June 13, 2013

Versión de esquema 52.

Para esos curiosos, esto es lo que trae la versión del esquema 52 (Windows Server 8 Consumer Preview).
ldapDisplayName: msDS-MembersOfResourcePropertyList
adminDescription: For a resource property list object, this multi-valued link attribute points to one or more resource property objects.
ldapDisplayName: msDS-MembersOfResourcePropertyListBL
adminDescription: Backlink for ms-DS-Members-Of-Resource-Property-List. For a resource property object, this attribute references the resource property list object that it is a member of.
ldapDisplayName: msDS-ClaimValueType
adminDescription: For a claim type object, specifies the value type of the claims issued.
ldapDisplayName: msDS-ClaimPossibleValues
adminDescription: For a claim type or resource property object, this attribute describes the values suggested to a user when the he/she use the claim type or resource property in applications.
ldapDisplayName: msDS-ClaimAttributeSource
adminDescription: For a claim type object, this attribute points to the attribute that will be used as the source for the claim type.
ldapDisplayName: msDS-ClaimTypeAppliesToClass
adminDescription: For a claim type object, this linked attribute points to the AD security principal classes that for which claims should be issued. (For example, a link to the user class).
ldapDisplayName: msDS-ClaimSharesPossibleValuesWith
adminDescription: For a resource property object, this attribute indicates that the suggested values of the claims issued are defined on the object that this linked attribute points to. Overrides ms-DS-Claim-Possible-Values on itself, if populated.
ldapDisplayName: msDS-ClaimSharesPossibleValuesWithBL
adminDescription: For a claim type object, this attribute indicates that the possible values described in ms-DS-Claim-Possible-Values are being referenced by other claim type objects.
ldapDisplayName: msDS-IsUsedAsResourceSecurityAttribute
adminDescription: For a resource property, this attribute indicates whether it is being used as a secure attribute.
ldapDisplayName: msSPP-KMSIds
adminDescription: KMS IDs enabled by the Activation Object
ldapDisplayName: msSPP-CSVLKPid
adminDescription: ID of CSVLK product-key used to create the Activation Object
ldapDisplayName: msSPP-CSVLKSkuId
adminDescription: SKU ID of CSVLK product-key used to create the Activation Object
ldapDisplayName: msSPP-PhoneLicense
adminDescription: License used during phone activation of the Active Directory forest
ldapDisplayName: msSPP-ConfigLicense
adminDescription: Product-key configuration license used during online/phone activation of the Active Directory forest
ldapDisplayName: msSPP-OnlineLicense
adminDescription: License used during online activation of the Active Directory forest
ldapDisplayName: msSPP-ConfirmationId
adminDescription: Confirmation ID (CID) used for phone activation of the Active Directory forest
ldapDisplayName: msSPP-InstallationId
adminDescription: Installation ID (IID) used for phone activation of the Active Directory forest
ldapDisplayName: msSPP-IssuanceLicense
adminDescription: Issuance license used during online/phone activation of the Active Directory forest
ldapDisplayName: msSPP-CSVLKPartialProductKey
adminDescription: Last 5 characters of CSVLK product-key used to create the Activation Object
ldapDisplayName: msTPM-SrkPubThumbprint
adminDescription: This attribute contains the thumbprint of the SrkPub corresponding to a particular TPM. This helps to index the TPM devices in the directory.
ldapDisplayName: msTPM-OwnerInformationTemp
adminDescription: This attribute contains temporary owner information for a particular TPM.
ldapDisplayName: msTPM-TpmInformationForComputer
adminDescription: This attribute links a Computer object to a TPM object.
ldapDisplayName: msTPM-TpmInformationForComputerBL
adminDescription: This attribute links a TPM object to the Computer objects associated with it.
ldapDisplayName: msDS-ClaimTypes
adminDescription: A container of this class can contain claim type objects.
ldapDisplayName: msDS-ResourcePropertyList
adminDescription: An object of this class contains a list of resource properties.
ldapDisplayName: msDS-ResourceProperties
adminDescription: A container of this class can contain resource properties.
ldapDisplayName: msDS-ClaimTypePropertyBase
adminDescription: An abstract class that defines the base class for claim type or resource property classes.
ldapDisplayName: msDS-ResourceProperty
adminDescription: An instance of this class holds the definition of a property on resources.
ldapDisplayName: msDS-ClaimType
adminDescription: An instance of this class holds the definition of a claim type that can be defined on security principals.
ldapDisplayName: msSPP-ActivationObjectsContainer
adminDescription: Container for Activation Objects used by Active Directory based activation
ldapDisplayName: msSPP-ActivationObject
adminDescription: Activation Object used in Active Directory based activation
ldapDisplayName: msTPM-InformationObjectsContainer
adminDescription: Container for TPM objects.
ldapDisplayName: msTPM-InformationObject
adminDescription: This class contains recovery information for a Trusted Platform Module (TPM) device.
ldapDisplayName: msDNS-IsSigned
adminDescription: An attribute used to define whether or not the DNS zone is signed.
ldapDisplayName: msDNS-NSEC3OptOut
adminDescription: An attribute used to define whether or not the DNS zone should be signed using NSEC opt-out.
ldapDisplayName: msDNS-SigningKeys
adminDescription: An attribute that contains the set of encrypted DNSSEC signing keys used by the DNS server to sign the DNS zone.
ldapDisplayName: msDNS-SignWithNSEC3
adminDescription: An attribute used to define whether or not the DNS zone is signed with NSEC3.
ldapDisplayName: msDNS-NSEC3UserSalt
adminDescription: An attribute that defines a user-specified NSEC3 salt string to use when signing the DNS zone. If empty, random salt will be used.
ldapDisplayName: msDNS-DNSKEYRecords
adminDescription: An attribute that contains the DNSKEY record set for the root of the DNS zone and the root key signing key signature records.
ldapDisplayName: msDNS-DSRecordSetTTL
adminDescription: An attribute that defines the time-to-live (TTL) value assigned to DS records when signing the DNS zone.
ldapDisplayName: msDNS-KeymasterZones
adminDescription: A list of Active Directory-integrated zones for which the DNS server is the keymaster.
ldapDisplayName: msDNS-NSEC3Iterations
adminDescription: An attribute that defines how many NSEC3 hash iterations to perform when signing the DNS zone.
ldapDisplayName: msDNS-PropagationTime
adminDescription: An attribute used to define in seconds the expected time required to propagate zone changes through Active Directory.
ldapDisplayName: msDNS-NSEC3CurrentSalt
adminDescription: An attribute that defines the current NSEC3 salt string being used to sign the DNS zone.
ldapDisplayName: msDNS-RFC5011KeyRollovers
adminDescription: An attribute that defines whether or not the DNS zone should be maintained using key rollover procedures defined in RFC 5011.
ldapDisplayName: msDNS-NSEC3HashAlgorithm
adminDescription: An attribute that defines the NSEC3 hash algorithm to use when signing the DNS zone.
ldapDisplayName: msDNS-DSRecordAlgorithms
adminDescription: An attribute used to define the algorithms used when writing the dsset file during zone signing.
ldapDisplayName: msDNS-DNSKEYRecordSetTTL
adminDescription: An attribute that defines the time-to-live (TTL) value assigned to DNSKEY records when signing the DNS zone.
ldapDisplayName: msDNS-MaintainTrustAnchor
adminDescription: An attribute used to define the type of trust anchor to automatically publish in the forest-wide trust anchor store when the DNS zone is signed.
ldapDisplayName: msDNS-NSEC3RandomSaltLength
adminDescription: An attribute that defines the length in bytes of the random salt used when signing the DNS zone.
ldapDisplayName: msDNS-SigningKeyDescriptors
adminDescription: An attribute that contains the set of DNSSEC Signing Key Descriptors (SKDs) used by the DNS server to generate keys and sign the DNS zone.
ldapDisplayName: msDNS-SignatureInceptionOffset
adminDescription: An attribute that defines in seconds how far in the past DNSSEC signature validity periods should begin when signing the DNS zone.
ldapDisplayName: msDNS-ParentHasSecureDelegation
adminDescription: An attribute used to define whether the parental delegation to the DNS zone is secure.
ldapDisplayName: msDNS-SecureDelegationPollingPeriod
adminDescription: An attribute that defines in seconds the time between polling attempts for child zone key rollovers.
ldapDisplayName: msAuthz-MemberRulesInCentralAccessPolicy
adminDescription: For a central access policy, this attribute identifies the central access rules that comprise the policy.
ldapDisplayName: msAuthz-MemberRulesInCentralAccessPolicyBL
adminDescription: Backlink for ms-Authz-Member-Rules-In-Central-Access-Policy. For a central access rule object, this attribute references one or more central access policies that point to it.
ldapDisplayName: msDS-ClaimSource
adminDescription: For a claim type, this attribute indicates the source of the claim type. For example, the source can be certificate.
ldapDisplayName: msAuthz-ProposedSecurityPolicy
adminDescription: For a Central Access Policy Entry, defines the proposed security policy of the objects the CAPE is applied to.
ldapDisplayName: msDS-ClaimSourceType
adminDescription: For a security principal claim type, lists the type of store the issued claim is sourced from
ldapDisplayName: msAuthz-EffectiveSecurityPolicy
adminDescription: For a central access rule, this attribute defines the permission that is applying to the target resources on the central access rule.
ldapDisplayName: msDS-ClaimIsSingleValued
adminDescription: For a claim type object, this attribute identifies if the claim type or resource property can only contain single value.
ldapDisplayName: msAuthz-LastEffectiveSecurityPolicy
adminDescription: For a Central Access Policy Entry, defines the security policy that was last applied to the objects the CAPE is applied to.
ldapDisplayName: msAuthz-ResourceCondition
adminDescription: For a central access rule, this attribute is an expression that identifies the scope of the target resource to which the policy applies.
ldapDisplayName: msDS-ClaimIsValueSpaceRestricted
adminDescription: For a claim type, this attribute identifies whether a user can input values other than those described in the msDS-ClaimPossibleValues in applications.
ldapDisplayName: msAuthz-CentralAccessPolicyID
adminDescription: For a Central Access Policy, this attribute defines a GUID that can be used to identify the set of policies when applied to a resource.
ldapDisplayName: msDS-GenerationId
adminDescription: For virtual machine snapshot resuming detection. This attribute represents the VM Generation ID.
replace: adminDescription
adminDescription: For a claim type object, indicates that the possible values of the claims issued are defined on the object this linked attribute points to; overrides msDS-ClaimPossibleValues, msDS-ClaimValueType, and msDS-ClaimIsValueSpaceRestricted, if populated.
ldapDisplayName: msDNS-ServerSettings
adminDescription: A container for storing DNS server settings.
ldapDisplayName: msAuthz-CentralAccessPolicies
adminDescription: A container of this class can contain Central Access Policy objects.
ldapDisplayName: msAuthz-CentralAccessRules
adminDescription: A container of this class can contain Central Access Policy Entry objects.
ldapDisplayName: msAuthz-CentralAccessRule
adminDescription: A class that defines Central Access Rules used to construct a central access policy.
ldapDisplayName: msAuthz-CentralAccessPolicy
adminDescription: A class that defines Central Access Policy objects.
ldapDisplayName: msDS-AllowedToActOnBehalfOfOtherIdentity
adminDescription: This attribute is used for access checks to determine if a requestor has permission to act on the behalf of other identities to services running as this account.
ldapDisplayName: msKds-Version
adminDescription: Version number of this root key.
ldapDisplayName: msKds-DomainID
adminDescription: Distinguished name of the Domain Controller which generated this root key.
ldapDisplayName: msKds-KDFParam
adminDescription: Parameters for the key derivation algorithm.
ldapDisplayName: msKds-CreateTime
adminDescription: The time when this root key was created.
ldapDisplayName: msKds-RootKeyData
adminDescription: Root key.
ldapDisplayName: msDS-PrimaryComputer
adminDescription: For a user or group object, identifies the primary computers.
ldapDisplayName: msKds-UseStartTime
adminDescription: The time after which this root key may be used.
ldapDisplayName: msImaging-HashAlgorithm
adminDescription: Contains the name of the hash algorithm used to create the Thumbprint Hash for the Scan Repository/Secure Print Device.
ldapDisplayName: msKds-KDFAlgorithmID
adminDescription: The algorithm name of the key derivation function used to compute keys.
ldapDisplayName: msImaging-ThumbprintHash
adminDescription: Contains a hash of the security certificate for the Scan Repository/Secure Print Device.
ldapDisplayName: msKds-PublicKeyLength
adminDescription: The length of the secret agreement public key.
ldapDisplayName: msKds-PrivateKeyLength
adminDescription: The length of the secret agreement private key.
ldapDisplayName: msDS-IsPrimaryComputerFor
adminDescription: Backlink atribute for msDS-IsPrimaryComputer.
ldapDisplayName: msKds-SecretAgreementParam
adminDescription: The parameters for the secret agreement algorithm.
ldapDisplayName: msKds-SecretAgreementAlgorithmID
adminDescription: The name of the secret agreement algorithm to be used with public keys.
ldapDisplayName: msDS-ValueTypeReference
adminDescription: This attribute is used to link a resource property object to its value type.
ldapDisplayName: msDS-ValueTypeReferenceBL
adminDescription: This is the back link for ms-DS-Value-Type-Reference. It links a value type object back to resource properties.
ldapDisplayName: msDS-IsPossibleValuesPresent
adminDescription: This attribute identifies if ms-DS-Claim-Possible-Values on linked resource property must have value or must not have value.
ldapDisplayName: msKds-ProvRootKey
adminDescription: Root keys for the Group Key Distribution Service.
ldapDisplayName: msKds-ProvServerConfiguration
adminDescription: Configuration for the Group Key Distribution Service.
ldapDisplayName: msDS-ValueType
adminDescription: An value type object holds value type information for a resource property.
ldapDisplayName: msDS-TransformationRules
adminDescription: Specifies the Transformation Rules for Cross-Forest Claims Transformation.
ldapDisplayName: msDS-AppliesToResourceTypes
adminDescription: For a resource property, this attribute indicates what resource types this resource property applies to.
ldapDisplayName: msDS-TransformationRulesCompiled
adminDescription: Blob containing compiled transformation rules.
ldapDisplayName: msDS-EgressClaimsTransformationPolicy
adminDescription: This is a link to a Claims Transformation Policy Object for the egress claims (claims leaving this forest) to the Trusted Domain. This is applicable only for an incoming or bidirectional Cross-Forest Trust. When this link is not present, all claims are allowed to egress as-is.
ldapDisplayName: msDS-IngressClaimsTransformationPolicy
adminDescription: This is a link to a Claims Transformation Policy Object for the ingress claims (claims entering this forest) from the Trusted Domain. This is applicable only for an outgoing or bidirectional Cross-Forest Trust. If this link is absent, all the ingress claims are dropped.
ldapDisplayName: msDS-TDOEgressBL
adminDescription: Backlink to TDO Egress rules link on object.
ldapDisplayName: msDS-TDOIngressBL
adminDescription: Backlink to TDO Ingress rules link on object.
ldapDisplayName: msDS-ManagedPassword
adminDescription: This attribute is the managed password data for a group MSA.
ldapDisplayName: msDS-ManagedPasswordId
adminDescription: This attribute is the identifier for the current managed password data for a group MSA.
ldapDisplayName: msDS-GroupMSAMembership
adminDescription: This attribute is used for access checks to determine if a requestor has permission to retrieve the password for a group MSA.
ldapDisplayName: msDS-GeoCoordinatesAltitude
adminDescription: ms-DS-GeoCoordinates-Altitude
ldapDisplayName: msDS-GeoCoordinatesLatitude
adminDescription: ms-DS-GeoCoordinates-Latitude
ldapDisplayName: msDS-GeoCoordinatesLongitude
adminDescription: ms-DS-GeoCoordinates-Longitude
ldapDisplayName: msDS-ManagedPasswordInterval
adminDescription: This attribute is used to retrieve the number of days before a managed password is automatically changed for a group MSA.
ldapDisplayName: msDS-ManagedPasswordPreviousId
adminDescription: This attribute is the identifier for the previous managed password data for a group MSA.
ldapDisplayName: msDS-ClaimsTransformationPolicies
adminDescription: An object of this class holds the one set of Claims Transformation Policy for Cross-Forest Claims Transformation.
ldapDisplayName: msDS-ClaimsTransformationPolicyType
adminDescription: An object of this class holds the one set of Claims Transformation Policy for Cross-Forest Claims Transformation.
ldapDisplayName: msDS-GroupManagedServiceAccount
adminDescription: The group managed service account class is used to create an account which can be shared by different computers to run Windows services.
ldapDisplayName: msDS-RIDPoolAllocationEnabled
adminDescription: This attribute indicates whether RID pool allocation is enabled or not.
ldapDisplayName: netbootDUID
adminDescription: This attribute is used to store DHCPv6 DUID device ID.
lDAPDisplayName: msDS-cloudExtensionAttribute1
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute2
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute3
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute4
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute5
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute6
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute7
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute8
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute9
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute10
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute11
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute12
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute13
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute14
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute15
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute16
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute17
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute18
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute19
adminDescription: An attribute used to house an arbitrary cloud-relevant string
lDAPDisplayName: msDS-cloudExtensionAttribute20
adminDescription: An attribute used to house an arbitrary cloud-relevant string
ldapDisplayName: msDS-CloudExtensions
adminDescription: A collection of attributes used to house arbitrary cloud-relevant strings

Interesante como se ven cosas relacionadas a la nube…

No comments:

Post a Comment