windows Server 2012
| Entry | Value |
|---|---|
| System-Only | False |
| Object-Category | 1 |
| Default-Object-Category | Person |
| Governs-Id | 1.2.840.113556.1.5.9 |
| Default-Hiding-Value | 0 |
| Rdn-Att-Id | Common-Name |
| Subclass of | Organizational-Person |
| Possible Superiors | Domain-DNSOrganizational-UnitBuiltin-Domain |
| Auxiliary Classes | posixAccountshadowAccountMail-Recipient (System)Security-Principal (System) |
| NT-Security-Descriptor | O:BAG:BAD:S: |
| Default Security Descriptor | D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;AO)(A;;RPLCLORC;;;PS)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a54-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;CR;ab721a56-1e2f-11d0-9819-00aa0040529b;;PS)(OA;;RPWP;77B5B886-944A-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B2-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RPWP;E45795B3-9455-11d1-AEBD-0000F80367C1;;PS)(OA;;RP;037088f8-0ae1-11d2-b422-00a0c968f939;;RS)(OA;;RP;4c164200-20c0-11d0-a768-00aa006e0529;;RS)(OA;;RP;bc0ac240-79a9-11d0-9020-00c04fc2d4cf;;RS)(A;;RC;;;AU)(OA;;RP;59ba2f42-79a2-11d0-9020-00c04fc2d3cf;;AU)(OA;;RP;77B5B886-944A-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;E45795B3-9455-11d1-AEBD-0000F80367C1;;AU)(OA;;RP;e48d0154-bcf8-11d1-8702-00c04fb96050;;AU)(OA;;CR;ab721a53-1e2f-11d0-9819-00aa0040529b;;WD)(OA;;RP;5f202010-79a5-11d0-9020-00c04fc2d4cf;;RS)(OA;;RPWP;bf967a7f-0de6-11d0-a285-00aa003049e2;;CA)(OA;;RP;46a9b11d-60ae-405a-b7e8-ff8a58d456d2;;S-1-5-32-560)(OA;;WPRP;6db69a1c-9422-11d1-aebd-0000f80367c1;;S-1-5-32-561)(OA;;WPRP;5805bc62-bdc9-4428-a5e2-856a0f4c185e;;S-1-5-32-561) |
| System-Flags | 0x00000010 |
Windows Server 2012 Attributes
This class contains the following attributes for Windows Server 2012:
Windows Server 2012 Extended Rights
This class contains the following extended rights for Windows Server 2012:
| Common Name |
|---|
| User-Change-Password |
| User-Force-Change-Password |
| Send-As |
| Receive-As |
| Allowed-To-Authenticate |
Windows Server 2012 Property Sets
This class contains the following property sets for Windows Server 2012: