0 Replies Latest reply on Jun 14, 2011 4:38 AM by Anthony813

    LDAP Filters

    Apprentice

      Below are a list of LDAP Filters which will allow more advanced Data Imports for Users Into LDSD

       

      Reference Table: First line is the header row.

       

      UserAccountControl_Num,Account_Status
      512,Account: Enabled
      514,Account: ACCOUNTDISABLE
      528,Account: Enabled - LOCKOUT
      530,Account: ACCOUNTDISABLE - LOCKOUT
      544,Account: Enabled - PASSWD_NOTREQD
      546,Account: ACCOUNTDISABLE - PASSWD_NOTREQD
      560,Account: Enabled - PASSWD_NOTREQD - LOCKOUT
      640,Account: Enabled - ENCRYPTED_TEXT_PWD_ALLOWED
      2048,Account: INTERDOMAIN_TRUST_ACCOUNT
      2080,Account: INTERDOMAIN_TRUST_ACCOUNT - PASSWD_NOTREQD
      4096,Account: WORKSTATION_TRUST_ACCOUNT
      8192,Account: SERVER_TRUST_ACCOUNT
      66048,Account: Enabled - DONT_EXPIRE_PASSWORD
      66050,Account: ACCOUNTDISABLE - DONT_EXPIRE_PASSWORD
      66064,Account: Enabled - DONT_EXPIRE_PASSWORD - LOCKOUT
      66066,Account: ACCOUNTDISABLE - DONT_EXPIRE_PASSWORD - LOCKOUT
      66080,Account: Enabled - DONT_EXPIRE_PASSWORD - PASSWD_NOTREQD
      66082,Account: ACCOUNTDISABLE - DONT_EXPIRE_PASSWORD - PASSWD_NOTREQD
      66176,Account: Enabled - DONT_EXPIRE_PASSWORD - ENCRYPTED_TEXT_PWD_ALLOWED
      131584,Account: Enabled - MNS_LOGON_ACCOUNT
      131586,Account: ACCOUNTDISABLE - MNS_LOGON_ACCOUNT
      131600,Account: Enabled - MNS_LOGON_ACCOUNT - LOCKOUT
      197120,Account: Enabled - MNS_LOGON_ACCOUNT - DONT_EXPIRE_PASSWORD
      532480,Account: SERVER_TRUST_ACCOUNT - TRUSTED_FOR_DELEGATION (Domain Controller)
      1049088,Account: Enabled - NOT_DELEGATED
      1049090,Account: ACCOUNTDISABLE - NOT_DELEGATED
      2097664,Account: Enabled - USE_DES_KEY_ONLY
      2687488,Account: Enabled - DONT_EXPIRE_PASSWORD - TRUSTED_FOR_DELEGATION - USE_DES_KEY_ONLY
      4194816,Account: Enabled - DONT_REQ_PREAUTH