3.1.5.2 LDAP Client Implementing Extension Bundle A Imports from AD DS or AD LDS

The task for an LDAP client implementing extension bundle A to import directory entries from AD DS or AD LDS comprises the following sequence of protocol exchanges:

• The LDAP client submits one or more Search requests to the directory server (AD DS or AD LDS). Each search request can be either a search request to retrieve results in bulk, or a search request to retrieve change history.

The Search requests have the following characteristics:

• The Search requests to retrieve results in bulk contain the paged search control, described in section 2.2.3 of this document.

• The Search requests to retrieve change history contain the DirSync control described in section 2.2.6 of this document.

• The Search requests contain the show deleted control, described in section 2.2.7 of this document, and the extended distinguished name (DN) (2) control, described in section 2.2.8 of this document.

• Search requests specify the following operational attributes to be returned, if present: objectGUID (specified in [MS-ADTS] section 3.1.1.1.3), whenCreated, and proxiedObjectName (specified in [MS-ADTS] section 3.1.1.5.4.2.3).