source4/provision.ldif

   1 dn: @INDEXLIST
   2 @IDXATTR: name
   3 @IDXATTR: sAMAccountName
   4 @IDXATTR: objectSid
   5 @IDXATTR: objectClass
   6
   7 dn: @ATTRIBUTES
   8 name: CASE_INSENSITIVE WILDCARD
   9 sAMAccountName: CASE_INSENSITIVE WILDCARD
  10
  11 dn: @SUBCLASSES
  12 top: domain
  13 top: person
  14 top: group
  15 domain: domainDNS
  16 domain: builtinDomain
  17 person: organizationalPerson
  18 organizationalPerson: user
  19 user: computer
  20
  21 dn: ${BASEDN}
  22 objectClass: top
  23 objectClass: domain
  24 objectClass: domainDNS
  25 name: ${DOMAIN}
  26 dc: ${DOMAIN}
  27 objectGUID: ${NEWGUID}
  28 creationTime: ${NTTIME}
  29 forceLogoff: 0x8000000000000000
  30 lockoutDuration: -18000000000
  31 lockOutObservationWindow: -18000000000
  32 lockoutThreshold: 0
  33 whenCreated: ${LDAPTIME}
  34 whenChanged: ${LDAPTIME}
  35 uSNCreated: 1
  36 uSNChanged: 1
  37 maxPwdAge: -37108517437440
  38 minPwdAge: 0
  39 minPwdLength: 7
  40 modifiedCountAtLastProm: 0
  41 nextRid: 1000
  42 pwdProperties: 1
  43 pwdHistoryLength: 24
  44 objectSid: ${DOMAINSID}
  45 serverState: 1
  46 uASCompat: 1
  47 modifiedCount: 1
  48 objectCategory: CN=Domain-DNS,CN=Schema,CN=Configuration,${BASEDN}
  49 isCriticalSystemObject: TRUE
  50
  51 dn: CN=Users,${BASEDN}
  52 objectClass: top
  53 objectClass: container
  54 cn: Users
  55 description: Default container for upgraded user accounts
  56 instanceType: 4
  57 whenCreated: ${LDAPTIME}
  58 whenChanged: ${LDAPTIME}
  59 uSNCreated: 1
  60 uSNChanged: 1
  61 showInAdvancedViewOnly: FALSE
  62 name: Users
  63 objectGUID: ${NEWGUID}
  64 systemFlags: 0x8c000000
  65 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
  66 isCriticalSystemObject: TRUE
  67
  68 dn: CN=Computers,${BASEDN}
  69 objectClass: top
  70 objectClass: container
  71 cn: Computers
  72 description: Default container for upgraded computer accounts
  73 instanceType: 4
  74 whenCreated: ${LDAPTIME}
  75 whenChanged: ${LDAPTIME}
  76 uSNCreated: 1
  77 uSNChanged: 1
  78 showInAdvancedViewOnly: FALSE
  79 name: Computers
  80 objectGUID: ${NEWGUID}
  81 systemFlags: 0x8c000000
  82 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
  83 isCriticalSystemObject: TRUE
  84
  85 dn: OU=Domain Controllers,${BASEDN}
  86 objectClass: top
  87 objectClass: organizationalUnit
  88 ou: Domain Controllers
  89 description: Default container for domain controllers
  90 instanceType: 4
  91 whenCreated: ${LDAPTIME}
  92 whenChanged: ${LDAPTIME}
  93 uSNCreated: 1
  94 uSNChanged: 1
  95 showInAdvancedViewOnly: FALSE
  96 name: Domain Controllers
  97 objectGUID: ${NEWGUID}
  98 systemFlags: 0x8c000000
  99 objectCategory: CN=Organizational-Unit,CN=Schema,CN=Configuration,${BASEDN}
 100 isCriticalSystemObject: TRUE
 101
 102 dn: CN=ForeignSecurityPrincipals,${BASEDN}
 103 objectClass: top
 104 objectClass: container
 105 cn: ForeignSecurityPrincipals
 106 description: Default container for security identifiers (SIDs) associated with objects from external, trusted domains
 107 instanceType: 4
 108 whenCreated: ${LDAPTIME}
 109 whenChanged: ${LDAPTIME}
 110 uSNCreated: 1
 111 uSNChanged: 1
 112 showInAdvancedViewOnly: FALSE
 113 name: ForeignSecurityPrincipals
 114 objectGUID: ${NEWGUID}
 115 systemFlags: 0x8c000000
 116 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
 117 isCriticalSystemObject: TRUE
 118
 119 dn: CN=Builtin,${BASEDN}
 120 objectClass: top
 121 objectClass: builtinDomain
 122 cn: Builtin
 123 instanceType: 4
 124 showInAdvancedViewOnly: FALSE
 125 name: Builtin
 126 forceLogoff: 0x8000000000000000
 127 lockoutDuration: -18000000000
 128 lockOutObservationWindow: -18000000000
 129 lockoutThreshold: 0
 130 maxPwdAge: -37108517437440
 131 minPwdAge: 0
 132 minPwdLength: 0
 133 modifiedCountAtLastProm: 0
 134 nextRid: 1000
 135 pwdProperties: 0
 136 pwdHistoryLength: 0
 137 objectSid: S-1-5-32
 138 serverState: 1
 139 uASCompat: 1
 140 modifiedCount: 1
 141 objectCategory: CN=Builtin-Domain,CN=Schema,CN=Configuration,${BASEDN}
 142 isCriticalSystemObject: TRUE
 143
 144 dn: CN=Administrator,CN=Users,${BASEDN}
 145 objectClass: top
 146 objectClass: person
 147 objectClass: organizationalPerson
 148 objectClass: user
 149 cn: Administrator
 150 description: Built-in account for administering the computer/domain
 151 instanceType: 4
 152 whenCreated: ${LDAPTIME}
 153 whenChanged: ${LDAPTIME}
 154 uSNCreated: 1
 155 memberOf: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
 156 memberOf: CN=Domain Admins,CN=Users,${BASEDN}
 157 memberOf: CN=Enterprise Admins,CN=Users,${BASEDN}
 158 memberOf: CN=Schema Admins,CN=Users,${BASEDN}
 159 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
 160 uSNChanged: 1
 161 name: Administrator
 162 objectGUID: ${NEWGUID}
 163 userAccountControl: 0x10200
 164 badPwdCount: 0
 165 codePage: 0
 166 countryCode: 0
 167 badPasswordTime: 0
 168 lastLogoff: 0
 169 lastLogon: 0
 170 pwdLastSet: 0
 171 primaryGroupID: 513
 172 objectSid: ${DOMAINSID}-500
 173 adminCount: 1
 174 accountExpires: -1
 175 logonCount: 0
 176 sAMAccountName: Administrator
 177 sAMAccountType: 0x30000000
 178 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
 179 isCriticalSystemObject: TRUE
 180
 181 dn: CN=Guest,CN=Users,${BASEDN}
 182 objectClass: top
 183 objectClass: person
 184 objectClass: organizationalPerson
 185 objectClass: user
 186 cn: Guest
 187 description: Built-in account for guest access to the computer/domain
 188 instanceType: 4
 189 whenCreated: ${LDAPTIME}
 190 whenChanged: ${LDAPTIME}
 191 uSNCreated: 1
 192 memberOf: CN=Guests,CN=Builtin,${BASEDN}
 193 uSNChanged: 1
 194 name: Guest
 195 objectGUID: ${NEWGUID}
 196 userAccountControl: 0x10222
 197 badPwdCount: 0
 198 codePage: 0
 199 countryCode: 0
 200 badPasswordTime: 0
 201 lastLogoff: 0
 202 lastLogon: 0
 203 pwdLastSet: 0
 204 primaryGroupID: 514
 205 objectSid: ${DOMAINSID}-501
 206 accountExpires: -1
 207 logonCount: 0
 208 sAMAccountName: Guest
 209 sAMAccountType: 0x30000000
 210 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
 211 isCriticalSystemObject: TRUE
 212
 213 dn: CN=Administrators,CN=Builtin,${BASEDN}
 214 objectClass: top
 215 objectClass: group
 216 cn: Administrators
 217 description: Administrators have complete and unrestricted access to the computer/domain
 218 member: CN=Domain Admins,CN=Users,${BASEDN}
 219 member: CN=Enterprise Admins,CN=Users,${BASEDN}
 220 member: CN=Administrator,CN=Users,${BASEDN}
 221 instanceType: 4
 222 whenCreated: ${LDAPTIME}
 223 whenChanged: ${LDAPTIME}
 224 uSNCreated: 1
 225 uSNChanged: 1
 226 name: Administrators
 227 objectGUID: ${NEWGUID}
 228 objectSid: S-1-5-32-544
 229 adminCount: 1
 230 sAMAccountName: Administrators
 231 sAMAccountType: 0x20000000
 232 systemFlags: 0x8c000000
 233 groupType: 0x80000005
 234 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 235 isCriticalSystemObject: TRUE
 236
 237 dn: CN=Users,CN=Builtin,${BASEDN}
 238 objectClass: top
 239 objectClass: group
 240 cn: Users
 241 description: Users are prevented from making accidental or intentional system-wide changes.  Thus, Users can run certified applications, but not most legacy applications
 242 member: CN=Domain Users,CN=Users,${BASEDN}
 243 instanceType: 4
 244 whenCreated: ${LDAPTIME}
 245 whenChanged: ${LDAPTIME}
 246 uSNCreated: 1
 247 uSNChanged: 1
 248 name: Users
 249 objectGUID: ${NEWGUID}
 250 objectSid: S-1-5-32-545
 251 sAMAccountName: Users
 252 sAMAccountType: 0x20000000
 253 systemFlags: 0x8c000000
 254 groupType: 0x80000005
 255 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 256 isCriticalSystemObject: TRUE
 257
 258 dn: CN=Guests,CN=Builtin,${BASEDN}
 259 objectClass: top
 260 objectClass: group
 261 cn: Guests
 262 description: Guests have the same access as members of the Users group by default, except for the Guest account which is further restricted
 263 member: CN=Domain Guests,CN=Users,${BASEDN}
 264 member: CN=Guest,CN=Users,${BASEDN}
 265 instanceType: 4
 266 whenCreated: ${LDAPTIME}
 267 whenChanged: ${LDAPTIME}
 268 uSNCreated: 1
 269 uSNChanged: 1
 270 name: Guests
 271 objectGUID: ${NEWGUID}
 272 objectSid: S-1-5-32-546
 273 sAMAccountName: Guests
 274 sAMAccountType: 0x20000000
 275 systemFlags: 0x8c000000
 276 groupType: 0x80000005
 277 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 278 isCriticalSystemObject: TRUE
 279
 280 dn: CN=Print Operators,CN=Builtin,${BASEDN}
 281 objectClass: top
 282 objectClass: group
 283 cn: Print Operators
 284 description: Members can administer domain printers
 285 instanceType: 4
 286 whenCreated: ${LDAPTIME}
 287 whenChanged: ${LDAPTIME}
 288 uSNCreated: 1
 289 uSNChanged: 1
 290 name: Print Operators
 291 objectGUID: ${NEWGUID}
 292 objectSid: S-1-5-32-550
 293 adminCount: 1
 294 sAMAccountName: Print Operators
 295 sAMAccountType: 0x20000000
 296 systemFlags: 0x8c000000
 297 groupType: 0x80000005
 298 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 299 isCriticalSystemObject: TRUE
 300
 301 dn: CN=Backup Operators,CN=Builtin,${BASEDN}
 302 objectClass: top
 303 objectClass: group
 304 cn: Backup Operators
 305 description: Backup Operators can override security restrictions for the sole purpose of backing up or restoring files
 306 instanceType: 4
 307 whenCreated: ${LDAPTIME}
 308 whenChanged: ${LDAPTIME}
 309 uSNCreated: 1
 310 uSNChanged: 1
 311 name: Backup Operators
 312 objectGUID: ${NEWGUID}
 313 objectSid: S-1-5-32-551
 314 adminCount: 1
 315 sAMAccountName: Backup Operators
 316 sAMAccountType: 0x20000000
 317 systemFlags: 0x8c000000
 318 groupType: 0x80000005
 319 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 320 isCriticalSystemObject: TRUE
 321
 322 dn: CN=Replicator,CN=Builtin,${BASEDN}
 323 objectClass: top
 324 objectClass: group
 325 cn: Replicator
 326 description: Supports file replication in a domain
 327 instanceType: 4
 328 whenCreated: ${LDAPTIME}
 329 whenChanged: ${LDAPTIME}
 330 uSNCreated: 1
 331 uSNChanged: 1
 332 name: Replicator
 333 objectGUID: ${NEWGUID}
 334 objectSid: S-1-5-32-552
 335 adminCount: 1
 336 sAMAccountName: Replicator
 337 sAMAccountType: 0x20000000
 338 systemFlags: 0x8c000000
 339 groupType: 0x80000005
 340 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 341 isCriticalSystemObject: TRUE
 342
 343 dn: CN=Remote Desktop Users,CN=Builtin,${BASEDN}
 344 objectClass: top
 345 objectClass: group
 346 cn: Remote Desktop Users
 347 description: Members in this group are granted the right to logon remotely
 348 instanceType: 4
 349 whenCreated: ${LDAPTIME}
 350 whenChanged: ${LDAPTIME}
 351 uSNCreated: 1
 352 uSNChanged: 1
 353 name: Remote Desktop Users
 354 objectGUID: ${NEWGUID}
 355 objectSid: S-1-5-32-555
 356 sAMAccountName: Remote Desktop Users
 357 sAMAccountType: 0x20000000
 358 systemFlags: 0x8c000000
 359 groupType: 0x80000005
 360 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 361 isCriticalSystemObject: TRUE
 362
 363 dn: CN=Network Configuration Operators,CN=Builtin,${BASEDN}
 364 objectClass: top
 365 objectClass: group
 366 cn: Network Configuration Operators
 367 description: Members in this group can have some administrative privileges to manage configuration of networking features
 368 instanceType: 4
 369 whenCreated: ${LDAPTIME}
 370 whenChanged: ${LDAPTIME}
 371 uSNCreated: 1
 372 uSNChanged: 1
 373 name: Network Configuration Operators
 374 objectGUID: ${NEWGUID}
 375 objectSid: S-1-5-32-556
 376 sAMAccountName: Network Configuration Operators
 377 sAMAccountType: 0x20000000
 378 systemFlags: 0x8c000000
 379 groupType: 0x80000005
 380 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 381 isCriticalSystemObject: TRUE
 382
 383 dn: CN=Performance Monitor Users,CN=Builtin,${BASEDN}
 384 objectClass: top
 385 objectClass: group
 386 cn: Performance Monitor Users
 387 description: Members of this group have remote access to monitor this computer
 388 instanceType: 4
 389 whenCreated: ${LDAPTIME}
 390 whenChanged: ${LDAPTIME}
 391 uSNCreated: 1
 392 uSNChanged: 1
 393 name: Performance Monitor Users
 394 objectGUID: ${NEWGUID}
 395 objectSid: S-1-5-32-558
 396 sAMAccountName: Performance Monitor Users
 397 sAMAccountType: 0x20000000
 398 systemFlags: 0x8c000000
 399 groupType: 0x80000005
 400 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 401 isCriticalSystemObject: TRUE
 402
 403 dn: CN=Performance Log Users,CN=Builtin,${BASEDN}
 404 objectClass: top
 405 objectClass: group
 406 cn: Performance Log Users
 407 description: Members of this group have remote access to schedule logging of performance counters on this computer
 408 instanceType: 4
 409 whenCreated: ${LDAPTIME}
 410 whenChanged: ${LDAPTIME}
 411 uSNCreated: 1
 412 uSNChanged: 1
 413 name: Performance Log Users
 414 objectGUID: ${NEWGUID}
 415 objectSid: S-1-5-32-559
 416 sAMAccountName: Performance Log Users
 417 sAMAccountType: 0x20000000
 418 systemFlags: 0x8c000000
 419 groupType: 0x80000005
 420 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 421 isCriticalSystemObject: TRUE
 422
 423 dn: CN=${HOSTNAME},OU=Domain Controllers,${BASEDN}
 424 objectClass: top
 425 objectClass: person
 426 objectClass: organizationalPerson
 427 objectClass: user
 428 objectClass: computer
 429 cn: ${HOSTNAME}
 430 instanceType: 4
 431 whenCreated: ${LDAPTIME}
 432 whenChanged: ${LDAPTIME}
 433 uSNCreated: 1
 434 uSNChanged: 1
 435 name: ${HOSTNAME}
 436 objectGUID: ${NEWGUID}
 437 userAccountControl: 532480
 438 badPwdCount: 0
 439 codePage: 0
 440 countryCode: 0
 441 badPasswordTime: 0
 442 lastLogoff: 0
 443 lastLogon: 127273269057298624
 444 localPolicyFlags: 0
 445 pwdLastSet: 127258826171655328
 446 primaryGroupID: 516
 447 objectSid: ${DOMAINSID}-1000
 448 accountExpires: 9223372036854775807
 449 logonCount: 30
 450 sAMAccountName: ${HOSTNAME}$
 451 sAMAccountType: 805306369
 452 operatingSystem: Samba
 453 operatingSystemVersion: 4.0
 454 dNSHostName: ${DNSNAME}
 455 objectCategory: CN=Computer,CN=Schema,CN=Configuration,${BASEDN}
 456 isCriticalSystemObject: TRUE
 457
 458 dn: CN=krbtgt,CN=Users,${BASEDN}
 459 objectClass: top
 460 objectClass: person
 461 objectClass: organizationalPerson
 462 objectClass: user
 463 cn: krbtgt
 464 description: Key Distribution Center Service Account
 465 instanceType: 4
 466 whenCreated: ${LDAPTIME}
 467 whenChanged: ${LDAPTIME}
 468 uSNCreated: 1
 469 uSNChanged: 1
 470 showInAdvancedViewOnly: TRUE
 471 name: krbtgt
 472 objectGUID: ${NEWGUID}
 473 userAccountControl: 514
 474 badPwdCount: 0
 475 codePage: 0
 476 countryCode: 0
 477 badPasswordTime: 0
 478 lastLogoff: 0
 479 lastLogon: 0
 480 pwdLastSet: 127258826179466560
 481 primaryGroupID: 513
 482 objectSid: ${DOMAINSID}-502
 483 adminCount: 1
 484 accountExpires: 9223372036854775807
 485 logonCount: 0
 486 sAMAccountName: krbtgt
 487 sAMAccountType: 805306368
 488 servicePrincipalName: kadmin/changepw
 489 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
 490 isCriticalSystemObject: TRUE
 491
 492 dn: CN=Domain Computers,CN=Users,${BASEDN}
 493 objectClass: top
 494 objectClass: group
 495 cn: Domain Computers
 496 description: All workstations and servers joined to the domain
 497 instanceType: 4
 498 whenCreated: ${LDAPTIME}
 499 whenChanged: ${LDAPTIME}
 500 uSNCreated: 1
 501 uSNChanged: 1
 502 name: Domain Computers
 503 objectGUID: ${NEWGUID}
 504 objectSid: ${DOMAINSID}-515
 505 sAMAccountName: Domain Computers
 506 sAMAccountType: 268435456
 507 groupType: -2147483646
 508 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 509 isCriticalSystemObject: TRUE
 510
 511 dn: CN=Domain Controllers,CN=Users,${BASEDN}
 512 objectClass: top
 513 objectClass: group
 514 cn: Domain Controllers
 515 description: All domain controllers in the domain
 516 instanceType: 4
 517 whenCreated: ${LDAPTIME}
 518 whenChanged: ${LDAPTIME}
 519 uSNCreated: 1
 520 uSNChanged: 1
 521 name: Domain Controllers
 522 objectGUID: ${NEWGUID}
 523 objectSid: ${DOMAINSID}-516
 524 adminCount: 1
 525 sAMAccountName: Domain Controllers
 526 sAMAccountType: 268435456
 527 groupType: -2147483646
 528 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 529 isCriticalSystemObject: TRUE
 530
 531 dn: CN=Schema Admins,CN=Users,${BASEDN}
 532 objectClass: top
 533 objectClass: group
 534 cn: Schema Admins
 535 description: Designated administrators of the schema
 536 member: CN=Administrator,CN=Users,${BASEDN}
 537 instanceType: 4
 538 whenCreated: ${LDAPTIME}
 539 whenChanged: ${LDAPTIME}
 540 uSNCreated: 1
 541 uSNChanged: 1
 542 name: Schema Admins
 543 objectGUID: ${NEWGUID}
 544 objectSid: ${DOMAINSID}-518
 545 adminCount: 1
 546 sAMAccountName: Schema Admins
 547 sAMAccountType: 268435456
 548 groupType: -2147483646
 549 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 550 isCriticalSystemObject: TRUE
 551
 552 dn: CN=Enterprise Admins,CN=Users,${BASEDN}
 553 objectClass: top
 554 objectClass: group
 555 cn: Enterprise Admins
 556 description: Designated administrators of the enterprise
 557 member: CN=Administrator,CN=Users,${BASEDN}
 558 instanceType: 4
 559 whenCreated: ${LDAPTIME}
 560 whenChanged: ${LDAPTIME}
 561 uSNCreated: 1
 562 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
 563 uSNChanged: 1
 564 name: Enterprise Admins
 565 objectGUID: ${NEWGUID}
 566 objectSid: ${DOMAINSID}-519
 567 adminCount: 1
 568 sAMAccountName: Enterprise Admins
 569 sAMAccountType: 268435456
 570 groupType: -2147483646
 571 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 572 isCriticalSystemObject: TRUE
 573
 574 dn: CN=Cert Publishers,CN=Users,${BASEDN}
 575 objectClass: top
 576 objectClass: group
 577 cn: Cert Publishers
 578 description: Members of this group are permitted to publish certificates to the Active Directory
 579 instanceType: 4
 580 whenCreated: ${LDAPTIME}
 581 whenChanged: ${LDAPTIME}
 582 uSNCreated: 1
 583 uSNChanged: 1
 584 name: Cert Publishers
 585 objectGUID: ${NEWGUID}
 586 objectSid: ${DOMAINSID}-517
 587 sAMAccountName: Cert Publishers
 588 sAMAccountType: 0x20000000
 589 groupType: -2147483644
 590 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 591 isCriticalSystemObject: TRUE
 592
 593 dn: CN=Domain Admins,CN=Users,${BASEDN}
 594 objectClass: top
 595 objectClass: group
 596 cn: Domain Admins
 597 description: Designated administrators of the domain
 598 member: CN=Administrator,CN=Users,${BASEDN}
 599 instanceType: 4
 600 whenCreated: ${LDAPTIME}
 601 whenChanged: ${LDAPTIME}
 602 uSNCreated: 1
 603 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
 604 uSNChanged: 1
 605 name: Domain Admins
 606 objectGUID: ${NEWGUID}
 607 objectSid: ${DOMAINSID}-512
 608 adminCount: 1
 609 sAMAccountName: Domain Admins
 610 sAMAccountType: 268435456
 611 groupType: -2147483646
 612 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 613 isCriticalSystemObject: TRUE
 614
 615 dn: CN=Domain Users,CN=Users,${BASEDN}
 616 objectClass: top
 617 objectClass: group
 618 cn: Domain Users
 619 description: All domain users
 620 instanceType: 4
 621 whenCreated: ${LDAPTIME}
 622 whenChanged: ${LDAPTIME}
 623 uSNCreated: 1
 624 memberOf: CN=Users,CN=Builtin,${BASEDN}
 625 uSNChanged: 1
 626 name: Domain Users
 627 objectGUID: ${NEWGUID}
 628 objectSid: ${DOMAINSID}-513
 629 sAMAccountName: Domain Users
 630 sAMAccountType: 268435456
 631 groupType: -2147483646
 632 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 633 isCriticalSystemObject: TRUE
 634
 635 dn: CN=Domain Guests,CN=Users,${BASEDN}
 636 objectClass: top
 637 objectClass: group
 638 cn: Domain Guests
 639 description: All domain guests
 640 instanceType: 4
 641 whenCreated: ${LDAPTIME}
 642 whenChanged: ${LDAPTIME}
 643 uSNCreated: 1
 644 memberOf: CN=Guests,CN=Builtin,${BASEDN}
 645 uSNChanged: 1
 646 name: Domain Guests
 647 objectGUID: ${NEWGUID}
 648 objectSid: ${DOMAINSID}-514
 649 sAMAccountName: Domain Guests
 650 sAMAccountType: 268435456
 651 groupType: -2147483646
 652 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 653 isCriticalSystemObject: TRUE
 654
 655 dn: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
 656 objectClass: top
 657 objectClass: group
 658 cn: Group Policy Creator Owners
 659 description: Members in this group can modify group policy for the domain
 660 member: CN=Administrator,CN=Users,${BASEDN}
 661 instanceType: 4
 662 whenCreated: ${LDAPTIME}
 663 whenChanged: ${LDAPTIME}
 664 uSNCreated: 1
 665 uSNChanged: 1
 666 name: Group Policy Creator Owners
 667 objectGUID: ${NEWGUID}
 668 objectSid: ${DOMAINSID}-520
 669 sAMAccountName: Group Policy Creator Owners
 670 sAMAccountType: 268435456
 671 groupType: -2147483646
 672 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 673 isCriticalSystemObject: TRUE
 674
 675 dn: CN=RAS and IAS Servers,CN=Users,${BASEDN}
 676 objectClass: top
 677 objectClass: group
 678 cn: RAS and IAS Servers
 679 description: Servers in this group can access remote access properties of users
 680 instanceType: 4
 681 whenCreated: ${LDAPTIME}
 682 whenChanged: ${LDAPTIME}
 683 uSNCreated: 1
 684 uSNChanged: 1
 685 name: RAS and IAS Servers
 686 objectGUID: ${NEWGUID}
 687 objectSid: ${DOMAINSID}-553
 688 sAMAccountName: RAS and IAS Servers
 689 sAMAccountType: 0x20000000
 690 groupType: -2147483644
 691 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 692 isCriticalSystemObject: TRUE
 693
 694 dn: CN=Server Operators,CN=Builtin,${BASEDN}
 695 objectClass: top
 696 objectClass: group
 697 cn: Server Operators
 698 description: Members can administer domain servers
 699 instanceType: 4
 700 whenCreated: ${LDAPTIME}
 701 whenChanged: ${LDAPTIME}
 702 uSNCreated: 1
 703 uSNChanged: 1
 704 name: Server Operators
 705 objectGUID: ${NEWGUID}
 706 objectSid: S-1-5-32-549
 707 adminCount: 1
 708 sAMAccountName: Server Operators
 709 sAMAccountType: 0x20000000
 710 systemFlags: 0x8c000000
 711 groupType: 0x80000005
 712 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 713 isCriticalSystemObject: TRUE
 714
 715 dn: CN=Account Operators,CN=Builtin,${BASEDN}
 716 objectClass: top
 717 objectClass: group
 718 cn: Account Operators
 719 description: Members can administer domain user and group accounts
 720 instanceType: 4
 721 whenCreated: ${LDAPTIME}
 722 whenChanged: ${LDAPTIME}
 723 uSNCreated: 1
 724 uSNChanged: 1
 725 name: Account Operators
 726 objectGUID: ${NEWGUID}
 727 objectSid: S-1-5-32-548
 728 adminCount: 1
 729 sAMAccountName: Account Operators
 730 sAMAccountType: 0x20000000
 731 systemFlags: 0x8c000000
 732 groupType: 0x80000005
 733 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
 734 isCriticalSystemObject: TRUE