User guide
LDAP client behavior overview 223
•
User Logon Name (pre-Windows® 2000)
When a new object is created, the values entered for each of these fields is stored in a specific attribute
type within the object. In some cases, a value gets stored in more than one attribute. Some of the values
are subsequently available for viewing and modification in the Properties dialog. The following table
shows these relationships and others.
Field label in new object-
user dialog
Field label in user
properties
Active Directory
attribute type
Comments
First Name First Name givenName
Initials Initials initials
Last Name Last Name sn sn stands for surname.
Full Name Display Name DisplayName
cn
The full name is stored in two
Active Directory
attributes:displayName and cn.
cn stands for Common Name.
User Logon Name User Logon Name sAMAccount Name
This name is also used in pre-
Windows® 2000 logon name.
However, the pre-Windows®
2000 logon name might not be
stored as an attribute,
depending on the mode used to
create the Active Directory
domain (Native mode
compared to Mixed mode).
Displayed but not labeled
Displayed but not
labeled
userPrincipal Name
The default value for the UPN
attribute has the form:
<sAMAccountName>@<domai
n>
This default value can be
modified by replacing the
sAMAccountName with any
string of alphanumeric
characters and can include:
• Period (.)
• Forward slash (/)
• Backward slash (\)
• Pound (#)
• Dollar ($)
• Hat (^)
• Horizontal bar (|)
• Minus (-)
• Plus (+)
The default domain can also be
replaced with the name of any
domain that is superior to the
domain in which the object is
being created.
- - - - - E-mail mail
- - - - - - - - - - employeeID
Accessed by LDAP tool, such as
ADSI Editor.