dn: CN=ms-DS-Transformation-Rules,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-TransformationRules adminDisplayName: ms-DS-Transformation-Rules adminDescription: Specifies the Transformation Rules for Cross-Forest Claims Transformation. attributeId: 1.2.840.113556.1.4.2189 attributeSyntax: 2.5.5.12 omSyntax: 64 isSingleValued: TRUE systemOnly: FALSE searchFlags: 0 schemaIdGuid:: cSuHVbLESDuuUUCV+R7GAA== showInAdvancedViewOnly: TRUE systemFlags: 16 dn: CN=ms-DS-Applies-To-Resource-Types,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-AppliesToResourceTypes adminDisplayName: ms-DS-Applies-To-Resource-Types adminDescription: For a resource property, this attribute indicates what resource types this resource property applies to. attributeId: 1.2.840.113556.1.4.2195 attributeSyntax: 2.5.5.12 omSyntax: 64 isSingleValued: FALSE systemOnly: FALSE searchFlags: 0 schemaIdGuid:: BiA/aWRXSj2EOVjwSqtLWQ== showInAdvancedViewOnly: TRUE systemFlags: 16 dn: CN=ms-DS-Transformation-Rules-Compiled,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-TransformationRulesCompiled adminDisplayName: ms-DS-Transformation-Rules-Compiled adminDescription: Blob containing compiled transformation rules. attributeId: 1.2.840.113556.1.4.2190 attributeSyntax: 2.5.5.10 omSyntax: 4 isSingleValued: TRUE systemOnly: TRUE searchFlags: 128 schemaIdGuid:: EJq0C2tTTbyicwurDdS9EA== showInAdvancedViewOnly: TRUE systemFlags: 17 dn: CN=ms-DS-Egress-Claims-Transformation-Policy,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-EgressClaimsTransformationPolicy adminDisplayName: ms-DS-Egress-Claims-Transformation-Policy adminDescription: This is a link to a Claims Transformation Policy Object for the egress claims (claims leaving this forest) to the Trusted Domain. This is applicable only for an incoming or bidirectional Cross-Forest Trust. When this link is not present, all claims are allowed to egress as-is. attributeId: 1.2.840.113556.1.4.2192 attributeSyntax: 2.5.5.1 omSyntax: 127 isSingleValued: TRUE systemOnly: FALSE searchFlags: 0 omObjectClass:: KwwCh3McAIVK schemaIdGuid:: fkI3wXOaQLCRkBsJW7QyiA== linkID: 2192 showInAdvancedViewOnly: TRUE systemFlags: 16 dn: CN=ms-DS-Ingress-Claims-Transformation-Policy,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-IngressClaimsTransformationPolicy adminDisplayName: ms-DS-Ingress-Claims-Transformation-Policy adminDescription: This is a link to a Claims Transformation Policy Object for the ingress claims (claims entering this forest) from the Trusted Domain. This is applicable only for an outgoing or bidirectional Cross-Forest Trust. If this link is absent, all the ingress claims are dropped. attributeId: 1.2.840.113556.1.4.2191 attributeSyntax: 2.5.5.1 omSyntax: 127 isSingleValued: TRUE systemOnly: FALSE searchFlags: 0 omObjectClass:: KwwCh3McAIVK schemaIdGuid:: CEwohm4MQBWLFXUUfSPSDQ== linkID: 2190 showInAdvancedViewOnly: TRUE systemFlags: 16 dn: CN=ms-DS-TDO-Egress-BL,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-TDOEgressBL adminDisplayName: ms-DS-TDO-Egress-BL adminDescription: Backlink to TDO Egress rules link on object. attributeId: 1.2.840.113556.1.4.2194 attributeSyntax: 2.5.5.1 omSyntax: 127 isSingleValued: FALSE systemOnly: TRUE searchFlags: 0 omObjectClass:: KwwCh3McAIVK schemaIdGuid:: KWIA1ROZQiKLF4N2HR4OWw== linkID: 2193 showInAdvancedViewOnly: TRUE systemFlags: 17 dn: CN=ms-DS-TDO-Ingress-BL,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-TDOIngressBL adminDisplayName: ms-DS-TDO-Ingress-BL adminDescription: Backlink to TDO Ingress rules link on object. attributeId: 1.2.840.113556.1.4.2193 attributeSyntax: 2.5.5.1 omSyntax: 127 isSingleValued: FALSE systemOnly: TRUE searchFlags: 0 omObjectClass:: KwwCh3McAIVK schemaIdGuid:: oWFWWsaXS1SAVuQw/nvFVA== linkID: 2191 showInAdvancedViewOnly: TRUE systemFlags: 17 dn: CN=ms-DS-ManagedPassword,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-ManagedPassword adminDisplayName: msDS-ManagedPassword adminDescription: This attribute is the managed password data for a group MSA. attributeId: 1.2.840.113556.1.4.2196 attributeSyntax: 2.5.5.10 omSyntax: 4 isSingleValued: TRUE systemOnly: FALSE searchFlags: 0 schemaIdGuid:: hu1i4yi3QgiyfS3qep3yGA== showInAdvancedViewOnly: TRUE systemFlags: 20 dn: CN=ms-DS-ManagedPasswordId,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-ManagedPasswordId adminDisplayName: msDS-ManagedPasswordId adminDescription: This attribute is the identifier for the current managed password data for a group MSA. attributeId: 1.2.840.113556.1.4.2197 attributeSyntax: 2.5.5.10 omSyntax: 4 isSingleValued: TRUE systemOnly: TRUE searchFlags: 0 rangeUpper: 1024 schemaIdGuid:: Wil4DtPGQAq0kdYiUf+gpg== showInAdvancedViewOnly: TRUE systemFlags: 16 dn: CN=ms-DS-GroupMSAMembership,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-GroupMSAMembership adminDisplayName: msDS-GroupMSAMembership adminDescription: This attribute is used for access checks to determine if a requestor has permission to retrieve the password for a group MSA. attributeId: 1.2.840.113556.1.4.2200 attributeSyntax: 2.5.5.15 omSyntax: 66 isSingleValued: TRUE systemOnly: FALSE searchFlags: 0 rangeUpper: 132096 schemaIdGuid:: 1u2OiATOQN+0YrilDkG6OA== showInAdvancedViewOnly: TRUE systemFlags: 16 dn: CN=ms-DS-GeoCoordinates-Altitude,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-GeoCoordinatesAltitude adminDisplayName: ms-DS-GeoCoordinates-Altitude adminDescription: ms-DS-GeoCoordinates-Altitude attributeId: 1.2.840.113556.1.4.2183 attributeSyntax: 2.5.5.16 omSyntax: 65 isSingleValued: TRUE searchFlags: 1 schemaIdGuid:: twMXoUFWnE2GPl+zMl504A== attributeSecurityGuid:: hri1d0qU0RGuvQAA+ANnwQ== showInAdvancedViewOnly: TRUE systemFlags: 16 dn: CN=ms-DS-GeoCoordinates-Latitude,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-GeoCoordinatesLatitude adminDisplayName: ms-DS-GeoCoordinates-Latitude adminDescription: ms-DS-GeoCoordinates-Latitude attributeId: 1.2.840.113556.1.4.2184 attributeSyntax: 2.5.5.16 omSyntax: 65 isSingleValued: TRUE searchFlags: 1 schemaIdGuid:: TtRm3EM99UCFxTwS4WmSfg== attributeSecurityGuid:: hri1d0qU0RGuvQAA+ANnwQ== showInAdvancedViewOnly: TRUE systemFlags: 16 dn: CN=ms-DS-GeoCoordinates-Longitude,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-GeoCoordinatesLongitude adminDisplayName: ms-DS-GeoCoordinates-Longitude adminDescription: ms-DS-GeoCoordinates-Longitude attributeId: 1.2.840.113556.1.4.2185 attributeSyntax: 2.5.5.16 omSyntax: 65 isSingleValued: TRUE searchFlags: 1 schemaIdGuid:: ECHElOS66kyFd6+BOvXaJQ== attributeSecurityGuid:: hri1d0qU0RGuvQAA+ANnwQ== showInAdvancedViewOnly: TRUE systemFlags: 16 dn: CN=ms-DS-ManagedPasswordInterval,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-ManagedPasswordInterval adminDisplayName: msDS-ManagedPasswordInterval adminDescription: This attribute is used to retrieve the number of days before a managed password is automatically changed for a group MSA. attributeId: 1.2.840.113556.1.4.2199 attributeSyntax: 2.5.5.9 omSyntax: 2 isSingleValued: TRUE systemOnly: TRUE searchFlags: 0 schemaIdGuid:: 9451+HasQ4ii7qJrTcr0CQ== showInAdvancedViewOnly: TRUE systemFlags: 16 dn: CN=ms-DS-ManagedPasswordPreviousId,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: attributeSchema ldapDisplayName: msDS-ManagedPasswordPreviousId adminDisplayName: msDS-ManagedPasswordPreviousId adminDescription: This attribute is the identifier for the previous managed password data for a group MSA. attributeId: 1.2.840.113556.1.4.2198 attributeSyntax: 2.5.5.10 omSyntax: 4 isSingleValued: TRUE systemOnly: TRUE searchFlags: 0 rangeUpper: 1024 schemaIdGuid:: MSHW0EotT9CZ2RxjZGIppA== showInAdvancedViewOnly: TRUE systemFlags: 16 dn: changetype: modify add: schemaUpdateNow schemaUpdateNow: 1 - dn: CN=ms-DS-Claims-Transformation-Policies,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: classSchema ldapDisplayName: msDS-ClaimsTransformationPolicies adminDisplayName: ms-DS-Claims-Transformation-Policies adminDescription: An object of this class holds the one set of Claims Transformation Policy for Cross-Forest Claims Transformation. governsId: 1.2.840.113556.1.5.281 objectClassCategory: 1 rdnAttId: 2.5.4.3 subClassOf: 2.5.6.0 systemPossSuperiors: 1.2.840.113556.1.3.23 schemaIdGuid:: san8yIh9T7uCekSJJ3EHYg== defaultSecurityDescriptor: D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;EA)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY) showInAdvancedViewOnly: TRUE defaultHidingValue: TRUE systemOnly: FALSE defaultObjectCategory: CN=ms-DS-Claims-Transformation-Policies,CN=Schema,CN=Configuration,DC=X systemFlags: 16 dn: CN=ms-DS-Claims-Transformation-Policy-Type,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: classSchema ldapDisplayName: msDS-ClaimsTransformationPolicyType adminDisplayName: ms-DS-Claims-Transformation-Policy-Type adminDescription: An object of this class holds the one set of Claims Transformation Policy for Cross-Forest Claims Transformation. governsId: 1.2.840.113556.1.5.280 objectClassCategory: 1 rdnAttId: 2.5.4.3 subClassOf: 2.5.6.0 systemMayContain: 1.2.840.113556.1.4.2190 systemMayContain: 1.2.840.113556.1.4.2189 systemPossSuperiors: 1.2.840.113556.1.5.281 schemaIdGuid:: s2LrLnMTRf6BATh/Fnbtxw== defaultSecurityDescriptor: D:(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;EA)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY) showInAdvancedViewOnly: TRUE defaultHidingValue: TRUE systemOnly: FALSE defaultObjectCategory: CN=ms-DS-Claims-Transformation-Policy-Type,CN=Schema,CN=Configuration,DC=X systemFlags: 16 dn: CN=Top,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaModify add: systemMayContain systemMayContain: 1.2.840.113556.1.4.2193 systemMayContain: 1.2.840.113556.1.4.2194 - dn: CN=Trusted-Domain,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaModify add: systemMayContain systemMayContain: 1.2.840.113556.1.4.2191 systemMayContain: 1.2.840.113556.1.4.2192 - dn: CN=ms-DS-Resource-Property,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaModify add: systemMayContain systemMayContain: 1.2.840.113556.1.4.2195 - dn: CN=Mail-Recipient,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaModify add: mayContain mayContain: 1.2.840.113556.1.4.2183 mayContain: 1.2.840.113556.1.4.2184 mayContain: 1.2.840.113556.1.4.2185 - dn: CN=ms-DS-Group-Managed-Service-Account,CN=Schema,CN=Configuration,DC=X changetype: ntdsSchemaAdd objectClass: classSchema ldapDisplayName: msDS-GroupManagedServiceAccount adminDisplayName: msDS-Group-Managed-Service-Account adminDescription: The group managed service account class is used to create an account which can be shared by different computers to run Windows services. governsId: 1.2.840.113556.1.5.282 objectClassCategory: 1 rdnAttId: 2.5.4.3 subClassOf: 1.2.840.113556.1.3.30 systemMustContain: 1.2.840.113556.1.4.2199 systemMayContain: 1.2.840.113556.1.4.2200 systemMayContain: 1.2.840.113556.1.4.2198 systemMayContain: 1.2.840.113556.1.4.2197 systemMayContain: 1.2.840.113556.1.4.2196 systemPossSuperiors: 1.2.840.113556.1.3.30 systemPossSuperiors: 1.2.840.113556.1.3.23 systemPossSuperiors: 2.5.6.5 systemPossSuperiors: 1.2.840.113556.1.5.67 schemaIdGuid:: ilWLe6WT90qtysAX5n8QVw== defaultSecurityDescriptor: D:(OD;;CR;00299570-246d-11d0-a768-00aa006e0529;;WD)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;AO)(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)(A;;RPCRLCLORCSDDT;;;CO)(OA;;WP;4c164200-20c0-11d0-a768-00aa006e0529;;CO)(OA;;SW;72e39547-7b18-11d1-adef-00c04fd8d5cd;;CO)(OA;;SW;f3a64788-5306-11d1-a9c5-0000f80367c1;;CO)(OA;;WP;3e0abfd0-126a-11d0-a060-00aa006c33ed;bf967a86-0de6-11d0-a285-00aa003049e2;CO)(OA;;WP;5f202010-79a5-11d0-9020-00c04fc2d4cf;bf967a86-0de6-11d0-a285-00aa003049e2;CO)(OA;;WP;bf967950-0de6-11d0-a285-00aa003049e2;bf967a86-0de6-11d0-a285-00aa003049e2;CO)(OA;;WP;bf967953-0de6-11d0-a285-00aa003049e2;bf967a86-0de6-11d0-a285-00aa003049e2;CO)(OA;;SW;f3a64788-5306-11d1-a9c5-0000f80367c1;;PS)(OA;;RPWP;77B5B886-944A-11d1-AEBD-0000F80367C1;;PS)(OA;;SW;72e39547-7b18-11d1-adef-00c04fd8d5cd;;PS)(A;;RPLCLORC;;;AU)(OA;;RPWP;bf967a7f-0de6-11d0-a285-00aa003049e2;;CA)(OA;;RP;46a9b11d-60ae-405a-b7e8-ff8a58d456d2;;S-1-5-32-560)(OA;;RP;e362ed86-b728-0842-b27d-2dea7a9df218;;WD) showInAdvancedViewOnly: TRUE defaultHidingValue: FALSE systemOnly: FALSE defaultObjectCategory: CN=ms-DS-Group-Managed-Service-Account,CN=Schema,CN=Configuration,DC=X systemFlags: 16 dn: changetype: modify add: schemaUpdateNow schemaUpdateNow: 1 - dn: CN=Schema,CN=Configuration,DC=X changeType: ntdsSchemaModify replace: objectVersion objectVersion: 51 -