3.1.1.3.1.1.4 Classes

Section 7 of [RFC2252], as well as section 7 of [RFC2256] and section 3 of [RFC2798], defines a set of classes common to LDAP directories. In addition, portions of the Active Directory schema are derived from [RFC1274] and [RFC2307]. The following tables show, for each of these RFCs, the classes included in the Active Directory default schemas of Windows Server 2003 operating system and later (including Active Directory Application Mode (ADAM)). Some of these classes were added to the schema of Windows Server 2003 or Windows Server 2003 R2 operating system but were not present in the Windows 2000 operating system schema; [MS-ADSC] and [MS-ADLS] specify the classes included in each version of the schema.

RFC 1274

Class

Included by AD DS?

Included by AD LDS?

top

Yes

Yes

country

Yes

Yes

locality

Yes

Yes

organization

Yes

Yes

organizationalUnit

Yes

Yes

person

Yes

Yes

organizationalPerson

Yes

Yes

organizationalRole

Yes

No

groupOfNames

Yes

Yes

residentialPerson

Yes

No

applicationProcess

Yes

No

applicationEntity

Yes

No

dSA

Yes

No

device

Yes

No

certificationAuthority

Yes

No

account

Yes

No

document

Yes

No

room

Yes

No

documentSeries

Yes

No

domain

Yes

Yes

rFC822LocalPart

Yes

No

domainRelatedObject

Yes

No

friendlyCountry

Yes

No

simpleSecurityObject

Yes

No

Alias

No

No

strongAuthenticationUser

No

No

mhsDistributionList

No

No

mhsMessageStore

No

No

mhsMessageTransferAgent

No

No

mhsOrganizationalUser

No

No

mhsResidentialUser

No

No

mhsUserAgent

No

No

pilotObject

No

No

pilotPerson

No

No

dNSDomain

No

No

pilotOrganization

No

No

pilotDSA

No

No

qualityLabelledData

No

No

RFC 2252

Class

Included by AD DS?

Included by AD LDS?

subSchema

Yes

Yes

extensibleObject

No

No

RFC 2256

Class

Included by AD DS?

Included by AD LDS?

top

Yes

Yes

country

Yes

Yes

locality

Yes

Yes

organization

Yes

Yes

organizationalUnit

Yes

Yes

person

Yes

Yes

organizationalPerson

Yes

Yes

organizationalRole

Yes

No

groupOfNames

Yes

Yes

residentialPerson

Yes

No

applicationProcess

Yes

No

applicationEntity

Yes

No

dSA

Yes

No

device

Yes

No

certificationAuthority

Yes

No

groupOfUniqueNames

Yes

No

cRLDistributionPoint

Yes

No

dMD

Yes

Yes

alias

No

No

strongAuthenticationUser

No

No

userSecurityInformation

No

No

certificationAuthority-V2

No

No

RFC 2798

Class

Included by AD DS?

Included by AD LDS?

inetOrgPerson

Yes

Yes

RFC 2307

Class

Included by AD DS?

Included by AD LDS?

posixAccount

Yes

No

shadowAccount

Yes

No

posixGroup

Yes

No

ipService

Yes

No

ipProtocol

Yes

No

oncRpc

Yes

No

ipHost

Yes

No

ipNetwork

Yes

No

nisNetgroup

Yes

No

nisMap

Yes

No

nisObject

Yes

No

ieee802Device

Yes

No

bootableDevice

Yes

No