<meta charset="UTF-8">
<meta name="robots" content="noindex,nofollow" />
<link rel="shortcut icon" type="image/x-icon" href="/wiki/images/favicon.ico" />
<link rel="icon" type="image/x-icon" href="/wiki/images/favicon.ico" />

<pre>
!!! Overview 
[{$pagename}] is an [LDAP] [AttributeType] where the value is the [DN] of an [LDAP Entry] is the [Group] that the current [LDAP Entry] is a [member] in a [Group] and is referred to as a [Forward Reference]. (or [Virtual Attribute])


[{$pagename}] is usage is dependent on the [LDAP Server Implementation] but is a known to be used in [Microsoft Active Directory]

!! A [Virtual Attribute] [Microsoft Active Directory]
[{$pagename}] is a [Virtual Attribute]. This implies You can not monitor the [{$pagename}] attribute for changes (Like with [DirXML]) 

Within [Microsoft Active Directory] [{$pagename}] is flagged as &quot;[NO-USER-MODIFICATION]&quot; (or System-Only)[1]; This means you can __NOT__ update the [Attribute Value]. In order to add a user to a group you have to write the user's [DistinguishedName] to the [member] attribute on the [group|LDAP Group] object. 

!! [LDAP] [Microsoft Active Directory Attribute] Definition
The [{$pagename}] [AttributeTypes] is defined as:
* [CN|Cn]: Is-Member-Of-DL
* [OID] of [1.2.840.113556.1.2.102] 
* [NAME|Attribute-Name]: [{$pagename}]
* [DESC]: attribute specifies the distinguished names of the groups to which this object belongs
* [EQUALITY]: []
* [ORDERING]: []
* [SYNTAX]: [2.5.5.1] ([1.3.6.1.4.1.1466.115.121.1.15])
* [LOWERBOUND]:
* [UPPERBOUND]: 
* [OMSyntax]: 127
* [SchemaIDGUID]: [bf967991-0de6-11d0-a285-00aa003049e2]
* [mapiID]: 32776
* [NO-USER-MODIFICATION]
* [USAGE]: [UserApplications] 
* [linkID]: 3 (Which makes this a [BackLink] attribute to the [Forward link] of [Member])
* [Extended Flags]: 
** [X-ORIGIN]: [MS-ADSA]
* [X-SYSTEMFLAGS]
** [FLAG_SCHEMA_BASE_OBJECT]
** [FLAG_ATTR_NOT_REPLICATED]
* [X-SCHEMAFLAGSEx]
** [FLAG_ATTR_IS_CRITICAL]
* [X-SEARCH-FLAGS]
* Used as [MUST] in:
** 
* Used as [MAY] in:
**

!! __Beware__ of [{$pagename}]
[Active Directory Groups] only include [{$pagename}] if they have a Group Scope of:
* [Universal Group] and are in the same [AD Forest] as the [user], or
* [Global Group] and [user] are on the same [AD DOMAIN] (even if in the same [AD Forest])
* [Domain Local Group] only if [user] is from the same [AD DOMAIN] of the [Domain Controller] you are retrieving results from.
* __NOT include__ the user’s [primary group|PrimaryGroupID] (usually [Domain Users])
* __NOT include__ [Active Directory Groups] on external trusted domains.

!! More Information 
There might be more information for this subject on one of the following: 
[{ReferringPagesPlugin before='*' after='\n' }] 
</pre>