AD开发中OU组织机构的属性、 Group的属性
2011-12-30 11:04
274 查看
属性的含义: 属性名:objectClass,属性值: top
属性的含义: 属性名:objectClass,属性值: organizationalUnit
属性的含义: 属性名:ou,属性值: 电力系统设计部
属性的含义: 属性名:distinguishedName,属性值: OU=电力系统设计部,OU=勘察设计研究院,DC=zdrmoss,DC=com
属性的含义: 属性名:instanceType,属性值: 4
属性的含义: 属性名:whenCreated,属性值: 2008-11-23 4:29:39
属性的含义: 属性名:whenChanged,属性值: 2008-11-23 4:29:39
属性的含义: 属性名:uSNCreated,属性值: System.__ComObject
属性的含义: 属性名:uSNChanged,属性值: System.__ComObject
属性的含义: 属性名:name,属性值: 电力系统设计部
属性的含义: 属性名:objectGUID,属性值: System.Byte[]
属性的含义: 属性名:objectCategory,属性值: CN=Organizational-Unit,CN=Schema,CN=Configuration,DC=zdrmoss,DC=com
属性的含义: 属性名:nTSecurityDescriptor,属性值: System.__ComObject
Group的属性
1、cn
属性的含义: 属性名:objectClass,属性值: organizationalUnit
属性的含义: 属性名:ou,属性值: 电力系统设计部
属性的含义: 属性名:distinguishedName,属性值: OU=电力系统设计部,OU=勘察设计研究院,DC=zdrmoss,DC=com
属性的含义: 属性名:instanceType,属性值: 4
属性的含义: 属性名:whenCreated,属性值: 2008-11-23 4:29:39
属性的含义: 属性名:whenChanged,属性值: 2008-11-23 4:29:39
属性的含义: 属性名:uSNCreated,属性值: System.__ComObject
属性的含义: 属性名:uSNChanged,属性值: System.__ComObject
属性的含义: 属性名:name,属性值: 电力系统设计部
属性的含义: 属性名:objectGUID,属性值: System.Byte[]
属性的含义: 属性名:objectCategory,属性值: CN=Organizational-Unit,CN=Schema,CN=Configuration,DC=zdrmoss,DC=com
属性的含义: 属性名:nTSecurityDescriptor,属性值: System.__ComObject
Group的属性
1、cn
The cn (or Common-Name) is a single-value property that is the object's relative distinguished name. The cn is the name of the group in Active Directory. As with all other objects, the cn of a group must be unique among the sibling objects in the container containing the group. 2、member The member property is a multi-value property that contains the list of distinguished names for the user, group, and contact objects that are members of the group. Each item in the list is a linked reference to the object that represents the member; therefore, Active Directory automatically updates the distinguished names in the member property when a member object is moved or renamed 3、groupType The groupType property is a single-value property that is an integer that specifies the group type and scope using the following bit flags: ADS_GROUP_TYPE_DOMAIN_LOCAL_GROUP ADS_GROUP_TYPE_GLOBAL_GROUP ADS_GROUP_TYPE_SECURITY_ENABLED ADS_GROUP_TYPE_UNIVERSAL_GROUP The first three flags specify the group scope. The ADS_GROUP_TYPE_SECURITY_ENABLED flag indicates the type of the group. If this flag is set, the group is a security group. If this flag is not set, the group is a distribution group. 4、memberOf The memberOf property is a multi-value property that contains the list of distinguished names for groups that contain the group as a member. This property lists the groups beneath which the group is directly nested—it does not contain the recursive list of nested predecessors. For example, if group D were nested in group C and group B and group B were nested in group A, the membersOf property of group D would list group C and group B but not group A. 5、objectGUID The objectGUID property is a single-value property that is the unique identifier for the object. This property is a GUID (Globally Unique Identifier). When an object is created in the directory, Active Directory generates a GUID and assigns it to the object's objectGUID property. The GUID is unique across the enterprise and anywhere else. The objectGUID is a 128-bit GUID structure stored as an OctetString. 6、objectSid (Object-Sid) The objectSid property is a single-value property that specifies the security identifier (SID) of the group. The SID is a unique value used to identify the group as a security principal. It is a binary value that the system sets when the group is created. Each group has a unique SID that the Windows NT®/Windows® 2000 Server domain issues that is stored in the objectSid property of the group object in the directory. Each time a user logs on, the system retrieves the SID for the groups of which the user is a member and places it in the user's access token. The system uses the SIDs in the user's access token to identify the user and his/her group memberships in all subsequent interactions with Windows NT/Windows 2000 security. When a SID has been used as the unique identifier for a user or group, it cannot ever be used again to identify another user or group. 7、sAMAccountName The sAMAccountName property is a single-value property that is the logon name used to support clients and servers from a previous version (Windows® 95, Windows® 98, and LAN Manager). The sAMAccountName should be less than 20 characters to support clients and servers from a previous version. The sAMAccountName must be unique among all security principal objects within a domain. Const ADS_GROUP_TYPE_GLOBAL_GROUP = &H2 Const ADS_GROUP_TYPE_DOMAIN_LOCAL_GROUP = &H4 Const ADS_GROUP_TYPE_LOCAL_GROUP = &H4 Const ADS_GROUP_TYPE_UNIVERSAL_GROUP = &H8 Const ADS_GROUP_TYPE_SECURITY_ENABLED = &H80000000 原文地址:点击打开链接 |
相关文章推荐
- AD开发中OU组织机构的属性、 Group的属性
- 使用Jquery+EasyUI 进行框架项目开发案例讲解之四---组织机构管理源码分享
- 利用AJAX+J2EE开发组织机构管理系统 2
- 利用AJAX+J2EE开发组织机构管理系统
- 利用AJAX+J2EE开发组织机构管理系统
- 使用Jquery+EasyUI 进行框架项目开发案例讲解之四---组织机构管理源码分享 推荐
- 利用AJAX+J2EE开发组织机构管理系统 1
- 一步一步学习开发BPM工作流系统--------(五)用户、组织机构和权限管理
- 全局组,域本地组,通用组区别(AGDLP),OU(组织单元)与Group(组)之对比
- 利用AJAX+J2EE开发组织机构管理系统 3
- (转)使用Jquery+EasyUI 进行框架项目开发案例讲解之四---组织机构管理源码分享
- SpringBird Erp系统快速开发平台(组织机构,权限管理)、代码生成器、消息中间件免费下载
- AD开发用户(User)属性完全手册(AD User)
- C#.NET 大型企业信息化系统集成快速开发平台 4.2 版本 - 面向全国标准省市县行政数据基础之上的组织机构管理
- 【iOS开发】---- ALAsset,ALAssetsLibrary,ALAssetsgroup常见属性及用法
- 利用AJAX+J2EE开发组织机构管理系统 4
- 【iOS开发】---- ALAsset,ALAssetsLibrary,ALAssetsgroup常见属性及用法
- RDIFramework.NET ━ .NET快速信息化系统开发框架-4.7 组织机构管理模块