[cifs-protocol] RE: Answer: SRX080609601575 : [MS-ADA3]: 2.43 2.44
string forms of AD attributes
Andrew Bartlett
abartlet at samba.org
Tue Jul 1 06:29:31 GMT 2008
On Tue, 2008-06-17 at 09:05 -0700, Bill Wesse wrote:
> Good day again! I have filed the below bug against the MS-ADA3 document. I apologize for my earlier incorrect answer (which stated that objectGUID and objectSID had no 'human-readable' string format available for use within ldap filters.
>
> It turns out that the AD specialist I consulted with was speaking with respect to LDAP generically, not the Microsoft implementation (which I was listening as pertaining to).
>
> Additionally, the list of special semantics for our implementation is specifically against objectSID and objectGUID; there is no schema attribute that specifies or allows for this.
Searching for other things, I find the SID form is noted in
MS-ADTS 3.1.1.3.1.2.5. The objectGUID string format should be included
nearby (already obliquely referenced in 3.1.1.3.1.2.4), and both linked
to the schema documentation.
Andrea Bartlett
--
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Red Hat Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/cifs-protocol/attachments/20080701/8b772035/attachment.bin
More information about the cifs-protocol
mailing list