The following section describes the attributes that you need to set in the Attribute Editor for LDAP users and LDAP groups. You can manage POSIX attributes by using the Active Directory Users and Computers Microsoft Management Console (MMC) snap-in.
In the Attributes Editor, click Start.
Go to Windows Administrative Tools, and select Active Directory Users and Computers.
The Active Directory Users and Computers window opens.
Select the domain name that you want to view, and then expand it.
In the Active Directory Users and Computers View menu, click Advanced Features.
In the left pane, double-click Users.
In the list of users, double-click a user to see their Attribute Editor tab.
Required attributes for LDAP users
LDAP users must have the following attributes set:
uiduidNumbercngidNumberobjectClass
Each user must have a unique uidNumber.
Example:
uid:AliceThis is case-sensitiveuidNumber:139gidNumber:555objectClass:userThis is the default on most Active Directory deployments
Required attributes for LDAP groups
LDAP groups must have the following attributes set:
cngidNumberobjectClass
Each group must have a unique gidNumber.
Example:
cn:AliceGroupThis is case-sensitive.gidNumber:555objectClass:groupThis is the default on most Active Directory deployments.