The following is the mapping of custom schema attributes to their intended purposes. Austin attributes have security groups that grant read or read/write access to the attributes.
Custom Attribute Availability
...
40
...
30
...
2
...
10
...
2
...
10
...
0
...
10
...
0
| Expand |
|---|
|
| Info |
|---|
Standard attributes are attributes included in the Active Directory Domain Services schema provided by Microsoft. |
|
expandName | Owner | Source | Details |
|---|
sAMAccountName |
Systems | uid | |
...
| EID System | Set by EID feed software on Group EIDs | Contains uid attribute |
|
| Expand |
|---|
| title | Austin Multi-valued Attributes |
|---|
|
...
...
Austin Multi-valued Attributes
...
EID System | Set by EID feed software on Group EIDs | Contains CN attribute from TED | utexasEduAustinMulti2 | EID System | Set by EID feed software on Group EIDs | Contains description attribute | utexasEduAustinMulti3 | EID System | Set by EID feed software on Group EIDs | Contains owner attribute from TED converted to SamAccountName | utexasEduAustinMulti4 | AD Team | Set by DeptGroupTools or DeptCloudTools websites | Contains application flags set by customers (ex. BoxGroupSync) | utexasEduAustinMulti5 | AD Team | Set by AD Team on Dynamic groups | Contains Properties string array for Update-ADGroupMembersFromQuery script. | utexasEduAustinMulti6 | AD Team | Set by AD Team on Dynamic or Managed groups | Contains DirectoryScopeId of role assignments for Update-MgDirectoryRoleAssignmentsFromAD script. | utexasEduAustinMulti9 | Mail Team | Set by Mail Team on Distribution List groups | Contains SupOrgs associated with the group for mailbox management |
|
| Expand |
|---|
| title | Austin Single-valued Attributes |
|---|
|
expand| utexasEduAustinMulti1 | Systems | (TED) cn | utexasEduAustinMulti2 | Systems | (TED) description | | utexasEduAustinMulti3 | Systems | (TED) owner | TED DN's converted to just the EID | | utexasEduAustinMulti4 | Various | Customers | Application flags (ex. BoxGroupSync) | | utexasEduAustinMulti5 | Austin AD | Customers | EIDs excluded from the group regardless of other inputs | | utexasEduAustinMulti6 | Austin AD | Customers | EIDs required to be in the group | | utexasEduAustinMulti7 | Austin AD | Customers | SupOrgCodes to be added to group | | utexasEduAustinMulti8 | Austin AD | Customers | SupOrgs to be added to group | | utexasEduAustinMulti9 | Exchange | Mail team | SupOrgs associated with the group for mailbox management | | utexasEduAustinMulti11 | Departments | Manually configured | DNs of group objects for permissions from attributes | | utexasEduAustinMulti12 | Austin AD | Permissions From Attributes | History of permissions actions on object | |
Austin Time Attributes
|
|---|
utexasEduAustinSingle1 | EID System | Set by EID feed software on Group EIDs | Contains utexasEduPersonUin attribute | utexasEduAustinSingle2 | EID System | Set by EID feed software on Group EIDs | Contains utexasEduRoleAttribute attribute | utexasEduAustinSingle3 | EID System | Set by EID feed software on Group EIDs | Contains utexasEduRoleCode attribute | utexasEduAustinSingle4 | EID System | Set by EID feed software on Group EIDs | Contains utexasEduRoleScope attribute | utexasEduAustinSingle5 | EID System | Set by EID feed software on Group EIDs | Contains utexasEduRoleSource attribute | utexasEduAustinSingle6 | EID System | Set by EID feed software on Group EIDs | Contains utexasEduTestRecordSw attribute | utexasEduAustinSingle7 | EID System | Set by EID feed software on Group EIDs | Contains utexasEduSoCode attribute split on the first space | utexasEduAustinSingle10 | AD Team | Set by AD Tools on Cloud or Managed groups | Contains EID that created the group in Department Group Tools or Department Cloud Tools | utexasEduAustinSingle11 | AD Team | Set by AD Team on Dynamic groups | Contains SearchBase string for Update-ADGroupMembersFromQuery script. | utexasEduAustinSingle12 | AD Team | Set by AD Team on Dynamic groups | Contains LDAPFilter string for Update-ADGroupMembersFromQuery script. | utexasEduAustinSingle13 | AD Team | Set by AD Team on Dynamic groups | Contains FilterScript string for Update-ADGroupMembersFromQuery script. | utexasEduAustinSingle14 | AD Team | Set by AD Team on Dynamic or Managed groups | Contains Id of application in Entra IDassociated with group and usually set by Update-MgApplicationFromAD script. | utexasEduAustinSingle15 | AD Team | Set by AD Team on Dynamic or Managed groups | Contains Id of service principal in Entra ID associated with group and usually set by Update-MgApplicationFromAD script. | utexasEduAustinSingle16 | AD Team | Set by AD Team on Dynamic or Managed groups | Contains AppId of application and service principal in Entra ID and usually set by Update-MgApplicationFromAD script. | utexasEduAustinSingle17 | AD Team | Set by AD Team on Dynamic or Managed groups | Contains AppRoleDisplayName for Update-MgAppAssignmentsFromAD script. | utexasEduAustinSingle18 | AD Team | Set by AD Team on Dynamic or Managed groups | Contains RoleDefintionDisplayName for Update-MgDirectoryRoleAssignmentsFromAD script. |
|
| Expand |
|---|
| title | Austin Time Attributes |
|---|
|
Name | Owner | Source | Details |
|---|
utexasEduAustinTime1 |
Systems | utexasEduPersonLastUpdateTime | EID System | Set by EID feed software on Group EIDs | Contains utexasEduPersonLastUpdateTime attribute | utexasEduAustinTime7 |
Austin ADGroups | Last time that ADGroups Team | Set by Update-ADGroup-SupOrgs script | Contains last time the script updated the object |
|
| Expand |
|---|
| title | Austin Boolean Attributes |
|---|
|
...
expand |
Name | Owner | Source | Details |
|---|
utexasEduAustinBool1 |
AD Team | Customers | Updates permissions on group: not set = no changes, TRUE = grant Write Member to ManagedBy, FALSE = remove Write Member for ManagedBy | utexasEduAustinBool2 | Exchange | Manually configured | Azure AD Connect "cloudFiltered" attribute - when "true" blocks synchronization to Azure AD and will remove object from Azure AD if previously synchronizedDepartments | Set manually by Department Administrators | Contains managedByToggle attribute for Update-ADGroupManagedByPermissions script. The script performs the following when the attribute has a value: When true, grants the Write Member permission to the group in the ManagedBy attribute. When false, removes the Write Member permission to the group in the ManagedBy attribute.
The script clears the attribute after performing the requested action | utexasEduAustinBool2 | Mail Team | Set manually by the Mail team | Contains cloudFiltered attribute for Entra Connect; controls object visibility to Entra ID | utexasEduAustinBool3 | Departments | Set by AD Tools on Managed groups | Contains AppRequestState attribute for the Update-MgApplicationFromAD script. When true, the script creates a new Entra application and service principal associated with the group. When false, the script disables the existing Entra application and service principal associated with the group.
The script clears the attribute after performing the requested action |
|
| Expand |
|---|
| title | Azure Multi-valued Attributes |
|---|
|
|
| Expand |
|---|
| title | Azure Single-valued Attributes |
|---|
|
|