Active Directory presents two classes to define a user account object:

  • user class
  • inetOrgPerson class

Both classes can be used to create user accounts in Active Directory but inetOrgPerson class is used for specific scenarios.

What is inetOrgPerson class?

inetOrgPerson class is a class that is defined in RFC2798 (http://www.ietf.org/rfc/rfc2798.txt). In Active Directory, this class has user as a parent class.

What is the purpose of usage of inetOrgPerson class in Active Directory?

inetOrgPerson class is used by many LDAP and X.500 Directory Services to represent persons within an organization (As described in RFC2798).
It is available in Active Directory for the following reasons:

  • Compatibility of applications requiring inetOrgPerson objects with Active Directory
  • Simplify the migration of inetOrgPerson objects to Active Directory from other non-Microsoft Directory Services

How to create an inetOrgPerson Active Directory object?

You can use one of the following methods to create an inetOrgPerson Active Directory object:

  • Using Active Directory Users and Computers snap-in:

Can an inetOrgPerson object converted to a user object in Active Directory?

Yes. It is possible to convert an inetOrgPerson object to a user object in Active Directory. The reverse is also true ( http://technet.microsoft.com/fr-fr/library/dd391978(v=ws.10).aspx)

What are the available attributes in inetOrgPerson class?

The list of attributes that are available by default is listed here: http://msdn.microsoft.com/fr-fr/library/ms682282(v=VS.85).aspx