(AAD) Schema - utexasAux class

The following is the defined members of the utexasAux class. This class contains the custom schema attributes defined in the Austin Active Directory.

Custom Attribute Availability

Attribute Type	Total
Single-valued String	30
Multi-valued String	60
Time	30

Single Valued Attributes

Name	OID	Owner	Purpose	Security Groups
utexasEduAustinSingle1	1.3.6.1.4.1.17940.3.5.1.1	Systems	eduPersonPrimaryAffiliation	AUSTIN-Single1-R / RW
utexasEduAustinSingle2	1.3.6.1.4.1.17940.3.5.1.2	Systems	utexasEduPersonAuthnLockTypeCode	AUSTIN-Single2-R / RW
utexasEduAustinSingle3	1.3.6.1.4.1.17940.3.5.1.3	Systems	mail	AUSTIN-Single3-R / RW
utexasEduAustinSingle4	1.3.6.1.4.1.17940.3.5.1.4	Systems	inetUserStatus	AUSTIN-Single4-R / RW
utexasEduAustinSingle5	1.3.6.1.4.1.17940.3.5.1.5	Systems	utexasEduPersonForcePasswdChg	AUSTIN-Single5-R / RW
utexasEduAustinSingle6	1.3.6.1.4.1.17940.3.5.1.6	Systems	displayName	AUSTIN-Single6-R / RW
utexasEduAustinSingle7	1.3.6.1.4.1.17940.3.5.1.7	Systems	utexasEduPersonHighestDegree	AUSTIN-Single7-R / RW
utexasEduAustinSingle8	1.3.6.1.4.1.17940.3.5.1.8	Systems	utexasEduPersonPrimaryOrgUnitName	AUSTIN-Single8-R / RW
utexasEduAustinSingle9	1.3.6.1.4.1.17940.3.5.1.9	Systems	utexasEduPersonPrimaryTitle	AUSTIN-Single9-R / RW
utexasEduAustinSingle10	1.3.6.1.4.1.17940.3.5.1.10	Systems	AD Tools - EID that created the account	AUSTIN-Single10-R / RW
utexasEduAustinSingle11	1.3.6.1.4.1.17940.3.5.1.11	Systems	AD Tools - EID that last set the assignee(s) on the account	AUSTIN-Single11-R / RW
utexasEduAustinSingle12	1.3.6.1.4.1.17940.3.5.1.12	Systems	AD Tools - EID that last claimed the account	AUSTIN-Single12-R / RW
utexasEduAustinSingle13	1.3.6.1.4.1.17940.3.5.1.13	Systems	AD Tools - Account type (user or service)	AUSTIN-Single13-R / RW
utexasEduAustinSingle14	1.3.6.1.4.1.17940.3.5.1.14	IAM	utexasPersonEduRoleSource	AUSTIN-Single14-R / RW
utexasEduAustinSingle15	1.3.6.1.4.1.17940.3.5.1.15	IAM	utexasPersonEduRoleCode	AUSTIN-Single15-R / RW
utexasEduAustinSingle16	1.3.6.1.4.1.17940.3.5.1.16	IAM	utexasPersonEduRoleAttribute	AUSTIN-Single16-R / RW
utexasEduAustinSingle17	1.3.6.1.4.1.17940.3.5.1.17	Systems	Exchange provisioning tool - mark user objects which should not be auto-provisioned	AUSTIN-Single17-R / RW
utexasEduAustinSingle18	1.3.6.1.4.1.17940.3.5.1.18	Systems	Exchange provisioning tool - eduPersonPrimaryOrgUnitDN	AUSTIN-Single18-R / RW
utexasEduAustinSingle19	1.3.6.1.4.1.17940.3.5.1.19	Systems	Exchange user-defined display name	AUSTIN-Single19-R / RW
utexasEduAustinSingle20	1.3.6.1.4.1.17940.3.5.1.20		eduPersonOrgDN	AUSTIN-Single20-R / RW
utexasEduAustinSingle21	1.3.6.1.4.1.17940.3.5.1.21		eduPersonTargetedID	AUSTIN-Single21-R / RW
utexasEduAustinSingle22	1.3.6.1.4.1.17940.3.5.1.22		preferredLanguage	AUSTIN-Single22-R / RW
utexasEduAustinSingle23	1.3.6.1.4.1.17940.3.5.1.23		utexasEduPersonBirthDate	AUSTIN-Single23-R / RW
utexasEduAustinSingle24	1.3.6.1.4.1.17940.3.5.1.24		utexasEduPersonClassification	AUSTIN-Single24-R / RW
utexasEduAustinSingle25	1.3.6.1.4.1.17940.3.5.1.25		utexasEduPersonClassificationCode	AUSTIN-Single25-R / RW
utexasEduAustinSingle26	1.3.6.1.4.1.17940.3.5.1.26		utexasEduPersonEidClass	AUSTIN-Single26-R / RW
utexasEduAustinSingle27	1.3.6.1.4.1.17940.3.5.1.27		utPersonBID	AUSTIN-Single27-R / RW
utexasEduAustinSingle28	1.3.6.1.4.1.17940.3.5.1.28	BACS	facility code	AUSTIN-Single28-R / RW
utexasEduAustinSingle29	1.3.6.1.4.1.17940.3.5.1.29	BACS	badge ID	AUSTIN-Single29-R / RW
utexasEduAustinSingle30	1.3.6.1.4.1.17940.3.5.1.30			AUSTIN-Single30-R / RW

Multi Valued Attributes

Name	OID	Owner	Purpose	Security Groups
utexasEduAustinMulti1	1.3.6.1.4.1.17940.3.5.2.1	Systems	utexasEduPersonEntitlementCode	AUSTIN-Multi1-R / RW
utexasEduAustinMulti2	1.3.6.1.4.1.17940.3.5.2.2	Systems	utexasEduPersonAffCode	AUSTIN-Multi2-R / RW
utexasEduAustinMulti3	1.3.6.1.4.1.17940.3.5.2.3	Systems	utexasEduPersonRecordRestrict	AUSTIN-Multi3-R / RW
utexasEduAustinMulti4	1.3.6.1.4.1.17940.3.5.2.4	Systems	facsimileTelephoneNumber	AUSTIN-Multi4-R / RW
utexasEduAustinMulti5	1.3.6.1.4.1.17940.3.5.2.5	Systems	utexasEduPersonOfficeLocation	AUSTIN-Multi5-R / RW
utexasEduAustinMulti6	1.3.6.1.4.1.17940.3.5.2.6	Systems	utexasEduPersonCampusMailCode	AUSTIN-Multi6-R / RW
utexasEduAustinMulti7	1.3.6.1.4.1.17940.3.5.2.7	Systems	telephoneNumber (office)	AUSTIN-Multi7-R / RW
utexasEduAustinMulti8	1.3.6.1.4.1.17940.3.5.2.8	Systems	title	AUSTIN-Multi8-R / RW
utexasEduAustinMulti9	1.3.6.1.4.1.17940.3.5.2.9	Systems	utexasEduPersonAffiliation	AUSTIN-Multi9-R / RW
utexasEduAustinMulti10	1.3.6.1.4.1.17940.3.5.2.10	Systems	utexasEduPersonAttrRestrict	AUSTIN-Multi10-R / RW
utexasEduAustinMulti11	1.3.6.1.4.1.17940.3.5.2.11	Systems	utexasEduPersonOrgUnitName	AUSTIN-Multi11-R / RW
utexasEduAustinMulti12	1.3.6.1.4.1.17940.3.5.2.12	Systems	manager (stored as EID, AD DN of EID in actual manager attribute)	AUSTIN-Mult12-R / RW
utexasEduAustinMulti13	1.3.6.1.4.1.17940.3.5.2.13	Systems	homePhone	AUSTIN-Multi13-R / RW
utexasEduAustinMulti14	1.3.6.1.4.1.17940.3.5.2.14	Systems	AD Tools - EID(s) assigned to account	AUSTIN-Multi14-R / RW
utexasEduAustinMulti15	1.3.6.1.4.1.17940.3.5.2.15	Systems	Exchange provisioning tool - eduPersonOrgUnitDN	AUSTIN-Multi15-R / RW
utexasEduAustinMulti16	1.3.6.1.4.1.17940.3.5.2.16	Systems	AD Tools - Update Security Group Members	AUSTIN-Multi16-R / RW
utexasEduAustinMulti17	1.3.6.1.4.1.17940.3.5.2.17		cn	AUSTIN-Multi17-R / RW
utexasEduAustinMulti18	1.3.6.1.4.1.17940.3.5.2.18		eduPersonAffiliation	AUSTIN-Multi18-R / RW
utexasEduAustinMulti19	1.3.6.1.4.1.17940.3.5.2.19		eduPersonEntitlement	AUSTIN-Multi19-R / RW
utexasEduAustinMulti20	1.3.6.1.4.1.17940.3.5.2.20		generationQualifier	AUSTIN-Multi20-R / RW
utexasEduAustinMulti21	1.3.6.1.4.1.17940.3.5.2.21		givenName	AUSTIN-Multi21-R / RW
utexasEduAustinMulti22	1.3.6.1.4.1.17940.3.5.2.22		homePostalAddress	AUSTIN-Multi22-R / RW
utexasEduAustinMulti23	1.3.6.1.4.1.17940.3.5.2.23		initials	AUSTIN-Multi23-R / RW
utexasEduAustinMulti24	1.3.6.1.4.1.17940.3.5.2.24			AUSTIN-Multi24-R / RW
utexasEduAustinMulti25	1.3.6.1.4.1.17940.3.5.2.25			AUSTIN-Multi25-R / RW
utexasEduAustinMulti26	1.3.6.1.4.1.17940.3.5.2.26		postalAddress	AUSTIN-Multi26-R / RW
utexasEduAustinMulti27	1.3.6.1.4.1.17940.3.5.2.27		sn	AUSTIN-Multi27-R / RW
utexasEduAustinMulti28	1.3.6.1.4.1.17940.3.5.2.28			AUSTIN-Multi28-R / RW
utexasEduAustinMulti29	1.3.6.1.4.1.17940.3.5.2.29			AUSTIN-Multi29-R / RW
utexasEduAustinMulti30	1.3.6.1.4.1.17940.3.5.2.30			AUSTIN-Multi30-R / RW
utexasEduAustinMulti31	1.3.6.1.4.1.17940.3.5.2.31		utexasEduPersonAssociatedSchoolCode	AUSTIN-Multi31-R / RW
utexasEduAustinMulti32	1.3.6.1.4.1.17940.3.5.2.32		utexasEduPersonClassUniqueNbr	AUSTIN-Multi32-R / RW
utexasEduAustinMulti33	1.3.6.1.4.1.17940.3.5.2.33		utexasEduPersonGraduationSem	AUSTIN-Multi33-R / RW
utexasEduAustinMulti34	1.3.6.1.4.1.17940.3.5.2.34		utexasEduPersonJobClassCategory	AUSTIN-Multi34-R / RW
utexasEduAustinMulti35	1.3.6.1.4.1.17940.3.5.2.35		utexasEduPersonJobClassCategoryCode	AUSTIN-Multi35-R / RW
utexasEduAustinMulti36	1.3.6.1.4.1.17940.3.5.2.36		utexasEduPersonJobClassCode	AUSTIN-Multi36-R / RW
utexasEduAustinMulti37	1.3.6.1.4.1.17940.3.5.2.37		utexasEduPersonMajor	AUSTIN-Multi37-R / RW
utexasEduAustinMulti38	1.3.6.1.4.1.17940.3.5.2.38		utexasEduPersonMajorCode	AUSTIN-Multi38-R / RW
utexasEduAustinMulti39	1.3.6.1.4.1.17940.3.5.2.39		utexasEduPersonMajorDept	AUSTIN-Multi39-R / RW
utexasEduAustinMulti40	1.3.6.1.4.1.17940.3.5.2.40		utexasEduPersonMajorDeptCode	AUSTIN-Multi40-R / RW
utexasEduAustinMulti41	1.3.6.1.4.1.17940.3.5.2.41		utexasEduPersonSchool	AUSTIN-Multi41-R / RW
utexasEduAustinMulti42	1.3.6.1.4.1.17940.3.5.2.42		utexasEduPersonSchoolCode	AUSTIN-Multi42-R / RW
utexasEduAustinMulti43	1.3.6.1.4.1.17940.3.5.2.43		utexasEduPersonSchoolMajorCode	AUSTIN-Multi43-R / RW
utexasEduAustinMulti44	1.3.6.1.4.1.17940.3.5.2.44			AUSTIN-Multi44-R / RW
utexasEduAustinMulti45	1.3.6.1.4.1.17940.3.5.2.45			AUSTIN-Multi45-R / RW
utexasEduAustinMulti46	1.3.6.1.4.1.17940.3.5.2.46			AUSTIN-Multi46-R / RW
utexasEduAustinMulti47	1.3.6.1.4.1.17940.3.5.2.47			AUSTIN-Multi47-R / RW
utexasEduAustinMulti48	1.3.6.1.4.1.17940.3.5.2.48			AUSTIN-Multi48-R / RW
utexasEduAustinMulti49	1.3.6.1.4.1.17940.3.5.2.49			AUSTIN-Multi49-R / RW
utexasEduAustinMulti50	1.3.6.1.4.1.17940.3.5.2.50			AUSTIN-Multi50-R / RW
utexasEduAustinMulti51	1.3.6.1.4.1.17940.3.5.2.51			AUSTIN-Multi51-R / RW
utexasEduAustinMulti52	1.3.6.1.4.1.17940.3.5.2.52			AUSTIN-Multi52-R / RW
utexasEduAustinMulti53	1.3.6.1.4.1.17940.3.5.2.53			AUSTIN-Multi53-R / RW
utexasEduAustinMulti54	1.3.6.1.4.1.17940.3.5.2.54			AUSTIN-Multi54-R / RW
utexasEduAustinMulti55	1.3.6.1.4.1.17940.3.5.2.55			AUSTIN-Multi55-R / RW
utexasEduAustinMulti56	1.3.6.1.4.1.17940.3.5.2.56			AUSTIN-Multi56-R / RW
utexasEduAustinMulti57	1.3.6.1.4.1.17940.3.5.2.57			AUSTIN-Multi57-R / RW
utexasEduAustinMulti58	1.3.6.1.4.1.17940.3.5.2.58			AUSTIN-Multi58-R / RW
utexasEduAustinMulti59	1.3.6.1.4.1.17940.3.5.2.59			AUSTIN-Multi59-R / RW
utexasEduAustinMulti60	1.3.6.1.4.1.17940.3.5.2.60			AUSTIN-Multi60-R / RW

Time Attributes

Name	OID	Owner	Purpose	Security Groups
utexasEduAustinTime1	1.3.6.1.4.1.17940.3.5.3.1	Systems	Last time a utexasEduPersonEntitlementCode change was received	AUSTIN-Time1-R / RW
utexasEduAustinTime2	1.3.6.1.4.1.17940.3.5.3.2	Systems	Last time a utexasEduPersonAffCode change was received	AUSTIN-Time2-R / RW
utexasEduAustinTime3	1.3.6.1.4.1.17940.3.5.3.3	Systems	Last time the EID has been enabled or disabled	AUSTIN-Time3-R / RW
utexasEduAustinTime4	1.3.6.1.4.1.17940.3.5.3.4	Systems	utexasEduPersonLastUpdateTime	AUSTIN-Time4-R / RW
utexasEduAustinTime5	1.3.6.1.4.1.17940.3.5.3.5	Systems	AD Tools - When the account was assigned	AUSTIN-Time5-R / RW
utexasEduAustinTime6	1.3.6.1.4.1.17940.3.5.3.6	Systems	AD Tools - When the account was claimed	AUSTIN-Time6-R / RW

Commands to set permissions for security groups

# set scope
Import-Module ActiveDirectory
$attributes = 1..30
$grouptypes = "Single","Multi","Time"
$ad = Get-ADDomain
$dc = $ad.PDCEmulator.ToLower()
$ou = "'\\" + $dc + "\OU=People," + $ad.DistinguishedName + "'"
foreach ($attr in $attributes) {
	foreach ($group in $grouptypes) {
		$groupAttr = $group + $attr
		# Check for existing groups; create groups if missing
		Try {
			Get-ADGroup ("AUSTIN-" + $groupAttr + "-R") | Out-Null
			Write-host "Existing group for" ($ad.NetBIOSName + "\AUSTIN-" + $groupAttr + "-R")
		}
		Catch {
			Write-Host "Creating group for" ($ad.NetBIOSName + "\AUSTIN-" + $groupAttr + "-R")
			New-ADGroup -Server $dc -Path ("OU=Attributes,OU=Austin,OU=Departments," +  $ad.DistinguishedName) -GroupScope Universal -Name ("AUSTIN-" + $groupAttr + "-R") | Out-Null
		}
		Try {
			Get-ADGroup ("AUSTIN-" + $groupAttr + "-RW") | Out-Null
			Write-host "Existing group for" ($ad.NetBIOSName + "\AUSTIN-" + $groupAttr + "-RW")
		}
		Catch {
			Write-Host "Creating group for" ($ad.NetBIOSName + "\AUSTIN-" + $groupAttr + "-RW")
			New-ADGroup -Server $dc -Path ("OU=Attributes,OU=Austin,OU=Departments," +  $ad.DistinguishedName) -GroupScope Universal -Name ("AUSTIN-" + $groupAttr + "-RW") | Out-Null
		}
		# Remove and reset permissions for groups
		Write-Host "Setting rights for" ($ad.NetBIOSName + "\AUSTIN-" + $groupAttr + "-R")
		Invoke-Expression ("C:\Windows\System32\dsacls.exe " + $ou + " /R '" + $ad.NetBIOSName + "\AUSTIN-" + $groupAttr + "-R'") | Out-Null
		Invoke-Expression ("C:\Windows\System32\dsacls.exe " + $ou + " /I:S /G '" + $ad.NetBIOSName + "\AUSTIN-" + $groupAttr + "-R:CARP;utexasEduAustin" + $groupAttr + ";'") | Out-Null
		Write-Host "Setting rights for" ($ad.NetBIOSName + "\AUSTIN-" + $groupAttr + "-RW")
		Invoke-Expression ("C:\Windows\System32\dsacls.exe " + $ou + " /R '" + $ad.NetBIOSName + "\AUSTIN-" + $groupAttr + "-RW'") | Out-Null
		Invoke-Expression ("C:\Windows\System32\dsacls.exe " + $ou + " /I:S /G '" + $ad.NetBIOSName + "\AUSTIN-" + $groupAttr + "-RW:CARPWP;utexasEduAustin" + $groupAttr + ";'") | Out-Null
	}
}