Extend Schema for LAPS purpose in Directory Service

Question

Hello,

I would like to extend the schema of the Directory Service (type: "Microsoft AD") for LAPS purposes. I mean LAPS which came with 2023 April 11 cumulative updates for Windows Server 2019 and above.
Here you can find the LAPS schema reference:
[https://learn.microsoft.com/pl-pl/windows-server/identity/laps/laps-technical-reference](https://learn.microsoft.com/pl-pl/windows-server/identity/laps/laps-technical-reference)

I need to get the LDIF file for this schema extension. I will be grateful for the information where to download such a file.

Best Regards,  
Chris

Answer

Hello Chris,

Thank you for reaching out via re:Post in regards to creating an LDIF file for your upcoming Active Directory schema extension.

While Microsoft does offer some example scripts that can be found in the following [document](https://learn.microsoft.com/en-us/windows/win32/ad/ldif-scripts?redirectedfrom=MSDN) [1], the actual LDIF file will need to be modified to meet your required schema specifications and domain name.

AWS offers a tutorial on how to expand the schema on an [AWS Managed AD](https://docs.aws.amazon.com/directoryservice/latest/admin-guide/directory_microsoft_ad.html) [2] that can be found in the following [document](https://docs.aws.amazon.com/directoryservice/latest/admin-guide/ms_ad_tutorial_extend_schema.html) [3]. The largest difference with this tutorial for a Self-Managed AD will be how the LDIF file is imported.

I hope that this helps you with your upcoming schema expansion!

REFERENCES
==========
[1] https://learn.microsoft.com/en-us/windows/win32/ad/ldif-scripts?redirectedfrom=MSDN
[2] AWS Managed Microsoft AD - https://docs.aws.amazon.com/directoryservice/latest/admin-guide/directory_microsoft_ad.html
[3] Tutorial: Extending your AWS Managed Microsoft AD schema - https://docs.aws.amazon.com/directoryservice/latest/admin-guide/ms_ad_tutorial_extend_schema.html

Extend Schema for LAPS purpose in Directory Service

REFERENCES

相關內容