SharePoint Server 2007 Profile Properties and their default Active Directory mappings


A couple of weeks ago a question was raised about which profile properties available in SharePoint Profile Database are mapped through to Active Directory and what fields they relate to.  After some digging around and not finding a great deal on the subject I thought Iw ould knock together a quick post detailing them.


The user Profile Database in SharePoint is a great way of utilising existing user information in other systems across a SharePoint Farm.  The Profile Database is part of the Shared Services Provider (SSP) which provides data and services for all the sites across SharePoint Farm.  If user information is stored within another system it would be a waste of time and resources to create all the data again in SharePoint.  This data so it can be imported from another directory or system and stored centrally in SharePoint and shared across the environment.  One source that is available for organisations to use is their Active Directory environment.  If the details about a user are populated within AD these can be pulled through when an profile import occurs.


Once a SSP has been created and the directory source configured for the Profile Database, SharePoint maps certain pieces of information that resides within an AD schema into the Profiles Database.  Which ones are they though?  Below is a table that references each of the properties in AD and how they are mapped through to the profiles Database.































































































Property Name


Mapped Attribute/AD Internal Property


AD Display Name


AD Property Tab


SID


objectSID


Generated on object creation


N/A


Active Directory Id


objectGuid


Generated on Object Create


N/A


Account name


<Specific to connection>


User logon Name


Account


First name


givenName


First Name


General


Last name


sn


Last Name


General


Name


displayName


Display Name


General


Work phone


telephoneNumber


Telephone Number


General


Office


physicalDeliveryOfficeName


Office


General


Department


department


Department


Organisation


Title


title


Job Title


Organisation


Manager


manager


Manager > Name


Organisation


User name


samAccountName


Generated on account creation based on users name


General


Public site redirect


wWWHomePage


Web Page


General


SIP Address


msRTCSIP-PrimaryUserAddress


Available when OCS is installed within a domain


N/A


Proxy addresses


proxyAddresses


Available when Exchange is installed within a domain


N/A


Master Account Name


msDS-SourceObjectDN


Avaialble when OCS is installed within a domain


N/A


Work e-mail


mail


E-mail


General








There are also other properties available within the profiles database as well.  These can be viewed by going to the following steps:



  • Select the Shared Service Provider

  • Select the User profiles and properties under the User Profiles and My Sites section

  • Select View profile properties under the User Profile Properties section.



rob_finney[1] 


Rob Finney
Consultant
Microsoft Consulting Services UK
robert.finney@Microsoft.com


Click here for my bio page

Comments (9)

  1. Top News Stories SharePoint as Enterprise CMS – What You Need to Know (CMS Wire) When SharePoint first

  2. MikeDipsOnSharePoint says:

    If a user updates his details through EditProfile.aspx page will this update Active Directory? If a crawl will run again to search for employees in AD, will the updated information on the SharePoint Profile Database be overwritten?

  3. Nancy says:

    Thanks for your blog.

    Is there a way to sync AD with build in Sharepoint profile????? Any help would be appreciated.

    Thanks

  4. Priyanka says:

    Is there any way by which we can map AccountName to our choice of field in AD. Bcoz account name generally displays domainusername which we dont want.

    or any way by which display name of logged in user can be changed to Full name of the user?

  5. SPDev says:

    Would anyone know how to add the "accountExpired", "lastLogonTimestamp" & "badPasswordTimestamp" AD properties to the SSP User Profile?

  6. Nick Kharchenko says:

    We have a User Catalog web part that provides an easy to use way to display, navigate and search user information. This web-part will not only show SharePoint site collection user contact information, but can also be customized to display information about users from specified AD containers. http://www.harepoint.com/…/Default.aspx

  7. Pranav says:

    Hi

    Can I get Date of birth through REST api