2.218 Attribute msDS-AllowedToActOnBehalfOfOtherIdentity

This attribute is used for access checks to determine if a requestor has permission to act on the behalf of other identities to services running as this account.

 cn: ms-DS-Allowed-To-Act-On-Behalf-Of-Other-Identity
 ldapDisplayName: msDS-AllowedToActOnBehalfOfOtherIdentity
 attributeId: 1.2.840.113556.1.4.2182
 attributeSyntax: 2.5.5.15
 omSyntax: 66
 isSingleValued: TRUE
 systemOnly: TRUE
 searchFlags: 0
 rangeLower: 0
 rangeUpper: 132096
 schemaIdGuid: 3f78c3e5-f79a-46bd-a0b8-9d18116ddc79
 attributeSecurityGuid: 4c164200-20c0-11d0-a768-00aa006e0529
 systemFlags: FLAG_SCHEMA_BASE_OBJECT
 schemaFlagsEx: FLAG_ATTR_IS_CRITICAL

Version-Specific Behavior: First implemented on Windows Server 2012 operating system.