How to add new attribute on AD Schema

Posted: September 28, 2012 in Active Directory

How to add new attribute on AD Schema




1. Generate OID. For generate OID, you must run the script for generate it. You can get the script from here:

2. After you copy and save the script with oidgen.vbs, you can run the script on cmd. Type cscript oidgen.vbs on your command prompt. Note: Please be in store this OID, because if execute again it will be changed. clip_image002
3. Go to MMC and Add/Remove snap-in. clip_image004
4. On Add Standalone Snap-in windows, choose Active Directory Schema, click Add, close, and Ok. clip_image006


5. On Console Root, right click on Attributes, choose Create Atrribute. Will be prompt warning, click Continue. clip_image010


6. On the Create New Attribute window, fill the Common Name, LDAP Display Name, Unique X500 Object ID, for Decription is optional.

On the Syntax and Range container, fill the syntax as a requirement. Click OK

7. New attribute will be display on list attribute. clip_image015
8. After add the attribute, you must add attribute on Classes. An example, i’m adding attribute into User class. Right click on User, choose Properties. clip_image017
9. On user Properties Window, click Add to add attribute into this class. clip_image019
10. Choose new attribute has been created. And then click Ok clip_image021
11. Your attribute has been done to add in user class. clip_image023
12. Now, you must Update Schema. Goto ADSI Edit, right click on your Domain, choose Update Schema Now. Please wait a few minutes. if the schema was update successfully, you will prompt adsiedit window, click Ok. clip_image025


13. Check your new attribute on one of User Classes. on this case, i’m using Administrator user for checking new attribute. Right click on CN=Administrator, choose Properties clip_image028
14. On CN=Administrator Properties you can search new attribute created. clip_image030
15. Resource


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s