Select your cookie preferences

We use essential cookies and similar tools that are necessary to provide our site and services. We use performance cookies to collect anonymous statistics, so we can understand how customers use our site and make improvements. Essential cookies cannot be deactivated, but you can choose “Customize” or “Decline” to decline performance cookies.

If you agree, AWS and approved third parties will also use cookies to provide useful site features, remember your preferences, and display relevant content, including relevant advertising. To accept or decline all non-essential cookies, choose “Accept” or “Decline.” To make more detailed choices, choose “Customize.”

Preferences
Contact Us
Feedback
AWS Documentation
Create an AWS Account
AWS Directory Service Data attributes - AWS Directory Service
Request AttributesOther Attributes

AWS Directory Service Data attributes

PDFRSS

This topic describes how to work with attributes in the AWS Directory Service Data API Reference.

Request Attributes

The following attributes must be defined in the request body parameters. For an example of how to define these attributes, see CreateGroup in the AWS Directory Service Data API Reference.

Directory Service Data attribute name LDAP display name AWS Management Console PowerShell alias Access type Object type Attribute value Searchable

DistinguishedName

distinguishedName

 Distinguished name

None

ReadOnly

User, Group

String

No

EmailAddress

mail

 Email address

EmailAddress

Creatable

User

String

Yes

Enabled

None

Enabled

Enabled

Mutable

User

Boolean

No

GivenName

givenName

 First Name

GivenName

Creatable

User

String

Yes

GroupScope

groupScope

 Group scope

None

Creatable

Group

Enum

No

GroupType

groupType

 Group type

None

Creatable

Group

Enum

No

SamAccountName

sAMAccountName

 User logon name

sAMAccountName

Creatable

User, Group

String

Yes

SID

objectSid

 User / Group security identifier (SID)

SID

ReadOnly

User, Group

String

No

Surname

sn

 Last name

Surname

Creatable

User

String

Yes

UserPrincipalName

userPrincipalName

 User principal name

UserPrincipalName

ReadOnly

User

String

No

Other Attributes

The following attributes must be defined in OtherAttributes and don't map to any request body parameters. When you define other attributes in your requests, you must specify the attribute name, data type, and the value for each attribute. For an example of how to define these attributes, see CreateUser in the AWS Directory Service Data API Reference.

Note

The names of these attributes are case insensitive when provided as inputs and the equivalent of the LDAP display name.

Directory Service Data attribute name LDAP display name AWS Management Console PowerShell alias Access type Object type Attribute value Searchable

Assistant

assistant

 Assistant

None

ReadOnly

User

String

No

Cn

cn

 Common Name

None

ReadOnly

User, Group

String

No

Co

co

 Country/region

Country

Mutable

User

String

No

Company

company

 Company

Company

Creatable

User

String

No

Department

department

 Department

Department

Creatable

User

String

No

Description

description

 Description

Description

Creatable

User, Group

String

No

DirectReports

directReports

 Direct reports

None

ReadOnly

User

String set

No

DisplayName

displayName

 Display name

DisplayName

Creatable

User, Group

String

Yes

FacsimileTelephoneNumber

facsimileTelephoneNumber

 Fax

Fax

Creatable

User, Group

String

No

HomePhone

homePhone

 Home phone number

HomePhone

Creatable

User

String

No

Info

info

 Notes

None

Mutable

User, Group

String

No

Initials

initials

 Initials

Initials

ReadOnly

User

String

No

IpPhone

ipPhone

 IP Phone

None

Mutable

User

String

No

L

l

 City

City

Creatable

User

String

Yes

Manager

manager

 Manager

Manager

Mutable

User

String

No

Mail

mail

 Email address

EmailAddress

Mutable

Group

String

Yes

Mobile

mobile

 Mobile phone number

MobilePhone

Mutable

User

String

No

ObjectClass

objectClass

 User / Group

None

ReadOnly

Group

String

No

ObjectGUID

objectGUID

 Global unique identifier (GUID)

None

ReadOnly

User, Group

String

No

Pager

pager

 Pager

None

Mutable

User

String

No

PhysicalDeliveryOfficeName

physicalDeliveryOfficeName

 Office

None

Creatable

User

String

Yes

PostalCode

postalCode

 Zip/Postal code

PostalCode

Creatable

User

String

No

PreferredLanguage

preferredLanguage

 Preferred language

None

Mutable

User

String

No

ProxyAddresses

proxyAddresses

 Proxy address

None

ReadOnly

User, Group

Multi-valued string

Yes

ServicePrincipalName

servicePrincipalName

 Service principal name

ServicePrincipalName

Mutable

User

Multi-valued string

No

St

st

 State/Province

State

Creatable

User

String

No

StreetAddress

streetAddress

 Street address

StreetAddress

Creatable

User

String

No

TelephoneNumber

telephoneNumber

 Telephone number

OfficePhone

Creatable

User

String

No

Title

title

 Job title

Title

ReadOnly

User

String

No

WhenChanged

whenChanged

 Last updated

None

ReadOnly

User, Group

String

No

WWWHomePage

wWWHomePage

 Home page URL

wWWHomePage

Mutable

User, Group

String

No

Previous topic:

Directory Service Data

Need help?

PrivacySite termsCookie preferences
© 2025, Amazon Web Services, Inc. or its affiliates. All rights reserved.