Group attributes in hierarchical zones
A group extension object is a serviceConnectionPoint object that is created in the Groups sub-container of the zone. The pseudo‑attributes for this object are stored in the keywords attribute.
| Group attribute | Stored in Active Directory attribute | Inherited |
|
version |
displayName=$CimsZoneVersion4 or, for RFC 2307 objects, use version 5: displayName=$CimsZoneVersion5 |
No |
|
name |
keywords:login:Name For example: keywords:login:ibmdba |
Yes |
|
gid |
keywords:gid:value For example: keywords:gid:458 If the group is in a standard zone, the GID is stored as gid:xxx in the keywords attribute. If the group is in an RFC 2307 zone, the GID is stored in the schema’s gid attribute. |
Yes |
|
parentLink |
keywords:parentLink:MS-SID For example: keywords:parentLink:S-1-5-21-387451290 |
No |
|
IsMembershipRequired |
keywords:required:value For example: keywords:required:true |
Yes |
|
InheritFromParent |
keywords:inherit:value For example: keywords:inherit:true |
No |
Doc Feedback