Here you go:
http://support.microsoft.com/kb/909264
--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no rights.

If you mean the "Pre-Windows 2000 logon name", the following are not
allowed:

[ ] : ; | = + ? < > * "

I'm not aware of any characters that are not allowed in Common Names. The
characters above are allowed. However, if any of the following are used they
must be escaped with the backslash "\" escape character:

, \ # + < > ; " =

In addition if you use ADSI (in scripting for example) the forward slash,
"/", must also be escaped with the backslash. For example, if the Common
Name of a user is "Last, First", then in VBScript you would bind to the
object with code similar to:

Set objUser = GetObject("LDAP://cn=Last\, First,ou=West,dc=MyDomain,dc=com")

Among the characters I have tested and found to be fine in Common Names (and
elsewhere in Distinguished Names, such as the name of an OU):

* ( ) . & - _ [ ] ` ~ | @ $ % ^ & ? : |

Hello akg414s,

Have a look here:
http://www.microsoft.com/technet/prodtechnol/windows2000serv/reskit/w2000Msgs/2586.mspx?mfr=true

http://support.microsoft.com/kb/938447

Best regards

Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm