3 @IDXATTR: sAMAccountName
8 name: CASE_INSENSITIVE WILDCARD
9 sAMAccountName: CASE_INSENSITIVE WILDCARD
17 person: organizationalPerson
18 organizationalPerson: user
24 objectClass: domainDNS
27 objectGUID: ${NEWGUID}
28 creationTime: ${NTTIME}
29 forceLogoff: 0x8000000000000000
30 lockoutDuration: -18000000000
31 lockOutObservationWindow: -18000000000
33 whenCreated: ${LDAPTIME}
34 whenChanged: ${LDAPTIME}
37 maxPwdAge: -37108517437440
40 modifiedCountAtLastProm: 0
44 objectSid: ${DOMAINSID}
48 objectCategory: CN=Domain-DNS,CN=Schema,CN=Configuration,${BASEDN}
49 isCriticalSystemObject: TRUE
51 dn: CN=Users,${BASEDN}
53 objectClass: container
55 description: Default container for upgraded user accounts
57 whenCreated: ${LDAPTIME}
58 whenChanged: ${LDAPTIME}
61 showInAdvancedViewOnly: FALSE
63 objectGUID: ${NEWGUID}
64 systemFlags: 0x8c000000
65 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
66 isCriticalSystemObject: TRUE
68 dn: CN=Computers,${BASEDN}
70 objectClass: container
72 description: Default container for upgraded computer accounts
74 whenCreated: ${LDAPTIME}
75 whenChanged: ${LDAPTIME}
78 showInAdvancedViewOnly: FALSE
80 objectGUID: ${NEWGUID}
81 systemFlags: 0x8c000000
82 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
83 isCriticalSystemObject: TRUE
85 dn: OU=Domain Controllers,${BASEDN}
87 objectClass: organizationalUnit
88 ou: Domain Controllers
89 description: Default container for domain controllers
91 whenCreated: ${LDAPTIME}
92 whenChanged: ${LDAPTIME}
95 showInAdvancedViewOnly: FALSE
96 name: Domain Controllers
97 objectGUID: ${NEWGUID}
98 systemFlags: 0x8c000000
99 objectCategory: CN=Organizational-Unit,CN=Schema,CN=Configuration,${BASEDN}
100 isCriticalSystemObject: TRUE
102 dn: CN=ForeignSecurityPrincipals,${BASEDN}
104 objectClass: container
105 cn: ForeignSecurityPrincipals
106 description: Default container for security identifiers (SIDs) associated with objects from external, trusted domains
108 whenCreated: ${LDAPTIME}
109 whenChanged: ${LDAPTIME}
112 showInAdvancedViewOnly: FALSE
113 name: ForeignSecurityPrincipals
114 objectGUID: ${NEWGUID}
115 systemFlags: 0x8c000000
116 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
117 isCriticalSystemObject: TRUE
119 dn: CN=Builtin,${BASEDN}
121 objectClass: builtinDomain
124 showInAdvancedViewOnly: FALSE
126 forceLogoff: 0x8000000000000000
127 lockoutDuration: -18000000000
128 lockOutObservationWindow: -18000000000
130 maxPwdAge: -37108517437440
133 modifiedCountAtLastProm: 0
141 objectCategory: CN=Builtin-Domain,CN=Schema,CN=Configuration,${BASEDN}
142 isCriticalSystemObject: TRUE
144 dn: CN=Administrator,CN=Users,${BASEDN}
147 objectClass: organizationalPerson
150 description: Built-in account for administering the computer/domain
152 whenCreated: ${LDAPTIME}
153 whenChanged: ${LDAPTIME}
155 memberOf: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
156 memberOf: CN=Domain Admins,CN=Users,${BASEDN}
157 memberOf: CN=Enterprise Admins,CN=Users,${BASEDN}
158 memberOf: CN=Schema Admins,CN=Users,${BASEDN}
159 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
162 objectGUID: ${NEWGUID}
163 userAccountControl: 0x10200
172 objectSid: ${DOMAINSID}-500
176 sAMAccountName: Administrator
177 sAMAccountType: 0x30000000
178 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
179 isCriticalSystemObject: TRUE
181 dn: CN=Guest,CN=Users,${BASEDN}
184 objectClass: organizationalPerson
187 description: Built-in account for guest access to the computer/domain
189 whenCreated: ${LDAPTIME}
190 whenChanged: ${LDAPTIME}
192 memberOf: CN=Guests,CN=Builtin,${BASEDN}
195 objectGUID: ${NEWGUID}
196 userAccountControl: 0x10222
205 objectSid: ${DOMAINSID}-501
208 sAMAccountName: Guest
209 sAMAccountType: 0x30000000
210 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
211 isCriticalSystemObject: TRUE
213 dn: CN=Administrators,CN=Builtin,${BASEDN}
217 description: Administrators have complete and unrestricted access to the computer/domain
218 member: CN=Domain Admins,CN=Users,${BASEDN}
219 member: CN=Enterprise Admins,CN=Users,${BASEDN}
220 member: CN=Administrator,CN=Users,${BASEDN}
222 whenCreated: ${LDAPTIME}
223 whenChanged: ${LDAPTIME}
227 objectGUID: ${NEWGUID}
228 objectSid: S-1-5-32-544
230 sAMAccountName: Administrators
231 sAMAccountType: 0x20000000
232 systemFlags: 0x8c000000
233 groupType: 0x80000005
234 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
235 isCriticalSystemObject: TRUE
237 dn: CN=Users,CN=Builtin,${BASEDN}
241 description: Users are prevented from making accidental or intentional system-wide changes. Thus, Users can run certified applications, but not most legacy applications
242 member: CN=Domain Users,CN=Users,${BASEDN}
244 whenCreated: ${LDAPTIME}
245 whenChanged: ${LDAPTIME}
249 objectGUID: ${NEWGUID}
250 objectSid: S-1-5-32-545
251 sAMAccountName: Users
252 sAMAccountType: 0x20000000
253 systemFlags: 0x8c000000
254 groupType: 0x80000005
255 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
256 isCriticalSystemObject: TRUE
258 dn: CN=Guests,CN=Builtin,${BASEDN}
262 description: Guests have the same access as members of the Users group by default, except for the Guest account which is further restricted
263 member: CN=Domain Guests,CN=Users,${BASEDN}
264 member: CN=Guest,CN=Users,${BASEDN}
266 whenCreated: ${LDAPTIME}
267 whenChanged: ${LDAPTIME}
271 objectGUID: ${NEWGUID}
272 objectSid: S-1-5-32-546
273 sAMAccountName: Guests
274 sAMAccountType: 0x20000000
275 systemFlags: 0x8c000000
276 groupType: 0x80000005
277 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
278 isCriticalSystemObject: TRUE
280 dn: CN=Print Operators,CN=Builtin,${BASEDN}
284 description: Members can administer domain printers
286 whenCreated: ${LDAPTIME}
287 whenChanged: ${LDAPTIME}
290 name: Print Operators
291 objectGUID: ${NEWGUID}
292 objectSid: S-1-5-32-550
294 sAMAccountName: Print Operators
295 sAMAccountType: 0x20000000
296 systemFlags: 0x8c000000
297 groupType: 0x80000005
298 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
299 isCriticalSystemObject: TRUE
301 dn: CN=Backup Operators,CN=Builtin,${BASEDN}
305 description: Backup Operators can override security restrictions for the sole purpose of backing up or restoring files
307 whenCreated: ${LDAPTIME}
308 whenChanged: ${LDAPTIME}
311 name: Backup Operators
312 objectGUID: ${NEWGUID}
313 objectSid: S-1-5-32-551
315 sAMAccountName: Backup Operators
316 sAMAccountType: 0x20000000
317 systemFlags: 0x8c000000
318 groupType: 0x80000005
319 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
320 isCriticalSystemObject: TRUE
322 dn: CN=Replicator,CN=Builtin,${BASEDN}
326 description: Supports file replication in a domain
328 whenCreated: ${LDAPTIME}
329 whenChanged: ${LDAPTIME}
333 objectGUID: ${NEWGUID}
334 objectSid: S-1-5-32-552
336 sAMAccountName: Replicator
337 sAMAccountType: 0x20000000
338 systemFlags: 0x8c000000
339 groupType: 0x80000005
340 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
341 isCriticalSystemObject: TRUE
343 dn: CN=Remote Desktop Users,CN=Builtin,${BASEDN}
346 cn: Remote Desktop Users
347 description: Members in this group are granted the right to logon remotely
349 whenCreated: ${LDAPTIME}
350 whenChanged: ${LDAPTIME}
353 name: Remote Desktop Users
354 objectGUID: ${NEWGUID}
355 objectSid: S-1-5-32-555
356 sAMAccountName: Remote Desktop Users
357 sAMAccountType: 0x20000000
358 systemFlags: 0x8c000000
359 groupType: 0x80000005
360 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
361 isCriticalSystemObject: TRUE
363 dn: CN=Network Configuration Operators,CN=Builtin,${BASEDN}
366 cn: Network Configuration Operators
367 description: Members in this group can have some administrative privileges to manage configuration of networking features
369 whenCreated: ${LDAPTIME}
370 whenChanged: ${LDAPTIME}
373 name: Network Configuration Operators
374 objectGUID: ${NEWGUID}
375 objectSid: S-1-5-32-556
376 sAMAccountName: Network Configuration Operators
377 sAMAccountType: 0x20000000
378 systemFlags: 0x8c000000
379 groupType: 0x80000005
380 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
381 isCriticalSystemObject: TRUE
383 dn: CN=Performance Monitor Users,CN=Builtin,${BASEDN}
386 cn: Performance Monitor Users
387 description: Members of this group have remote access to monitor this computer
389 whenCreated: ${LDAPTIME}
390 whenChanged: ${LDAPTIME}
393 name: Performance Monitor Users
394 objectGUID: ${NEWGUID}
395 objectSid: S-1-5-32-558
396 sAMAccountName: Performance Monitor Users
397 sAMAccountType: 0x20000000
398 systemFlags: 0x8c000000
399 groupType: 0x80000005
400 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
401 isCriticalSystemObject: TRUE
403 dn: CN=Performance Log Users,CN=Builtin,${BASEDN}
406 cn: Performance Log Users
407 description: Members of this group have remote access to schedule logging of performance counters on this computer
409 whenCreated: ${LDAPTIME}
410 whenChanged: ${LDAPTIME}
413 name: Performance Log Users
414 objectGUID: ${NEWGUID}
415 objectSid: S-1-5-32-559
416 sAMAccountName: Performance Log Users
417 sAMAccountType: 0x20000000
418 systemFlags: 0x8c000000
419 groupType: 0x80000005
420 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
421 isCriticalSystemObject: TRUE
423 dn: CN=${HOSTNAME},OU=Domain Controllers,${BASEDN}
426 objectClass: organizationalPerson
428 objectClass: computer
431 whenCreated: ${LDAPTIME}
432 whenChanged: ${LDAPTIME}
436 objectGUID: ${NEWGUID}
437 userAccountControl: 532480
443 lastLogon: 127273269057298624
445 pwdLastSet: 127258826171655328
447 objectSid: ${DOMAINSID}-1000
448 accountExpires: 9223372036854775807
450 sAMAccountName: ${HOSTNAME}$
451 sAMAccountType: 805306369
452 operatingSystem: Samba
453 operatingSystemVersion: 4.0
454 dNSHostName: ${DNSNAME}
455 objectCategory: CN=Computer,CN=Schema,CN=Configuration,${BASEDN}
456 isCriticalSystemObject: TRUE
458 dn: CN=krbtgt,CN=Users,${BASEDN}
461 objectClass: organizationalPerson
464 description: Key Distribution Center Service Account
466 whenCreated: ${LDAPTIME}
467 whenChanged: ${LDAPTIME}
470 showInAdvancedViewOnly: TRUE
472 objectGUID: ${NEWGUID}
473 userAccountControl: 514
480 pwdLastSet: 127258826179466560
482 objectSid: ${DOMAINSID}-502
484 accountExpires: 9223372036854775807
486 sAMAccountName: krbtgt
487 sAMAccountType: 805306368
488 servicePrincipalName: kadmin/changepw
489 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
490 isCriticalSystemObject: TRUE
492 dn: CN=Domain Computers,CN=Users,${BASEDN}
496 description: All workstations and servers joined to the domain
498 whenCreated: ${LDAPTIME}
499 whenChanged: ${LDAPTIME}
502 name: Domain Computers
503 objectGUID: ${NEWGUID}
504 objectSid: ${DOMAINSID}-515
505 sAMAccountName: Domain Computers
506 sAMAccountType: 268435456
507 groupType: -2147483646
508 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
509 isCriticalSystemObject: TRUE
511 dn: CN=Domain Controllers,CN=Users,${BASEDN}
514 cn: Domain Controllers
515 description: All domain controllers in the domain
517 whenCreated: ${LDAPTIME}
518 whenChanged: ${LDAPTIME}
521 name: Domain Controllers
522 objectGUID: ${NEWGUID}
523 objectSid: ${DOMAINSID}-516
525 sAMAccountName: Domain Controllers
526 sAMAccountType: 268435456
527 groupType: -2147483646
528 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
529 isCriticalSystemObject: TRUE
531 dn: CN=Schema Admins,CN=Users,${BASEDN}
535 description: Designated administrators of the schema
536 member: CN=Administrator,CN=Users,${BASEDN}
538 whenCreated: ${LDAPTIME}
539 whenChanged: ${LDAPTIME}
543 objectGUID: ${NEWGUID}
544 objectSid: ${DOMAINSID}-518
546 sAMAccountName: Schema Admins
547 sAMAccountType: 268435456
548 groupType: -2147483646
549 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
550 isCriticalSystemObject: TRUE
552 dn: CN=Enterprise Admins,CN=Users,${BASEDN}
555 cn: Enterprise Admins
556 description: Designated administrators of the enterprise
557 member: CN=Administrator,CN=Users,${BASEDN}
559 whenCreated: ${LDAPTIME}
560 whenChanged: ${LDAPTIME}
562 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
564 name: Enterprise Admins
565 objectGUID: ${NEWGUID}
566 objectSid: ${DOMAINSID}-519
568 sAMAccountName: Enterprise Admins
569 sAMAccountType: 268435456
570 groupType: -2147483646
571 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
572 isCriticalSystemObject: TRUE
574 dn: CN=Cert Publishers,CN=Users,${BASEDN}
578 description: Members of this group are permitted to publish certificates to the Active Directory
580 whenCreated: ${LDAPTIME}
581 whenChanged: ${LDAPTIME}
584 name: Cert Publishers
585 objectGUID: ${NEWGUID}
586 objectSid: ${DOMAINSID}-517
587 sAMAccountName: Cert Publishers
588 sAMAccountType: 0x20000000
589 groupType: -2147483644
590 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
591 isCriticalSystemObject: TRUE
593 dn: CN=Domain Admins,CN=Users,${BASEDN}
597 description: Designated administrators of the domain
598 member: CN=Administrator,CN=Users,${BASEDN}
600 whenCreated: ${LDAPTIME}
601 whenChanged: ${LDAPTIME}
603 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
606 objectGUID: ${NEWGUID}
607 objectSid: ${DOMAINSID}-512
609 sAMAccountName: Domain Admins
610 sAMAccountType: 268435456
611 groupType: -2147483646
612 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
613 isCriticalSystemObject: TRUE
615 dn: CN=Domain Users,CN=Users,${BASEDN}
619 description: All domain users
621 whenCreated: ${LDAPTIME}
622 whenChanged: ${LDAPTIME}
624 memberOf: CN=Users,CN=Builtin,${BASEDN}
627 objectGUID: ${NEWGUID}
628 objectSid: ${DOMAINSID}-513
629 sAMAccountName: Domain Users
630 sAMAccountType: 268435456
631 groupType: -2147483646
632 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
633 isCriticalSystemObject: TRUE
635 dn: CN=Domain Guests,CN=Users,${BASEDN}
639 description: All domain guests
641 whenCreated: ${LDAPTIME}
642 whenChanged: ${LDAPTIME}
644 memberOf: CN=Guests,CN=Builtin,${BASEDN}
647 objectGUID: ${NEWGUID}
648 objectSid: ${DOMAINSID}-514
649 sAMAccountName: Domain Guests
650 sAMAccountType: 268435456
651 groupType: -2147483646
652 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
653 isCriticalSystemObject: TRUE
655 dn: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
658 cn: Group Policy Creator Owners
659 description: Members in this group can modify group policy for the domain
660 member: CN=Administrator,CN=Users,${BASEDN}
662 whenCreated: ${LDAPTIME}
663 whenChanged: ${LDAPTIME}
666 name: Group Policy Creator Owners
667 objectGUID: ${NEWGUID}
668 objectSid: ${DOMAINSID}-520
669 sAMAccountName: Group Policy Creator Owners
670 sAMAccountType: 268435456
671 groupType: -2147483646
672 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
673 isCriticalSystemObject: TRUE
675 dn: CN=RAS and IAS Servers,CN=Users,${BASEDN}
678 cn: RAS and IAS Servers
679 description: Servers in this group can access remote access properties of users
681 whenCreated: ${LDAPTIME}
682 whenChanged: ${LDAPTIME}
685 name: RAS and IAS Servers
686 objectGUID: ${NEWGUID}
687 objectSid: ${DOMAINSID}-553
688 sAMAccountName: RAS and IAS Servers
689 sAMAccountType: 0x20000000
690 groupType: -2147483644
691 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
692 isCriticalSystemObject: TRUE
694 dn: CN=Server Operators,CN=Builtin,${BASEDN}
698 description: Members can administer domain servers
700 whenCreated: ${LDAPTIME}
701 whenChanged: ${LDAPTIME}
704 name: Server Operators
705 objectGUID: ${NEWGUID}
706 objectSid: S-1-5-32-549
708 sAMAccountName: Server Operators
709 sAMAccountType: 0x20000000
710 systemFlags: 0x8c000000
711 groupType: 0x80000005
712 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
713 isCriticalSystemObject: TRUE
715 dn: CN=Account Operators,CN=Builtin,${BASEDN}
718 cn: Account Operators
719 description: Members can administer domain user and group accounts
721 whenCreated: ${LDAPTIME}
722 whenChanged: ${LDAPTIME}
725 name: Account Operators
726 objectGUID: ${NEWGUID}
727 objectSid: S-1-5-32-548
729 sAMAccountName: Account Operators
730 sAMAccountType: 0x20000000
731 systemFlags: 0x8c000000
732 groupType: 0x80000005
733 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
734 isCriticalSystemObject: TRUE