[cifs-protocol] RE: how are unique attributes determined?

Tom Jebo tomjebo at microsoft.com
Mon Jun 1 13:51:55 GMT 2009

Good morning Tridge!  

Thank you for your question regarding AD attributes.  I have created case SRX090601600044 for you and one of my colleagues will be in touch with you shortly.  In the meantime, if you have any questions regarding the process, please feel free to email me directly.

Best Regards,
Tom Jebo
Senior Support Escalation Engineer
Microsoft Protocols Team

-----Original Message-----
From: tridge at samba.org [mailto:tridge at samba.org] 
Sent: Monday, June 01, 2009 1:28 AM
To: Interoperability Documentation Help
Cc: cifs-protocol at samba.org; pfif at tridgell.net
Subject: CAR: how are unique attributes determined?

We would like to know how to work out which attributes in AD are
uniquely indexed.

We know that attributes like samAccountName, objectGUID and objectSID
are all unique. So if you try to create the following two records
using LDAP:

 dn: CN=test1,OU=User2,DC=vsofs8,DC=com
 sAMAccountName: test1
 objectClass: user

 dn: CN=test1,OU=User3,DC=vsofs8,DC=com
 sAMAccountName: test1
 objectClass: user

then windows AD implementation will return LDAP_ERR_ALREADY_EXISTS for
the second one, presumably because samAccountName is a unique
attribute. This makes sense, as you don't want two users with the same
account name.

What we can't work out is how to find the list of unique
attributes. We can't find anything in the schema that tells us an
attribute is unique. What part in the schema gives us that? Or is it
somewhere outside the schema?

Cheers, Tridge

More information about the cifs-protocol mailing list