We are running Active Directory on Server 2008R2 with the Forest Function Level Server 2008R2.
Some time ago, a prior Administrator added a custom class and custom attributes for the custom class. We currently edit these attributes using ADUC's Attribute editor tab.
Now I have to add another custom attribute to the already existing custom class. Is this just as easy as going into MMC (with the schema mgmt loaded) and creating the custom attribute, then associating it to the custom class? Is that all I need to do so that the new custom attribute shows up under the "attribute Editor" in ADUC for each user? (we have our own OID tree as well)
In order to find out for myself and before breaking anything in production, I created a test environment and attempted to add a new class and some new attributes for the new class. I used the following threads to do this:
http://technet.microsoft.com/en-us/library/bb727064.aspx
http://blogs.technet.com/b/isingh/archive/2007/02/18/adding-custom-attributes-in-active-directory.aspx
I was able to successfully create a custom auxiliary class and one custom attribute for that class. The custom attribute is associated to the new class and the new class is an auxiliary class of the "user" class. Afterwards I ran "Update Schema Now" from ADSIEdit.
However I am not able to access the new attribute for any of the users in the test environment. I tried to add a new user as well, but the attribute is not on the "Attribute Editor" list in ADUC.
Please note..I did not modify the Display Specifier because we are not looking to access the attributes within the ADUC interface other than in the "Attribute Editor" list. My thinking was that once I add the attribute/class properly, that the attribute would be available to modify. However this is not the case (I'm probably wrong).
Can someone tell me what I'm doing wrong here? Should'nt I be able to see the new attribute in the ADUC attribute editor tab?