The schema contains a large number of object attributes that are either available for use or already enabled by default in Active Directory. A number of these object attributes are pre-selected in the global catalog by default;
these default attributes are replicated among all global catalogs in the organization.
You can change both the number of attributes selected and which specific attributes are used by using the Active Directory Schema snap-in in Microsoft Management Console (MMC). However, in most cases, there is no need to modify any of these attributes. Carefully consider any changes to these default settings before making changes.
NOTE: You should make changes or additions to the schema only after careful consideration and planning. After you make additions, you can only disable them (you cannot delete them). Additional attributes may increase the time required for their replication.
For additional information about the schema and the GC, click the article numbers below
to view the articles in the Microsoft Knowledge Base:
216060
(http://support.microsoft.com/kb/216060/EN-US/
)
Registry Modification Required to Allow Writing to Schema
232517
(http://support.microsoft.com/kb/232517/EN-US/
)
Global Catalog Attributes and Replication Properties
230663
(http://support.microsoft.com/kb/230663/EN-US/
)
How to Enumerate Attributes Replicated to the Global Catalog
The following attributes are included in the GC by default.
Collapse this tableExpand this table
| Name | Syntax | Description |
|---|
| c | Unicode String | Country-Name |
| cA-Certificate | Unicode String | CA-Certificate |
| cA-Certificate-DN | Unicode String | CA-Certificate-DN |
| certificate-Templates | Unicode String | Certificate-Templates |
| domain-Component | Unicode String | Domain-Component |
| description | Unicode String | Description |
| distinguished-Name | Distinguished Name | Obj-Dist-Name |
| dNS-Host-Name | Unicode String | DNS-Host-Name |
| driver-Name | Unicode String | Driver-Name |
| dS-Core-Propagation-Data | Generalized Time | DS-Core-Propagation-Data |
| flags | Integer | Flags |
| frs-Computer-Reference | Distinguished Name | Frs-Computer-Reference |
| fRS-Member-Reference | Distinguished Name | FRS-Member-Reference |
| gP-Link | Unicode string | GP-Link |
| home-Phone | Unicode string | Phone-Home-Primary |
| instance-Type | Integer | Instance-Type |
| ip-Phone | Unicode string | Phone-Ip-Primary |
| is-Deleted | Boolean | Is-Deleted |
| manager | Distinguished Name | Manager |
| meetingBlob | Octet String | meetingBlob |
| meetingDescription | Unicode string | meetingDescription |
| meetingName | Unicode string | meetingName |
| meetingProtocol | Unicode string | meetingProtocol |
| member | Distinguished Name | Member |
| mSMQ-Authenticate | Boolean | MSMQ-Authenticate |
| mSMQ-Base-Priority | Integer | MSMQ-Base-Priority |
| mSMQ-Dependent-Client-Services | Boolean | MSMQ-Dependent-Client-Services |
| mSMQ-Digests-Mig | Octet String | MSMQ-Digests-Mig |
| mSMQ-Ds-Services | Boolean | MSMQ-Ds-Services |
| mSMQ-Encrypt-Key | OctetString | MSMQ-Encrypt-Key |
| mSMQ-Ds-Services | Boolean | MSMQ-Ds-Services |
| mSMQ-Foreign | Boolean | MSMQ-Foreign |
| mSMQ-In-Routing-Servers | Distinguished Name | MSMQ-In-Routing-Servers |
| mSMQ-Journal | Boolean | MSMQ-Journal |
| mSMQ-OS-Type | Integer | MSMQ-OS-Type |
| mSMQ-Out-Routing-Servers | Distinguished Name | MSMQ-Out-Routing-Servers |
| mSMQ-Privacy-Level | Enumeration | MSMQ-Privacy-Level |
| mSMQ-Queue-Journal-Quota | Integer | MSMQ-Queue-Journal-Quota |
| mSMQ-Queue-Name-Ext | Unicode string | MSMQ-Queue-Name-Ext |
| mSMQ-Queue-Quota | Integer | MSMQ-Queue-Quota |
| mSMQ-Routing-Services | Boolean | MSMQ-Routing-Services |
| mSMQ-Service-Type | Integer | MSMQ-Service-Type |
| mSMQ-Sign-Certificates | Octet string | MSMQ-Sign-Certificates |
| mSMQ-Sign-Certificates-Mig | Octet string | MSMQ-Sign-Certificates-Mig |
| mSMQ-Sign-Key | Octet string | MSMQ-Sign-Key |
| mSMQ-Sites | Octet string | MSMQ-Sites |
| mSMQ-Transactional | Boolean | MSMQ-Transactional |
| mSMQ-User-Sid | Octet string | MSMQ-User-Sid |
| ms-RRAS-Attribute | Unicode string | ms-RRAS-Attribute |
| netboot-Machine-File-Path | Unicode string | Netboot-Machine-File-Path |
| nT-Security-Descriptor | NT-Security-Descriptor | NT-Security-Descriptor |
| o | Unicode string | Organization-Name |
| object-Class | Object Identifier | Object-Class |
| partial-Attribute-Deletion-List | Octet string | Partial-Attribute-Deletion-List |
| partial-Attribute-Set | Octet string | Partial-Attribute-Set |
| pKI-Critical-Extensions | Unicode string | PKI-Critical-Extensions |
| pKI-Default-CSPs | Unicode string | PKI-Default-CSPs |
| pKI-Default-Key-Spec | | PKI-Default-Key-Spec |
| pKI-Enrollment-Access | NT Security Descriptor | PKI-Enrollment-Access |
| pKI-Expiration-Period | Octet string | PKI-Expiration-Period |
| pKI-Extended-Key-Usage | Unicode string | PKI-Extended-Key-Usage |
| pKI-Key-Usage | Octet string | PKI-Key-Usage |
| pKI-Max-Issuing-Depth | Integer | PKI-Max-Issuing-Depth |
| pKI-Overlap-Period | Octet string | PKI-Overlap-Period |
| poss-Superiors | Object Identifier | Poss-Superiors |
| print-Color | Boolean | Print-Color |
| print-Duplex-Supported | Boolean | Print-Duplex-Supported |
| printer-Name | Unicode string | Printer-Name |
| print-Max-Resolution-Supported | Integer | Print-Max-Resolution-Supported |
| print-Media-Ready | Unicode string | Print-Media-Ready |
| print-Pages-Per-Minute | Integer | Print-Pages-Per-Minute |
| print-Share-Name | Unicode string | Print-Share-Name |
| print-Stapling-Supported | Boolean | Print-Stapling-Supported |
| proxied-Object-Name | DN Binary | Proxied-Object-Name |
| range-Lower | Integer | Range-Lower |
| range-Upper | Integer | Range-Upper |
| repl-Property-Meta-Data | Octet string | Repl-Property-Meta-Data |
| repl-UpToDate-Vector | Octet string | Repl-UpToDate-Vector |
| reps-From | Replica Link | Reps-From |
| reps-To | Replica Link | Reps-To |
| server-Name | unicode string | Server-Name |
| service-Binding-Information | unicode string | Service-Binding-Information |
| service-Class-ID | Octet string | Service-Class-ID |
| service-Class-Info | Octet string | Service-Class-Info |
| srvice-Instance-Version | Octet string | Service-Instance-Version |
| short-Server-Name | unicode string | Short-Server-Name |
| signature-Algorithms | | Signature-Algorithms |
| st | Unicode string | State-Or-Province-Name |
| street | Unicode string | Street-Address |
| sub-Refs | Distinguished Name | Sub-Refs |
| system-Poss-Superiors | Object Identifier | System-Poss-Superiors |
| telephone-Number | Unicode string | Telephone-Number |
| user-Cert | Octet string | User-Cert |
| user-Certificate | Octet string | X509-Cert |
| user-SMIME-Certificate | Octet string | User-SMIME-Certificate |
| USN-Last-Obj-Rem | Larger Integer | USN-Last-Obj-Rem |
| version-Number | Integer | Version-Number |
| well-Known-Objects | DN Binary | Well-Known-Objects |
| when-Changed | Generalized Time | When-Changed |
| when-Created | Generalized Time | When-Created |
| winsock-Addresses | Octet string | Winsock-Addresses |
: Country-Name is listed as "c". Organizational_Name is listed as "o". State-Or-Province-Name is listed as "st".
Back to the top
