r6868: the @ATTRIBUTES object format has changed
[samba.git] / source / setup / provision.ldif
1 dn: @INDEXLIST
2 @IDXATTR: name
3 @IDXATTR: sAMAccountName
4 @IDXATTR: objectSid
5 @IDXATTR: objectClass
6 @IDXATTR: member
7 @IDXATTR: unixID
8 @IDXATTR: unixName
9 @IDXATTR: privilege
10
11 dn: @ATTRIBUTES
12 realm: CASE_INSENSITIVE
13 userPrincipalName: CASE_INSENSITIVE
14 servicePrincipalName: CASE_INSENSITIVE
15 dnsDomain: CASE_INSENSITIVE
16 cn: CASE_INSENSITIVE
17 dc: CASE_INSENSITIVE
18 name: CASE_INSENSITIVE
19 name: WILDCARD
20 dn: CASE_INSENSITIVE
21 dn: WILDCARD
22 sAMAccountName: CASE_INSENSITIVE
23 sAMAccountName: WILDCARD
24 objectClass: CASE_INSENSITIVE
25 unicodePwd: HIDDEN
26 ntPwdHash: HIDDEN
27 ntPwdHistory: HIDDEN
28 lmPwdHash: HIDDEN
29 lmPwdHistory: HIDDEN
30 createTimestamp: HIDDEN
31 modifyTimestamp: HIDDEN
32
33 dn: @SUBCLASSES
34 top: domain
35 top: person
36 top: group
37 domain: domainDNS
38 domain: builtinDomain
39 person: organizationalPerson
40 organizationalPerson: user
41 user: computer
42 template: userTemplate
43 template: groupTemplate
44
45 #Add modules to the list to activate them by default
46 #beware often order is important
47 dn: @MODULES
48 @LIST: samldb,timestamps
49
50 ###############################
51 # Domain Naming Context
52 ###############################
53 dn: ${BASEDN}
54 objectClass: top
55 objectClass: domain
56 objectClass: domainDNS
57 name: ${DOMAIN}
58 flatname: ${DOMAIN}
59 realm: ${REALM}
60 dnsDomain: ${DNSDOMAIN}
61 dc: ${DOMAIN}
62 objectGUID: ${DOMAINGUID}
63 creationTime: ${NTTIME}
64 forceLogoff: 0x8000000000000000
65 lockoutDuration: -18000000000
66 lockOutObservationWindow: -18000000000
67 lockoutThreshold: 0
68 whenCreated: ${LDAPTIME}
69 whenChanged: ${LDAPTIME}
70 uSNCreated: 1
71 uSNChanged: 1
72 maxPwdAge: -37108517437440
73 minPwdAge: 0
74 minPwdLength: 7
75 modifiedCountAtLastProm: 0
76 nextRid: 1001
77 pwdProperties: 1
78 pwdHistoryLength: 24
79 objectSid: ${DOMAINSID}
80 serverState: 1
81 nTMixedDomain: 1
82 msDS-Behavior-Version: 0
83 ridManagerReference: CN=RID Manager$,CN=System,${BASEDN}
84 uASCompat: 1
85 modifiedCount: 1
86 objectCategory: CN=Domain-DNS,CN=Schema,CN=Configuration,${BASEDN}
87 isCriticalSystemObject: TRUE
88 subRefs: CN=Configuration,${BASEDN}
89 subRefs: CN=Schema,CN=Configuration,${BASEDN}
90
91 dn: CN=Users,${BASEDN}
92 objectClass: top
93 objectClass: container
94 cn: Users
95 description: Default container for upgraded user accounts
96 instanceType: 4
97 whenCreated: ${LDAPTIME}
98 whenChanged: ${LDAPTIME}
99 uSNCreated: 1
100 uSNChanged: 1
101 showInAdvancedViewOnly: FALSE
102 name: Users
103 objectGUID: ${NEWGUID}
104 systemFlags: 0x8c000000
105 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
106 isCriticalSystemObject: TRUE
107
108 dn: CN=Computers,${BASEDN}
109 objectClass: top
110 objectClass: container
111 cn: Computers
112 description: Default container for upgraded computer accounts
113 instanceType: 4
114 whenCreated: ${LDAPTIME}
115 whenChanged: ${LDAPTIME}
116 uSNCreated: 1
117 uSNChanged: 1
118 showInAdvancedViewOnly: FALSE
119 name: Computers
120 objectGUID: ${NEWGUID}
121 systemFlags: 0x8c000000
122 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
123 isCriticalSystemObject: TRUE
124
125 dn: OU=Domain Controllers,${BASEDN}
126 objectClass: top
127 objectClass: organizationalUnit
128 ou: Domain Controllers
129 description: Default container for domain controllers
130 instanceType: 4
131 whenCreated: ${LDAPTIME}
132 whenChanged: ${LDAPTIME}
133 uSNCreated: 1
134 uSNChanged: 1
135 showInAdvancedViewOnly: FALSE
136 name: Domain Controllers
137 objectGUID: ${NEWGUID}
138 systemFlags: 0x8c000000
139 objectCategory: CN=Organizational-Unit,CN=Schema,CN=Configuration,${BASEDN}
140 isCriticalSystemObject: TRUE
141
142 dn: CN=ForeignSecurityPrincipals,${BASEDN}
143 objectClass: top
144 objectClass: container
145 cn: ForeignSecurityPrincipals
146 description: Default container for security identifiers (SIDs) associated with objects from external, trusted domains
147 instanceType: 4
148 whenCreated: ${LDAPTIME}
149 whenChanged: ${LDAPTIME}
150 uSNCreated: 1
151 uSNChanged: 1
152 showInAdvancedViewOnly: FALSE
153 name: ForeignSecurityPrincipals
154 objectGUID: ${NEWGUID}
155 systemFlags: 0x8c000000
156 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
157 isCriticalSystemObject: TRUE
158
159 dn: CN=System,${BASEDN}
160 objectClass: top
161 objectClass: container
162 cn: System
163 description: Builtin system settings
164 instanceType: 4
165 whenCreated: ${LDAPTIME}
166 whenChanged: ${LDAPTIME}
167 uSNCreated: 1
168 uSNChanged: 1
169 showInAdvancedViewOnly: TRUE
170 name: System
171 objectGUID: ${NEWGUID}
172 systemFlags: 0x8c000000
173 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
174 isCriticalSystemObject: TRUE
175
176 dn: CN=RID Manager$,CN=System,${BASEDN}
177 objectclass: top
178 objectclass: rIDManager
179 cn: RID Manager$
180 instanceType: 4
181 whenCreated: ${LDAPTIME}
182 whenChanged: ${LDAPTIME}
183 uSNCreated: 1
184 uSNChanged: 1
185 showInAdvancedViewOnly: TRUE
186 name: RID Manager$
187 objectGUID: ${NEWGUID}
188 systemFlags: 0x8c000000
189 objectCategory: CN=RID-Manager,CN=Schema,CN=Configuration,${BASEDN}
190 isCriticalSystemObject: TRUE
191 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
192 rIDAvailablePool: 4611686014132423217
193
194 dn: CN=DomainUpdates,CN=System,${BASEDN}
195 objectClass: top
196 objectClass: container
197 cn: DomainUpdates
198 instanceType: 4
199 whenCreated: ${LDAPTIME}
200 whenChanged: ${LDAPTIME}
201 uSNCreated: 1
202 uSNChanged: 1
203 showInAdvancedViewOnly: TRUE
204 name: DomainUpdates
205 objectGUID: ${NEWGUID}
206 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
207
208 dn: CN=Windows2003Update,CN=DomainUpdates,CN=System,${BASEDN}
209 objectClass: top
210 objectClass: container
211 cn: Windows2003Update
212 instanceType: 4
213 whenCreated: ${LDAPTIME}
214 whenChanged: ${LDAPTIME}
215 uSNCreated: 1
216 uSNChanged: 1
217 showInAdvancedViewOnly: TRUE
218 name: Windows2003Update
219 objectGUID: ${NEWGUID}
220 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
221 revision: 8
222
223 dn: CN=Infrastructure,${BASEDN}
224 objectclass: top
225 objectclass: infrastructureUpdate
226 cn: Infrastructure
227 instanceType: 4
228 whenCreated: ${LDAPTIME}
229 whenChanged: ${LDAPTIME}
230 uSNCreated: 1
231 uSNChanged: 1
232 showInAdvancedViewOnly: TRUE
233 name: Infrastructure
234 objectGUID: ${NEWGUID}
235 systemFlags: 0x8c000000
236 objectCategory: CN=Infrastructure-Update,CN=Schema,CN=Configuration,${BASEDN}
237 isCriticalSystemObject: TRUE
238 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
239
240 dn: CN=Builtin,${BASEDN}
241 objectClass: top
242 objectClass: builtinDomain
243 cn: Builtin
244 instanceType: 4
245 showInAdvancedViewOnly: FALSE
246 name: Builtin
247 forceLogoff: 0x8000000000000000
248 lockoutDuration: -18000000000
249 lockOutObservationWindow: -18000000000
250 lockoutThreshold: 0
251 maxPwdAge: -37108517437440
252 minPwdAge: 0
253 minPwdLength: 0
254 modifiedCountAtLastProm: 0
255 nextRid: 1000
256 pwdProperties: 0
257 pwdHistoryLength: 0
258 objectSid: S-1-5-32
259 serverState: 1
260 uASCompat: 1
261 modifiedCount: 1
262 objectCategory: CN=Builtin-Domain,CN=Schema,CN=Configuration,${BASEDN}
263 isCriticalSystemObject: TRUE
264
265 dn: CN=Administrator,CN=Users,${BASEDN}
266 objectClass: top
267 objectClass: person
268 objectClass: organizationalPerson
269 objectClass: user
270 cn: Administrator
271 description: Built-in account for administering the computer/domain
272 instanceType: 4
273 whenCreated: ${LDAPTIME}
274 whenChanged: ${LDAPTIME}
275 uSNCreated: 1
276 memberOf: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
277 memberOf: CN=Domain Admins,CN=Users,${BASEDN}
278 memberOf: CN=Enterprise Admins,CN=Users,${BASEDN}
279 memberOf: CN=Schema Admins,CN=Users,${BASEDN}
280 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
281 uSNChanged: 1
282 name: Administrator
283 objectGUID: ${NEWGUID}
284 userAccountControl: 0x10200
285 badPwdCount: 0
286 codePage: 0
287 countryCode: 0
288 badPasswordTime: 0
289 lastLogoff: 0
290 lastLogon: 0
291 pwdLastSet: 0
292 primaryGroupID: 513
293 objectSid: ${DOMAINSID}-500
294 adminCount: 1
295 accountExpires: -1
296 logonCount: 0
297 sAMAccountName: Administrator
298 sAMAccountType: 0x30000000
299 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
300 isCriticalSystemObject: TRUE
301 unicodePwd: ${ADMINPASS}
302 unixName: root
303
304 dn: CN=Guest,CN=Users,${BASEDN}
305 objectClass: top
306 objectClass: person
307 objectClass: organizationalPerson
308 objectClass: user
309 cn: Guest
310 description: Built-in account for guest access to the computer/domain
311 instanceType: 4
312 whenCreated: ${LDAPTIME}
313 whenChanged: ${LDAPTIME}
314 uSNCreated: 1
315 memberOf: CN=Guests,CN=Builtin,${BASEDN}
316 uSNChanged: 1
317 name: Guest
318 objectGUID: ${NEWGUID}
319 userAccountControl: 0x10222
320 badPwdCount: 0
321 codePage: 0
322 countryCode: 0
323 badPasswordTime: 0
324 lastLogoff: 0
325 lastLogon: 0
326 pwdLastSet: 0
327 primaryGroupID: 514
328 objectSid: ${DOMAINSID}-501
329 accountExpires: -1
330 logonCount: 0
331 sAMAccountName: Guest
332 sAMAccountType: 0x30000000
333 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
334 isCriticalSystemObject: TRUE
335
336 dn: CN=Administrators,CN=Builtin,${BASEDN}
337 objectClass: top
338 objectClass: group
339 cn: Administrators
340 description: Administrators have complete and unrestricted access to the computer/domain
341 member: CN=Domain Admins,CN=Users,${BASEDN}
342 member: CN=Enterprise Admins,CN=Users,${BASEDN}
343 member: CN=Administrator,CN=Users,${BASEDN}
344 instanceType: 4
345 whenCreated: ${LDAPTIME}
346 whenChanged: ${LDAPTIME}
347 uSNCreated: 1
348 uSNChanged: 1
349 name: Administrators
350 objectGUID: ${NEWGUID}
351 objectSid: S-1-5-32-544
352 adminCount: 1
353 sAMAccountName: Administrators
354 sAMAccountType: 0x20000000
355 systemFlags: 0x8c000000
356 groupType: 0x80000005
357 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
358 isCriticalSystemObject: TRUE
359 unixName: ${WHEEL}
360 privilege: SeSecurityPrivilege
361 privilege: SeBackupPrivilege
362 privilege: SeRestorePrivilege
363 privilege: SeSystemtimePrivilege
364 privilege: SeShutdownPrivilege
365 privilege: SeRemoteShutdownPrivilege
366 privilege: SeTakeOwnershipPrivilege
367 privilege: SeDebugPrivilege
368 privilege: SeSystemEnvironmentPrivilege
369 privilege: SeSystemProfilePrivilege
370 privilege: SeProfileSingleProcessPrivilege
371 privilege: SeIncreaseBasePriorityPrivilege
372 privilege: SeLoadDriverPrivilege
373 privilege: SeCreatePagefilePrivilege
374 privilege: SeIncreaseQuotaPrivilege
375 privilege: SeChangeNotifyPrivilege
376 privilege: SeUndockPrivilege
377 privilege: SeManageVolumePrivilege
378 privilege: SeImpersonatePrivilege
379 privilege: SeCreateGlobalPrivilege
380 privilege: SeEnableDelegationPrivilege
381 privilege: SeInteractiveLogonRight
382 privilege: SeNetworkLogonRight
383 privilege: SeRemoteInteractiveLogonRight
384
385
386 dn: CN=Users,CN=Builtin,${BASEDN}
387 objectClass: top
388 objectClass: group
389 cn: Users
390 description: Users are prevented from making accidental or intentional system-wide changes.  Thus, Users can run certified applications, but not most legacy applications
391 member: CN=Domain Users,CN=Users,${BASEDN}
392 instanceType: 4
393 whenCreated: ${LDAPTIME}
394 whenChanged: ${LDAPTIME}
395 uSNCreated: 1
396 uSNChanged: 1
397 name: Users
398 objectGUID: ${NEWGUID}
399 objectSid: S-1-5-32-545
400 sAMAccountName: Users
401 sAMAccountType: 0x20000000
402 systemFlags: 0x8c000000
403 groupType: 0x80000005
404 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
405 isCriticalSystemObject: TRUE
406
407 dn: CN=Guests,CN=Builtin,${BASEDN}
408 objectClass: top
409 objectClass: group
410 cn: Guests
411 description: Guests have the same access as members of the Users group by default, except for the Guest account which is further restricted
412 member: CN=Domain Guests,CN=Users,${BASEDN}
413 member: CN=Guest,CN=Users,${BASEDN}
414 instanceType: 4
415 whenCreated: ${LDAPTIME}
416 whenChanged: ${LDAPTIME}
417 uSNCreated: 1
418 uSNChanged: 1
419 name: Guests
420 objectGUID: ${NEWGUID}
421 objectSid: S-1-5-32-546
422 sAMAccountName: Guests
423 sAMAccountType: 0x20000000
424 systemFlags: 0x8c000000
425 groupType: 0x80000005
426 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
427 isCriticalSystemObject: TRUE
428 unixName: ${NOGROUP}
429
430 dn: CN=Print Operators,CN=Builtin,${BASEDN}
431 objectClass: top
432 objectClass: group
433 cn: Print Operators
434 description: Members can administer domain printers
435 instanceType: 4
436 whenCreated: ${LDAPTIME}
437 whenChanged: ${LDAPTIME}
438 uSNCreated: 1
439 uSNChanged: 1
440 name: Print Operators
441 objectGUID: ${NEWGUID}
442 objectSid: S-1-5-32-550
443 adminCount: 1
444 sAMAccountName: Print Operators
445 sAMAccountType: 0x20000000
446 systemFlags: 0x8c000000
447 groupType: 0x80000005
448 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
449 isCriticalSystemObject: TRUE
450 privilege: SeLoadDriverPrivilege
451 privilege: SeShutdownPrivilege
452 privilege: SeInteractiveLogonRight
453
454 dn: CN=Backup Operators,CN=Builtin,${BASEDN}
455 objectClass: top
456 objectClass: group
457 cn: Backup Operators
458 description: Backup Operators can override security restrictions for the sole purpose of backing up or restoring files
459 instanceType: 4
460 whenCreated: ${LDAPTIME}
461 whenChanged: ${LDAPTIME}
462 uSNCreated: 1
463 uSNChanged: 1
464 name: Backup Operators
465 objectGUID: ${NEWGUID}
466 objectSid: S-1-5-32-551
467 adminCount: 1
468 sAMAccountName: Backup Operators
469 sAMAccountType: 0x20000000
470 systemFlags: 0x8c000000
471 groupType: 0x80000005
472 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
473 isCriticalSystemObject: TRUE
474 privilege: SeBackupPrivilege
475 privilege: SeRestorePrivilege
476 privilege: SeShutdownPrivilege
477 privilege: SeInteractiveLogonRight
478
479 dn: CN=Replicator,CN=Builtin,${BASEDN}
480 objectClass: top
481 objectClass: group
482 cn: Replicator
483 description: Supports file replication in a domain
484 instanceType: 4
485 whenCreated: ${LDAPTIME}
486 whenChanged: ${LDAPTIME}
487 uSNCreated: 1
488 uSNChanged: 1
489 name: Replicator
490 objectGUID: ${NEWGUID}
491 objectSid: S-1-5-32-552
492 adminCount: 1
493 sAMAccountName: Replicator
494 sAMAccountType: 0x20000000
495 systemFlags: 0x8c000000
496 groupType: 0x80000005
497 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
498 isCriticalSystemObject: TRUE
499
500 dn: CN=Remote Desktop Users,CN=Builtin,${BASEDN}
501 objectClass: top
502 objectClass: group
503 cn: Remote Desktop Users
504 description: Members in this group are granted the right to logon remotely
505 instanceType: 4
506 whenCreated: ${LDAPTIME}
507 whenChanged: ${LDAPTIME}
508 uSNCreated: 1
509 uSNChanged: 1
510 name: Remote Desktop Users
511 objectGUID: ${NEWGUID}
512 objectSid: S-1-5-32-555
513 sAMAccountName: Remote Desktop Users
514 sAMAccountType: 0x20000000
515 systemFlags: 0x8c000000
516 groupType: 0x80000005
517 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
518 isCriticalSystemObject: TRUE
519
520 dn: CN=Network Configuration Operators,CN=Builtin,${BASEDN}
521 objectClass: top
522 objectClass: group
523 cn: Network Configuration Operators
524 description: Members in this group can have some administrative privileges to manage configuration of networking features
525 instanceType: 4
526 whenCreated: ${LDAPTIME}
527 whenChanged: ${LDAPTIME}
528 uSNCreated: 1
529 uSNChanged: 1
530 name: Network Configuration Operators
531 objectGUID: ${NEWGUID}
532 objectSid: S-1-5-32-556
533 sAMAccountName: Network Configuration Operators
534 sAMAccountType: 0x20000000
535 systemFlags: 0x8c000000
536 groupType: 0x80000005
537 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
538 isCriticalSystemObject: TRUE
539
540 dn: CN=Performance Monitor Users,CN=Builtin,${BASEDN}
541 objectClass: top
542 objectClass: group
543 cn: Performance Monitor Users
544 description: Members of this group have remote access to monitor this computer
545 instanceType: 4
546 whenCreated: ${LDAPTIME}
547 whenChanged: ${LDAPTIME}
548 uSNCreated: 1
549 uSNChanged: 1
550 name: Performance Monitor Users
551 objectGUID: ${NEWGUID}
552 objectSid: S-1-5-32-558
553 sAMAccountName: Performance Monitor Users
554 sAMAccountType: 0x20000000
555 systemFlags: 0x8c000000
556 groupType: 0x80000005
557 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
558 isCriticalSystemObject: TRUE
559
560 dn: CN=Performance Log Users,CN=Builtin,${BASEDN}
561 objectClass: top
562 objectClass: group
563 cn: Performance Log Users
564 description: Members of this group have remote access to schedule logging of performance counters on this computer
565 instanceType: 4
566 whenCreated: ${LDAPTIME}
567 whenChanged: ${LDAPTIME}
568 uSNCreated: 1
569 uSNChanged: 1
570 name: Performance Log Users
571 objectGUID: ${NEWGUID}
572 objectSid: S-1-5-32-559
573 sAMAccountName: Performance Log Users
574 sAMAccountType: 0x20000000
575 systemFlags: 0x8c000000
576 groupType: 0x80000005
577 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
578 isCriticalSystemObject: TRUE
579
580 dn: CN=${NETBIOSNAME},OU=Domain Controllers,${BASEDN}
581 objectClass: top
582 objectClass: person
583 objectClass: organizationalPerson
584 objectClass: user
585 objectClass: computer
586 cn: ${NETBIOSNAME}
587 instanceType: 4
588 whenCreated: ${LDAPTIME}
589 whenChanged: ${LDAPTIME}
590 uSNCreated: 1
591 uSNChanged: 1
592 name: ${NETBIOSNAME}
593 objectGUID: ${HOSTGUID}
594 userAccountControl: 532480
595 badPwdCount: 0
596 codePage: 0
597 countryCode: 0
598 badPasswordTime: 0
599 lastLogoff: 0
600 lastLogon: 127273269057298624
601 localPolicyFlags: 0
602 pwdLastSet: 127258826171655328
603 primaryGroupID: 516
604 objectSid: ${DOMAINSID}-1000
605 accountExpires: 9223372036854775807
606 logonCount: 30
607 sAMAccountName: ${NETBIOSNAME}$
608 sAMAccountType: 805306369
609 operatingSystem: Samba
610 operatingSystemVersion: 4.0
611 dNSHostName: ${DNSNAME}
612 objectCategory: CN=Computer,CN=Schema,CN=Configuration,${BASEDN}
613 isCriticalSystemObject: TRUE
614 unicodePwd: ${JOINPASS}
615 servicePrincipalName: HOST/${DNSNAME}
616 servicePrincipalName: HOST/${NETBIOSNAME}
617 servicePrincipalName: CIFS/${DNSNAME}
618 servicePrincipalName: CIFS/${NETBIOSNAME}
619 servicePrincipalName: LDAP/${DNSNAME}
620 servicePrincipalName: LDAP/${NETBIOSNAME}
621
622 dn: CN=krbtgt,CN=Users,${BASEDN}
623 objectClass: top
624 objectClass: person
625 objectClass: organizationalPerson
626 objectClass: user
627 cn: krbtgt
628 description: Key Distribution Center Service Account
629 instanceType: 4
630 whenCreated: ${LDAPTIME}
631 whenChanged: ${LDAPTIME}
632 uSNCreated: 1
633 uSNChanged: 1
634 showInAdvancedViewOnly: TRUE
635 name: krbtgt
636 objectGUID: ${NEWGUID}
637 userAccountControl: 514
638 badPwdCount: 0
639 codePage: 0
640 countryCode: 0
641 badPasswordTime: 0
642 lastLogoff: 0
643 lastLogon: 0
644 pwdLastSet: 127258826179466560
645 primaryGroupID: 513
646 objectSid: ${DOMAINSID}-502
647 adminCount: 1
648 accountExpires: 9223372036854775807
649 logonCount: 0
650 sAMAccountName: krbtgt
651 sAMAccountType: 805306368
652 servicePrincipalName: kadmin/changepw
653 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
654 isCriticalSystemObject: TRUE
655 unicodePwd: ${RANDPASS}
656
657 dn: CN=Domain Computers,CN=Users,${BASEDN}
658 objectClass: top
659 objectClass: group
660 cn: Domain Computers
661 description: All workstations and servers joined to the domain
662 instanceType: 4
663 whenCreated: ${LDAPTIME}
664 whenChanged: ${LDAPTIME}
665 uSNCreated: 1
666 uSNChanged: 1
667 name: Domain Computers
668 objectGUID: ${NEWGUID}
669 objectSid: ${DOMAINSID}-515
670 sAMAccountName: Domain Computers
671 sAMAccountType: 0x10000000
672 groupType: 0x80000002
673 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
674 isCriticalSystemObject: TRUE
675
676 dn: CN=Domain Controllers,CN=Users,${BASEDN}
677 objectClass: top
678 objectClass: group
679 cn: Domain Controllers
680 description: All domain controllers in the domain
681 instanceType: 4
682 whenCreated: ${LDAPTIME}
683 whenChanged: ${LDAPTIME}
684 uSNCreated: 1
685 uSNChanged: 1
686 name: Domain Controllers
687 objectGUID: ${NEWGUID}
688 objectSid: ${DOMAINSID}-516
689 adminCount: 1
690 sAMAccountName: Domain Controllers
691 sAMAccountType: 0x10000000
692 groupType: 0x80000002
693 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
694 isCriticalSystemObject: TRUE
695
696 dn: CN=Schema Admins,CN=Users,${BASEDN}
697 objectClass: top
698 objectClass: group
699 cn: Schema Admins
700 description: Designated administrators of the schema
701 member: CN=Administrator,CN=Users,${BASEDN}
702 instanceType: 4
703 whenCreated: ${LDAPTIME}
704 whenChanged: ${LDAPTIME}
705 uSNCreated: 1
706 uSNChanged: 1
707 name: Schema Admins
708 objectGUID: ${NEWGUID}
709 objectSid: ${DOMAINSID}-518
710 adminCount: 1
711 sAMAccountName: Schema Admins
712 sAMAccountType: 0x10000000
713 groupType: 0x80000002
714 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
715 isCriticalSystemObject: TRUE
716 unixName: ${WHEEL}
717
718 dn: CN=Enterprise Admins,CN=Users,${BASEDN}
719 objectClass: top
720 objectClass: group
721 cn: Enterprise Admins
722 description: Designated administrators of the enterprise
723 member: CN=Administrator,CN=Users,${BASEDN}
724 instanceType: 4
725 whenCreated: ${LDAPTIME}
726 whenChanged: ${LDAPTIME}
727 uSNCreated: 1
728 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
729 uSNChanged: 1
730 name: Enterprise Admins
731 objectGUID: ${NEWGUID}
732 objectSid: ${DOMAINSID}-519
733 adminCount: 1
734 sAMAccountName: Enterprise Admins
735 sAMAccountType: 0x10000000
736 groupType: 0x80000002
737 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
738 isCriticalSystemObject: TRUE
739 unixName: ${WHEEL}
740
741 dn: CN=Cert Publishers,CN=Users,${BASEDN}
742 objectClass: top
743 objectClass: group
744 cn: Cert Publishers
745 description: Members of this group are permitted to publish certificates to the Active Directory
746 instanceType: 4
747 whenCreated: ${LDAPTIME}
748 whenChanged: ${LDAPTIME}
749 uSNCreated: 1
750 uSNChanged: 1
751 name: Cert Publishers
752 objectGUID: ${NEWGUID}
753 objectSid: ${DOMAINSID}-517
754 sAMAccountName: Cert Publishers
755 sAMAccountType: 0x20000000
756 groupType: 0x80000004
757 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
758 isCriticalSystemObject: TRUE
759
760 dn: CN=Domain Admins,CN=Users,${BASEDN}
761 objectClass: top
762 objectClass: group
763 cn: Domain Admins
764 description: Designated administrators of the domain
765 member: CN=Administrator,CN=Users,${BASEDN}
766 instanceType: 4
767 whenCreated: ${LDAPTIME}
768 whenChanged: ${LDAPTIME}
769 uSNCreated: 1
770 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
771 uSNChanged: 1
772 name: Domain Admins
773 objectGUID: ${NEWGUID}
774 objectSid: ${DOMAINSID}-512
775 adminCount: 1
776 sAMAccountName: Domain Admins
777 sAMAccountType: 0x10000000
778 groupType: 0x80000002
779 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
780 isCriticalSystemObject: TRUE
781 unixName: ${WHEEL}
782
783 dn: CN=Domain Users,CN=Users,${BASEDN}
784 objectClass: top
785 objectClass: group
786 cn: Domain Users
787 description: All domain users
788 instanceType: 4
789 whenCreated: ${LDAPTIME}
790 whenChanged: ${LDAPTIME}
791 uSNCreated: 1
792 memberOf: CN=Users,CN=Builtin,${BASEDN}
793 uSNChanged: 1
794 name: Domain Users
795 objectGUID: ${NEWGUID}
796 objectSid: ${DOMAINSID}-513
797 sAMAccountName: Domain Users
798 sAMAccountType: 0x10000000
799 groupType: 0x80000002
800 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
801 isCriticalSystemObject: TRUE
802 unixName: ${USERS}
803
804 dn: CN=Domain Guests,CN=Users,${BASEDN}
805 objectClass: top
806 objectClass: group
807 cn: Domain Guests
808 description: All domain guests
809 instanceType: 4
810 whenCreated: ${LDAPTIME}
811 whenChanged: ${LDAPTIME}
812 uSNCreated: 1
813 memberOf: CN=Guests,CN=Builtin,${BASEDN}
814 uSNChanged: 1
815 name: Domain Guests
816 objectGUID: ${NEWGUID}
817 objectSid: ${DOMAINSID}-514
818 sAMAccountName: Domain Guests
819 sAMAccountType: 0x10000000
820 groupType: 0x80000002
821 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
822 isCriticalSystemObject: TRUE
823
824 dn: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
825 objectClass: top
826 objectClass: group
827 cn: Group Policy Creator Owners
828 description: Members in this group can modify group policy for the domain
829 member: CN=Administrator,CN=Users,${BASEDN}
830 instanceType: 4
831 whenCreated: ${LDAPTIME}
832 whenChanged: ${LDAPTIME}
833 uSNCreated: 1
834 uSNChanged: 1
835 name: Group Policy Creator Owners
836 objectGUID: ${NEWGUID}
837 objectSid: ${DOMAINSID}-520
838 sAMAccountName: Group Policy Creator Owners
839 sAMAccountType: 0x10000000
840 groupType: 0x80000002
841 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
842 isCriticalSystemObject: TRUE
843 unixName: ${WHEEL}
844
845 dn: CN=RAS and IAS Servers,CN=Users,${BASEDN}
846 objectClass: top
847 objectClass: group
848 cn: RAS and IAS Servers
849 description: Servers in this group can access remote access properties of users
850 instanceType: 4
851 whenCreated: ${LDAPTIME}
852 whenChanged: ${LDAPTIME}
853 uSNCreated: 1
854 uSNChanged: 1
855 name: RAS and IAS Servers
856 objectGUID: ${NEWGUID}
857 objectSid: ${DOMAINSID}-553
858 sAMAccountName: RAS and IAS Servers
859 sAMAccountType: 0x20000000
860 groupType: 0x80000004
861 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
862 isCriticalSystemObject: TRUE
863
864 dn: CN=Server Operators,CN=Builtin,${BASEDN}
865 objectClass: top
866 objectClass: group
867 cn: Server Operators
868 description: Members can administer domain servers
869 instanceType: 4
870 whenCreated: ${LDAPTIME}
871 whenChanged: ${LDAPTIME}
872 uSNCreated: 1
873 uSNChanged: 1
874 name: Server Operators
875 objectGUID: ${NEWGUID}
876 objectSid: S-1-5-32-549
877 adminCount: 1
878 sAMAccountName: Server Operators
879 sAMAccountType: 0x20000000
880 systemFlags: 0x8c000000
881 groupType: 0x80000005
882 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
883 isCriticalSystemObject: TRUE
884 privilege: SeBackupPrivilege
885 privilege: SeSystemtimePrivilege
886 privilege: SeRemoteShutdownPrivilege
887 privilege: SeRestorePrivilege
888 privilege: SeShutdownPrivilege
889 privilege: SeInteractiveLogonRight
890
891 dn: CN=Account Operators,CN=Builtin,${BASEDN}
892 objectClass: top
893 objectClass: group
894 cn: Account Operators
895 description: Members can administer domain user and group accounts
896 instanceType: 4
897 whenCreated: ${LDAPTIME}
898 whenChanged: ${LDAPTIME}
899 uSNCreated: 1
900 uSNChanged: 1
901 name: Account Operators
902 objectGUID: ${NEWGUID}
903 objectSid: S-1-5-32-548
904 adminCount: 1
905 sAMAccountName: Account Operators
906 sAMAccountType: 0x20000000
907 systemFlags: 0x8c000000
908 groupType: 0x80000005
909 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
910 isCriticalSystemObject: TRUE
911 privilege: SeInteractiveLogonRight
912
913 dn: CN=Templates,${BASEDN}
914 objectClass: top
915 objectClass: container
916 cn: Templates
917 description: Container for SAM account templates
918 instanceType: 4
919 whenCreated: ${LDAPTIME}
920 whenChanged: ${LDAPTIME}
921 uSNCreated: 1
922 uSNChanged: 1
923 showInAdvancedViewOnly: TRUE
924 name: Templates
925 objectGUID: ${NEWGUID}
926 systemFlags: 0x8c000000
927 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
928 isCriticalSystemObject: TRUE
929
930 ###
931 # note! the template users must not match normal searches. Be careful
932 # with what classes you put them in
933 ###
934
935 dn: CN=TemplateUser,CN=Templates,${BASEDN}
936 objectClass: top
937 objectClass: person
938 objectClass: organizationalPerson
939 objectClass: Template
940 objectClass: userTemplate
941 cn: TemplateUser
942 name: TemplateUser
943 instanceType: 4
944 userAccountControl: 0x202
945 badPwdCount: 0
946 codePage: 0
947 countryCode: 0
948 badPasswordTime: 0
949 lastLogoff: 0
950 lastLogon: 0
951 pwdLastSet: 0
952 primaryGroupID: 513
953 accountExpires: -1
954 logonCount: 0
955 sAMAccountType: 0x30000000
956
957 dn: CN=TemplateMemberServer,CN=Templates,${BASEDN}
958 objectClass: top
959 objectClass: Template
960 objectClass: userTemplate
961 cn: TemplateMemberServer
962 name: TemplateMemberServer
963 instanceType: 4
964 userAccountControl: 0x1002
965 badPwdCount: 0
966 codePage: 0
967 countryCode: 0
968 badPasswordTime: 0
969 lastLogoff: 0
970 lastLogon: 0
971 pwdLastSet: 0
972 primaryGroupID: 513
973 accountExpires: -1
974 logonCount: 0
975 sAMAccountType: 0x30000001
976
977 dn: CN=TemplateDomainController,CN=Templates,${BASEDN}
978 objectClass: top
979 objectClass: Template
980 objectClass: userTemplate
981 cn: TemplateDomainController
982 name: TemplateDomainController
983 instanceType: 4
984 userAccountControl: 0x2002
985 badPwdCount: 0
986 codePage: 0
987 countryCode: 0
988 badPasswordTime: 0
989 lastLogoff: 0
990 lastLogon: 0
991 pwdLastSet: 0
992 primaryGroupID: 513
993 accountExpires: -1
994 logonCount: 0
995 sAMAccountType: 0x30000001
996
997 dn: CN=TemplateTrustingDomain,CN=Templates,${BASEDN}
998 objectClass: top
999 objectClass: Template
1000 objectClass: userTemplate
1001 cn: TemplateTrustingDomain
1002 name: TemplateTrustingDomain
1003 instanceType: 4
1004 userAccountControl: 0x820
1005 badPwdCount: 0
1006 codePage: 0
1007 countryCode: 0
1008 badPasswordTime: 0
1009 lastLogoff: 0
1010 lastLogon: 0
1011 pwdLastSet: 0
1012 primaryGroupID: 513
1013 accountExpires: -1
1014 logonCount: 0
1015 sAMAccountType: 0x30000002
1016
1017 dn: CN=TemplateGroup,CN=Templates,${BASEDN}
1018 objectClass: top
1019 objectClass: Template
1020 objectClass: groupTemplate
1021 cn: TemplateGroup
1022 name: TemplateGroup
1023 instanceType: 4
1024 groupType: 0x80000002
1025 sAMAccountType: 0x10000000
1026
1027 dn: CN=TemplateAlias,CN=Templates,${BASEDN}
1028 objectClass: top
1029 objectClass: Template
1030 objectClass: aliasTemplate
1031 cn: TemplateAlias
1032 name: TemplateAlias
1033 instanceType: 4
1034 groupType: 0x80000004
1035 sAMAccountType: 0x10000000
1036
1037 dn: CN=TemplateForeignSecurityPrincipal,CN=Templates,${BASEDN}
1038 objectClass: top
1039 objectClass: Template
1040 objectClass: foreignSecurityPrincipalTemplate
1041 cn: TemplateForeignSecurityPrincipal
1042 name: TemplateForeignSecurityPrincipal
1043
1044 dn: CN=TemplateSecret,CN=Templates,${BASEDN}
1045 objectClass: top
1046 objectClass: leaf
1047 objectClass: Template
1048 objectClass: secretTemplate
1049 cn: TemplateSecret
1050 name: TemplateSecret
1051 instanceType: 4
1052
1053 dn: CN=TemplateTrustedDomain,CN=Templates,${BASEDN}
1054 objectClass: top
1055 objectClass: leaf
1056 objectClass: Template
1057 objectClass: trustedDomainTemplate
1058 cn: TemplateTrustedDomain
1059 name: TemplateTrustedDomain
1060 instanceType: 4
1061
1062 ###############################
1063 # Configuration Naming Context
1064 ###############################
1065 dn: CN=Configuration,${BASEDN}
1066 objectClass: top
1067 objectClass: configuration
1068 cn: Configuration
1069 instanceType: 13
1070 whenCreated: ${LDAPTIME}
1071 whenChanged: ${LDAPTIME}
1072 uSNCreated: ${USN}
1073 uSNChanged: ${USN}
1074 showInAdvancedViewOnly: TRUE
1075 name: Configuration
1076 objectGUID: ${NEWGUID}
1077 objectCategory: CN=Configuration,CN=Schema,CN=Configuration,${BASEDN}
1078 subRefs: CN=Schema,CN=Configuration,${BASEDN}
1079 masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1080 msDs-masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1081
1082 dn: CN=Partitions,CN=Configuration,${BASEDN}
1083 objectClass: top
1084 objectClass: crossRefContainer
1085 cn: Partitions
1086 instanceType: 4
1087 whenCreated: ${LDAPTIME}
1088 whenChanged: ${LDAPTIME}
1089 uSNCreated: ${USN}
1090 uSNChanged: ${USN}
1091 showInAdvancedViewOnly: TRUE
1092 name: Partitions
1093 objectGUID: ${NEWGUID}
1094 systemFlags: 0x80000000
1095 objectCategory: CN=Cross-Ref-Container,CN=Schema,CN=Configuration,${BASEDN}
1096 msDS-Behavior-Version: 0
1097 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1098
1099 dn: CN=Enterprise Configuration,CN=Partitions,CN=Configuration,${BASEDN}
1100 objectClass: top
1101 objectClass: crossRef
1102 cn: Enterprise Configuration
1103 instanceType: 4
1104 whenCreated: ${LDAPTIME}
1105 whenChanged: ${LDAPTIME}
1106 uSNCreated: ${USN}
1107 uSNChanged: ${USN}
1108 showInAdvancedViewOnly: TRUE
1109 name: Enterprise Configuration
1110 objectGUID: ${NEWGUID}
1111 systemFlags: 0x00000001
1112 objectCategory: CN=Cross-Ref,CN=Schema,CN=Configuration,${BASEDN}
1113 nCName: CN=Configuration,${BASEDN}
1114 dnsRoot: ${DNSDOMAIN}
1115
1116 dn: CN=Enterprise Schema,CN=Partitions,CN=Configuration,${BASEDN}
1117 objectClass: top
1118 objectClass: crossRef
1119 cn: Enterprise Schema
1120 instanceType: 4
1121 whenCreated: ${LDAPTIME}
1122 whenChanged: ${LDAPTIME}
1123 uSNCreated: ${USN}
1124 uSNChanged: ${USN}
1125 showInAdvancedViewOnly: TRUE
1126 name: Enterprise Schema
1127 objectGUID: ${NEWGUID}
1128 systemFlags: 0x00000001
1129 objectCategory: CN=Cross-Ref,CN=Schema,CN=Configuration,${BASEDN}
1130 nCName: CN=Schema,CN=Configuration,${BASEDN}
1131 dnsRoot: ${DNSDOMAIN}
1132
1133 dn: CN=${DOMAIN},CN=Partitions,CN=Configuration,${BASEDN}
1134 objectClass: top
1135 objectClass: crossRef
1136 cn: ${DOMAIN}
1137 instanceType: 4
1138 whenCreated: ${LDAPTIME}
1139 whenChanged: ${LDAPTIME}
1140 uSNCreated: ${USN}
1141 uSNChanged: ${USN}
1142 showInAdvancedViewOnly: TRUE
1143 name: ${DOMAIN}
1144 objectGUID: ${NEWGUID}
1145 systemFlags: 0x00000003
1146 objectCategory: CN=Cross-Ref,CN=Schema,CN=Configuration,${BASEDN}
1147 nCName: ${BASEDN}
1148 nETBIOSName: ${DOMAIN}
1149 dnsRoot: ${DNSDOMAIN}
1150
1151 dn: CN=Sites,CN=Configuration,${BASEDN}
1152 objectClass: top
1153 objectClass: sitesContainer
1154 cn: Sites
1155 instanceType: 4
1156 whenCreated: ${LDAPTIME}
1157 whenChanged: ${LDAPTIME}
1158 uSNCreated: ${USN}
1159 uSNChanged: ${USN}
1160 showInAdvancedViewOnly: TRUE
1161 name: Sites
1162 objectGUID: ${NEWGUID}
1163 systemFlags: 0x82000000
1164 objectCategory: CN=Sites-Container,CN=Schema,CN=Configuration,${BASEDN}
1165
1166 dn: CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1167 objectClass: top
1168 objectClass: site
1169 cn: Sites
1170 instanceType: 4
1171 whenCreated: ${LDAPTIME}
1172 whenChanged: ${LDAPTIME}
1173 uSNCreated: ${USN}
1174 uSNChanged: ${USN}
1175 showInAdvancedViewOnly: TRUE
1176 name: Sites
1177 objectGUID: ${NEWGUID}
1178 systemFlags: 0x82000000
1179 objectCategory: CN=Site,CN=Schema,CN=Configuration,${BASEDN}
1180
1181 dn: CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1182 objectClass: top
1183 objectClass: serversContainer
1184 cn: Servers
1185 instanceType: 4
1186 whenCreated: ${LDAPTIME}
1187 whenChanged: ${LDAPTIME}
1188 uSNCreated: ${USN}
1189 uSNChanged: ${USN}
1190 showInAdvancedViewOnly: TRUE
1191 name: Servers
1192 objectGUID: ${NEWGUID}
1193 systemFlags: 0x82000000
1194 objectCategory: CN=Servers-Container,CN=Schema,CN=Configuration,${BASEDN}
1195
1196 dn: CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1197 objectClass: top
1198 objectClass: server
1199 cn: ${NETBIOSNAME}
1200 instanceType: 4
1201 whenCreated: ${LDAPTIME}
1202 whenChanged: ${LDAPTIME}
1203 uSNCreated: ${USN}
1204 uSNChanged: ${USN}
1205 showInAdvancedViewOnly: TRUE
1206 name: ${NETBIOSNAME}
1207 objectGUID: ${NEWGUID}
1208 systemFlags: 0x52000000
1209 objectCategory: CN=Server,CN=Schema,CN=Configuration,${BASEDN}
1210 dNSHostName: ${DNSNAME}
1211 serverReference: CN=${NETBIOSNAME},OU=Domain Controllers,${BASEDN}
1212
1213 dn: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1214 objectClass: top
1215 objectClass: applicationSettings
1216 objectClass: nTDSDSA
1217 cn: NTDS Settings
1218 instanceType: 4
1219 whenCreated: ${LDAPTIME}
1220 whenChanged: ${LDAPTIME}
1221 uSNCreated: ${USN}
1222 uSNChanged: ${USN}
1223 showInAdvancedViewOnly: TRUE
1224 name: NTDS Settings
1225 systemFlags: 0x02000000
1226 objectCategory: CN=NTDS-DSA,CN=Schema,CN=Configuration,${BASEDN}
1227 dMDLocation: CN=Schema,CN=Configuration,${BASEDN}
1228 objectGUID: ${INVOCATIONID}
1229 invocationId: ${INVOCATIONID}
1230 msDS-Behavior-Version: 2
1231
1232 ###############################
1233 # Schema Naming Context
1234 ###############################
1235 dn: CN=Schema,CN=Configuration,${BASEDN}
1236 objectClass: top
1237 objectClass: dMD
1238 cn: Schema
1239 instanceType: 13
1240 whenCreated: ${LDAPTIME}
1241 whenChanged: ${LDAPTIME}
1242 uSNCreated: ${USN}
1243 uSNChanged: ${USN}
1244 showInAdvancedViewOnly: TRUE
1245 name: Schema
1246 objectGUID: ${NEWGUID}
1247 objectCategory: CN=DMD,CN=Schema,CN=Configuration,${BASEDN}
1248 masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1249 msDs-masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1250 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1251 objectVersion: 30