Saturday 28 March 2015

Creating Custom Attributes-Roles in Microsoft LDAP server

Configuring Custom Attributes/ Roles on the external LDAP server

  • Open the Management console on the Active Directory installed server and complete the following steps..
  • Select Start > Run.
  • Type mmc and press Enter.
  • Select File > Add/Remove Snap-in.
  • Click Add.
  • Select Active Directory Schema from the Available standalone snap-ins list and click Add.
  • Click Close..
Right-click the Attributes folder (Console Root/Active Directory Schema/ Attributes) and select New > Attribute.

Create the New Custom attribute by completing the following steps.
  •      Enter TestNew in the Common Name field.
  •      Enter TestNew in the LDAP Display Name field.
  •      Enter a unique object identifier in the Unique x500 Object ID field.
  •      Enter a description of the attribute in the Description field.
  •      Select Case Insensitive String in the Syntax list.
  •      Click OK.

Close the Management console.


Configuring authorization details on the external LDAP server
  • Open the ADSI Edit dialog box on the Active Directory installed server.
  • Select Start > Run.
  • Type adsiedit.msc and press Enter.
  • Right-click CN=User_Name in the CN=Users directory and select Properties.
  • Where User_Name is the name of the user you created in "Creating an AD user account".
  • Select TestNew in the Attributes list and click Edit.
  • Add desired parameters

Close the ADSI Edit dialog box.

Note : Unique x500 Object ID can be generated using Microsoft OID generator script explained in previous post.