Overview#

TokenGroups is a Virtual Attribute a computed AttributeTypes that contains the list of SIDs of group membership expansion that includes Nested Groups. !! LDAP Microsoft Active Directory Attribute Definition The TokenGroups AttributeTypes is defined as:

• CN: Token-Groups
• OID of 1.2.840.113556.1.4.1301
• NAME: TokenGroups
• DESC:
• EQUALITY:
• ORDERING:
• SYNTAX: 2.5.5.17 (SID string)
• LOWERBOUND:
• UPPERBOUND:
• OMSyntax: 4
• SchemaIDGUID: b7c69e6d-2cc7-11d2-854e-00a0c983f608
• mapiID:
• NO-USER-MODIFICATION
• USAGE: OperationalAttribute
• Extended Flags:
  • X-ORIGIN:
• X-SYSTEMFLAGS
  • FLAG_SCHEMA_BASE_OBJECT
  • FLAG_ATTR_IS_CONSTRUCTED
  • FLAG_DOMAIN_DISALLOW_RENAME
• X-SCHEMAFLAGSEx
  • FLAG_ATTR_IS_CRITICAL
• X-SEARCH-FLAGS 0
• Used as MUST in:
• Used as MAY in:
  • SecurityPrincipal

More Information#

There might be more information for this subject on one of the following:

• Active Directory Groups
• TokenGroups