Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
The following table defines the valid system flags used on directory objects. The flags are presented in big-endian byte order.
|
|
|
|
|
|
|
|
|
|
1 |
|
|
|
|
|
|
|
|
|
2 |
|
|
|
|
|
|
|
|
|
3 |
|
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
D |
A |
A |
A |
D |
D |
D |
X |
X |
X |
X |
X |
X |
X |
X |
X |
X |
X |
X |
X |
X |
X |
X |
X |
X |
X |
R |
B |
O |
C |
P |
N |
X: Unused. Must be zero and ignored.
NR (FLAG_ATTR_NOT_REPLICATED or FLAG_CR_NTDS_NC, 0x00000001): When used on an attributeSchema object, it specifies that this attribute is not replicated. If it is used on a crossRef object, it specifies that the NC that the crossRef is for is an Active Directory NC.
PS (FLAG_ATTR_REQ_PARTIAL_SET_MEMBER or FLAG_CR_NTDS_DOMAIN, 0x00000002): When used on an attributeSchema object, it specifies that the attribute is a member of a partial attribute set (PAS). If used on a crossRef object, it specifies that the NC is a ___domain NC.
CS (FLAG_ATTR_IS_CONSTRUCTED or FLAG_CR_NTDS_NOT_GC_REPLICATED, 0x00000004): When used on an attributeSchema object, this flag specifies that the attribute is a constructed attribute. If used on a crossRef object, it specifies that the NC is not to be replicated to GCs.
OP (FLAG_ATTR_IS_OPERATIONAL, 0x00000008): Only used on an attributeSchema object. It specifies that the attribute (2) is an operational attribute.
BS (FLAG_SCHEMA_BASE_OBJECT, 0x00000010): Only used on attributeSchema and classSchema object. It specifies that this attribute or class is part of the base schema. Modifications to base schema objects are specially restricted.
RD (FLAG_ATTR_IS_RDN, 0x00000020): Only used on an attributeSchema object. It specifies that this attribute can be used as an RDN attribute.
DE (FLAG_DISALLOW_MOVE_ON_DELETE, 0x02000000): Specifies that the object does not move to the Deleted Objects container when the object is deleted.
DM (FLAG_DOMAIN_DISALLOW_MOVE, 0x04000000): Specifies that if the object is in a ___domain NC, the object cannot be moved.
DR (FLAG_DOMAIN_DISALLOW_RENAME, 0x08000000): Specifies that if the object is in a ___domain NC, the object cannot be renamed.
AL (FLAG_CONFIG_ALLOW_LIMITED_MOVE, 0x10000000): Specifies that if the object is in the config NC, the object can be moved, with restrictions.
AM (FLAG_CONFIG_ALLOW_MOVE, 0x20000000): Specifies that if the object is in the config NC, the object can be moved.
AR (FLAG_CONFIG_ALLOW_RENAME, 0x40000000): Specifies that if the object is in the config NC, the object can be renamed.
DD (FLAG_DISALLOW_DELETE, 0x80000000): Specifies that the object cannot be deleted.