Overview#
X-SYSTEMFLAGS is a Extended Flags used by LDAPWiki term to represent the SystemFlags values for Microsoft Active Directory for describing LDAP Schema EntitiesX-SYSTEMFLAGS Attribute Values can be zero or a combination of one or more of the following Bitmask values which are Big-Endian byte order.| hex | Code | Description |
|---|---|---|
| 0x00000001 | FLAG_ATTR_NOT_REPLICATED | When applied to an attribute, the attributeTypes is non-replicated. When applied to a CrossRef object, the naming context is in NTDS. |
| 0x00000002 | FLAG_ATTR_REQ_PARTIAL_SET_MEMBER | When used on an attributeSchema object, it specifies that the attribute is a member of a Partial Attribute Set (PAS). If used on a crossRef objectClass, it specifies that the Directory Partition Hierarchy is a Domain Directory Partition. |
| 0x00000004 | FLAG_ATTR_IS_CONSTRUCTED | When applied to an attribute, the it is a Constructed Attribute. |
| 0x00000008 | FLAG_ATTR_IS_OPERATIONAL | Only used on an attributeSchema object. It specifies that the attributeType is an operational attribute. The attributeType cannot be deleted. |
| 0x00000010 | FLAG_SCHEMA_BASE_OBJECT | When set, indicates the object is a category 1 object. A category 1 object is a class or attributeType that is included in the base schema included with the system. |
| 0x00000020 | FLAG_ATTR_IS_RDN | Only used on an attributeSchema object and specifies that this attributeType can be used as an RDN attribute. |
| 0x04000000 | FLAG_DOMAIN_DISALLOW_MOVE | Specifies that if the objectClass is in a Domain Directory Partition, the object cannot be moved. |
| 0x08000000 | FLAG_DOMAIN_DISALLOW_RENAME | Specifies that if the objectClass is in a Domain Directory Partition, the object cannot be renamed. |
| 0x10000000 | FLAG_CONFIG_ALLOW_LIMITED_MOVE | Specifies that if the objectClass is in the Configuration Directory Partition, the object can be moved, with restrictions. |
| 0x20000000 | FLAG_CONFIG_ALLOW_MOVE | Specifies that if the objectClass is in the Configuration Directory Partition, the object can be moved. |
| 0x40000000 | FLAG_CONFIG_ALLOW_RENAME | Specifies that if the objectClass is in the Configuration Directory Partition, the object can be renamed. |
| 0x80000000 | FLAG_DISALLOW_DELETE | Specifies that the objectClass cannot be deleted. |
More Information#
There might be more information for this subject on one of the following:- AccountExpires
- AccountNameHistory
- AllowedAttributesEffective
- Assistant
- AttributeSecurityGUID
- AttributeSyntax
- ClassDisplayName
- DefaultHidingValue
- DefaultObjectCategory
- DirectReports
- Extended Flags
- ExtendedCharsAllowed
- FLAG_DOMAIN_DISALLOW_RENAME
- IsDefunct
- IsDeleted
- IsEphemeral
- IsRecycled
- LDAPAdminLimits
- LinkID
- ManagedBy
- Manager
- MapiID
- Member
- MemberOf
- ModifyTimestamp
- MsDS-AdditionalSamAccountName
- MsDS-GroupManagedServiceAccount
- MsDS-PhoneticCompanyName
- MsDS-PhoneticDepartment
- MsDS-SupportedEncryptionTypes
- MsDS-TrustForestTrustInfo
- MsDS-User-Account-Control-Computed
- NTDSDSA
- NTDSSiteSettings
- OMObjectClass
- OMSyntax
- ObjectGUID
- PosixAccount
- ProxyAddresses
- QueryPolicy
- QueryPolicyObject
- RdnAttId
- SchemaFlagsEx
- Site
- SystemFlags
- TokenGroups
- UnixHomeDirectory
- UsnChanged
- WhenChanged
