I am trying to interpret raw active directory information. In particular, I am looking for information about whether the account is locked. Here are the formats I have pulled from AD;
cn
department
msNPAllowDialin
logonCount
replicationSignature
accountExpires
msExchMailboxGuid
distinguishedName
memberOf
mailNickname
msExchMasterAccountSid
userWorkstations
co
msRTCSIP-UserEnabled
scriptPath
garbageCollPeriod
telephoneNumber name
st
msExchHomeServerName
primaryGroupID
description
adminCount
middleName
userParameters
uSNCreated
title
proxyAddresses
msRTCSIP-PrimaryHomeServer
deletedItemFlags
mDBOverQuotaLimit
sAMAccountType
dLMemDefault
badPasswordTime info
deliverAndRedirect
msExchALObjectVersion
sAMAccountName
whenCreated
uSNChanged
msExchADCGlobalNames
badPwdCount
msExchPoliciesExcluded
postalCode
showInAddressBook
msExchHideFromAddressLists
physicalDeliveryOfficeName
objectGUID
dSCorePropagationData
profilePath
autoReplyMessage
whenChanged
countryCode
lockoutTime
lastLogon
instanceType
codePage
protocolSettings
sIDHistory
lastLogoff
replicatedObjectVersion
extensionData
msExchPreviousAccountSid
managedObjects
facsimileTelephoneNumber
streetAddress
userAccountControl
authOrigBL
sn
givenName
objectCategory
mDBUseDefaults
publicDelegates
homeMTA
textEncodedORAddress
logonHours
homeMDB msExchMailboxSecurityDescriptor
msRTCSIP-PrimaryUserAddress
pwdLastSet
publicDelegatesBL
mail
company objectSid
displayName
securityProtocol
initials
lastLogonTimestamp
mDBStorageQuota
msExchRequireAuthToSendTo
homeDirectory
objectClass
legacyExchangeDN
msExchUserAccountControll
msRTCSIP-IsMaster
userPrincipalName
mAPIRecipient
homeDrive
Thanks,
Awakenings
|
