[cifs-protocol] RE: how are unique attributes determined?

Edgar Olougouna edgaro at microsoft.com
Mon Jun 1 15:17:25 GMT 2009

Hi Tridge,

I have taken ownership of this case regarding AD attributes (case SRX090601600044). I will be communicating with you as soon as I have updates or clarification questions.

Best regards,

Edgar A. Olougouna
Sr. SEE, Microsoft DSC Protocol Team

-----Original Message-----
From: tridge at samba.org [mailto:tridge at samba.org] 
Sent: Monday, June 01, 2009 12:28 AM
To: Interoperability Documentation Help
Cc: cifs-protocol at samba.org; pfif at tridgell.net
Subject: CAR: how are unique attributes determined?

We would like to know how to work out which attributes in AD are
uniquely indexed.

We know that attributes like samAccountName, objectGUID and objectSID
are all unique. So if you try to create the following two records
using LDAP:

 dn: CN=test1,OU=User2,DC=vsofs8,DC=com
 sAMAccountName: test1
 objectClass: user

 dn: CN=test1,OU=User3,DC=vsofs8,DC=com
 sAMAccountName: test1
 objectClass: user

then windows AD implementation will return LDAP_ERR_ALREADY_EXISTS for
the second one, presumably because samAccountName is a unique
attribute. This makes sense, as you don't want two users with the same
account name.

What we can't work out is how to find the list of unique
attributes. We can't find anything in the schema that tells us an
attribute is unique. What part in the schema gives us that? Or is it
somewhere outside the schema?

Cheers, Tridge

More information about the cifs-protocol mailing list