3 @IDXATTR: sAMAccountName
8 name: CASE_INSENSITIVE WILDCARD
9 sAMAccountName: CASE_INSENSITIVE WILDCARD
10 objectClass: CASE_INSENSITIVE
19 person: organizationalPerson
20 organizationalPerson: user
22 template: userTemplate
23 template: groupTemplate
28 objectClass: domainDNS
31 objectGUID: ${NEWGUID}
32 creationTime: ${NTTIME}
33 forceLogoff: 0x8000000000000000
34 lockoutDuration: -18000000000
35 lockOutObservationWindow: -18000000000
37 whenCreated: ${LDAPTIME}
38 whenChanged: ${LDAPTIME}
41 maxPwdAge: -37108517437440
44 modifiedCountAtLastProm: 0
48 objectSid: ${DOMAINSID}
52 objectCategory: CN=Domain-DNS,CN=Schema,CN=Configuration,${BASEDN}
53 isCriticalSystemObject: TRUE
55 dn: CN=Users,${BASEDN}
57 objectClass: container
59 description: Default container for upgraded user accounts
61 whenCreated: ${LDAPTIME}
62 whenChanged: ${LDAPTIME}
65 showInAdvancedViewOnly: FALSE
67 objectGUID: ${NEWGUID}
68 systemFlags: 0x8c000000
69 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
70 isCriticalSystemObject: TRUE
72 dn: CN=Computers,${BASEDN}
74 objectClass: container
76 description: Default container for upgraded computer accounts
78 whenCreated: ${LDAPTIME}
79 whenChanged: ${LDAPTIME}
82 showInAdvancedViewOnly: FALSE
84 objectGUID: ${NEWGUID}
85 systemFlags: 0x8c000000
86 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
87 isCriticalSystemObject: TRUE
89 dn: OU=Domain Controllers,${BASEDN}
91 objectClass: organizationalUnit
92 ou: Domain Controllers
93 description: Default container for domain controllers
95 whenCreated: ${LDAPTIME}
96 whenChanged: ${LDAPTIME}
99 showInAdvancedViewOnly: FALSE
100 name: Domain Controllers
101 objectGUID: ${NEWGUID}
102 systemFlags: 0x8c000000
103 objectCategory: CN=Organizational-Unit,CN=Schema,CN=Configuration,${BASEDN}
104 isCriticalSystemObject: TRUE
106 dn: CN=ForeignSecurityPrincipals,${BASEDN}
108 objectClass: container
109 cn: ForeignSecurityPrincipals
110 description: Default container for security identifiers (SIDs) associated with objects from external, trusted domains
112 whenCreated: ${LDAPTIME}
113 whenChanged: ${LDAPTIME}
116 showInAdvancedViewOnly: FALSE
117 name: ForeignSecurityPrincipals
118 objectGUID: ${NEWGUID}
119 systemFlags: 0x8c000000
120 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
121 isCriticalSystemObject: TRUE
123 dn: CN=Builtin,${BASEDN}
125 objectClass: builtinDomain
128 showInAdvancedViewOnly: FALSE
130 forceLogoff: 0x8000000000000000
131 lockoutDuration: -18000000000
132 lockOutObservationWindow: -18000000000
134 maxPwdAge: -37108517437440
137 modifiedCountAtLastProm: 0
145 objectCategory: CN=Builtin-Domain,CN=Schema,CN=Configuration,${BASEDN}
146 isCriticalSystemObject: TRUE
148 dn: CN=Administrator,CN=Users,${BASEDN}
151 objectClass: organizationalPerson
154 description: Built-in account for administering the computer/domain
156 whenCreated: ${LDAPTIME}
157 whenChanged: ${LDAPTIME}
159 memberOf: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
160 memberOf: CN=Domain Admins,CN=Users,${BASEDN}
161 memberOf: CN=Enterprise Admins,CN=Users,${BASEDN}
162 memberOf: CN=Schema Admins,CN=Users,${BASEDN}
163 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
166 objectGUID: ${NEWGUID}
167 userAccountControl: 0x10200
176 objectSid: ${DOMAINSID}-500
180 sAMAccountName: Administrator
181 sAMAccountType: 0x30000000
182 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
183 isCriticalSystemObject: TRUE
185 dn: CN=Guest,CN=Users,${BASEDN}
188 objectClass: organizationalPerson
191 description: Built-in account for guest access to the computer/domain
193 whenCreated: ${LDAPTIME}
194 whenChanged: ${LDAPTIME}
196 memberOf: CN=Guests,CN=Builtin,${BASEDN}
199 objectGUID: ${NEWGUID}
200 userAccountControl: 0x10222
209 objectSid: ${DOMAINSID}-501
212 sAMAccountName: Guest
213 sAMAccountType: 0x30000000
214 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
215 isCriticalSystemObject: TRUE
217 dn: CN=Administrators,CN=Builtin,${BASEDN}
221 description: Administrators have complete and unrestricted access to the computer/domain
222 member: CN=Domain Admins,CN=Users,${BASEDN}
223 member: CN=Enterprise Admins,CN=Users,${BASEDN}
224 member: CN=Administrator,CN=Users,${BASEDN}
226 whenCreated: ${LDAPTIME}
227 whenChanged: ${LDAPTIME}
231 objectGUID: ${NEWGUID}
232 objectSid: S-1-5-32-544
234 sAMAccountName: Administrators
235 sAMAccountType: 0x20000000
236 systemFlags: 0x8c000000
237 groupType: 0x80000005
238 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
239 isCriticalSystemObject: TRUE
241 dn: CN=Users,CN=Builtin,${BASEDN}
245 description: Users are prevented from making accidental or intentional system-wide changes. Thus, Users can run certified applications, but not most legacy applications
246 member: CN=Domain Users,CN=Users,${BASEDN}
248 whenCreated: ${LDAPTIME}
249 whenChanged: ${LDAPTIME}
253 objectGUID: ${NEWGUID}
254 objectSid: S-1-5-32-545
255 sAMAccountName: Users
256 sAMAccountType: 0x20000000
257 systemFlags: 0x8c000000
258 groupType: 0x80000005
259 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
260 isCriticalSystemObject: TRUE
262 dn: CN=Guests,CN=Builtin,${BASEDN}
266 description: Guests have the same access as members of the Users group by default, except for the Guest account which is further restricted
267 member: CN=Domain Guests,CN=Users,${BASEDN}
268 member: CN=Guest,CN=Users,${BASEDN}
270 whenCreated: ${LDAPTIME}
271 whenChanged: ${LDAPTIME}
275 objectGUID: ${NEWGUID}
276 objectSid: S-1-5-32-546
277 sAMAccountName: Guests
278 sAMAccountType: 0x20000000
279 systemFlags: 0x8c000000
280 groupType: 0x80000005
281 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
282 isCriticalSystemObject: TRUE
284 dn: CN=Print Operators,CN=Builtin,${BASEDN}
288 description: Members can administer domain printers
290 whenCreated: ${LDAPTIME}
291 whenChanged: ${LDAPTIME}
294 name: Print Operators
295 objectGUID: ${NEWGUID}
296 objectSid: S-1-5-32-550
298 sAMAccountName: Print Operators
299 sAMAccountType: 0x20000000
300 systemFlags: 0x8c000000
301 groupType: 0x80000005
302 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
303 isCriticalSystemObject: TRUE
305 dn: CN=Backup Operators,CN=Builtin,${BASEDN}
309 description: Backup Operators can override security restrictions for the sole purpose of backing up or restoring files
311 whenCreated: ${LDAPTIME}
312 whenChanged: ${LDAPTIME}
315 name: Backup Operators
316 objectGUID: ${NEWGUID}
317 objectSid: S-1-5-32-551
319 sAMAccountName: Backup Operators
320 sAMAccountType: 0x20000000
321 systemFlags: 0x8c000000
322 groupType: 0x80000005
323 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
324 isCriticalSystemObject: TRUE
326 dn: CN=Replicator,CN=Builtin,${BASEDN}
330 description: Supports file replication in a domain
332 whenCreated: ${LDAPTIME}
333 whenChanged: ${LDAPTIME}
337 objectGUID: ${NEWGUID}
338 objectSid: S-1-5-32-552
340 sAMAccountName: Replicator
341 sAMAccountType: 0x20000000
342 systemFlags: 0x8c000000
343 groupType: 0x80000005
344 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
345 isCriticalSystemObject: TRUE
347 dn: CN=Remote Desktop Users,CN=Builtin,${BASEDN}
350 cn: Remote Desktop Users
351 description: Members in this group are granted the right to logon remotely
353 whenCreated: ${LDAPTIME}
354 whenChanged: ${LDAPTIME}
357 name: Remote Desktop Users
358 objectGUID: ${NEWGUID}
359 objectSid: S-1-5-32-555
360 sAMAccountName: Remote Desktop Users
361 sAMAccountType: 0x20000000
362 systemFlags: 0x8c000000
363 groupType: 0x80000005
364 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
365 isCriticalSystemObject: TRUE
367 dn: CN=Network Configuration Operators,CN=Builtin,${BASEDN}
370 cn: Network Configuration Operators
371 description: Members in this group can have some administrative privileges to manage configuration of networking features
373 whenCreated: ${LDAPTIME}
374 whenChanged: ${LDAPTIME}
377 name: Network Configuration Operators
378 objectGUID: ${NEWGUID}
379 objectSid: S-1-5-32-556
380 sAMAccountName: Network Configuration Operators
381 sAMAccountType: 0x20000000
382 systemFlags: 0x8c000000
383 groupType: 0x80000005
384 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
385 isCriticalSystemObject: TRUE
387 dn: CN=Performance Monitor Users,CN=Builtin,${BASEDN}
390 cn: Performance Monitor Users
391 description: Members of this group have remote access to monitor this computer
393 whenCreated: ${LDAPTIME}
394 whenChanged: ${LDAPTIME}
397 name: Performance Monitor Users
398 objectGUID: ${NEWGUID}
399 objectSid: S-1-5-32-558
400 sAMAccountName: Performance Monitor Users
401 sAMAccountType: 0x20000000
402 systemFlags: 0x8c000000
403 groupType: 0x80000005
404 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
405 isCriticalSystemObject: TRUE
407 dn: CN=Performance Log Users,CN=Builtin,${BASEDN}
410 cn: Performance Log Users
411 description: Members of this group have remote access to schedule logging of performance counters on this computer
413 whenCreated: ${LDAPTIME}
414 whenChanged: ${LDAPTIME}
417 name: Performance Log Users
418 objectGUID: ${NEWGUID}
419 objectSid: S-1-5-32-559
420 sAMAccountName: Performance Log Users
421 sAMAccountType: 0x20000000
422 systemFlags: 0x8c000000
423 groupType: 0x80000005
424 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
425 isCriticalSystemObject: TRUE
427 dn: CN=${HOSTNAME},OU=Domain Controllers,${BASEDN}
430 objectClass: organizationalPerson
432 objectClass: computer
435 whenCreated: ${LDAPTIME}
436 whenChanged: ${LDAPTIME}
440 objectGUID: ${NEWGUID}
441 userAccountControl: 532480
447 lastLogon: 127273269057298624
449 pwdLastSet: 127258826171655328
451 objectSid: ${DOMAINSID}-1000
452 accountExpires: 9223372036854775807
454 sAMAccountName: ${HOSTNAME}$
455 sAMAccountType: 805306369
456 operatingSystem: Samba
457 operatingSystemVersion: 4.0
458 dNSHostName: ${DNSNAME}
459 objectCategory: CN=Computer,CN=Schema,CN=Configuration,${BASEDN}
460 isCriticalSystemObject: TRUE
462 dn: CN=krbtgt,CN=Users,${BASEDN}
465 objectClass: organizationalPerson
468 description: Key Distribution Center Service Account
470 whenCreated: ${LDAPTIME}
471 whenChanged: ${LDAPTIME}
474 showInAdvancedViewOnly: TRUE
476 objectGUID: ${NEWGUID}
477 userAccountControl: 514
484 pwdLastSet: 127258826179466560
486 objectSid: ${DOMAINSID}-502
488 accountExpires: 9223372036854775807
490 sAMAccountName: krbtgt
491 sAMAccountType: 805306368
492 servicePrincipalName: kadmin/changepw
493 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
494 isCriticalSystemObject: TRUE
496 dn: CN=Domain Computers,CN=Users,${BASEDN}
500 description: All workstations and servers joined to the domain
502 whenCreated: ${LDAPTIME}
503 whenChanged: ${LDAPTIME}
506 name: Domain Computers
507 objectGUID: ${NEWGUID}
508 objectSid: ${DOMAINSID}-515
509 sAMAccountName: Domain Computers
510 sAMAccountType: 268435456
511 groupType: -2147483646
512 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
513 isCriticalSystemObject: TRUE
515 dn: CN=Domain Controllers,CN=Users,${BASEDN}
518 cn: Domain Controllers
519 description: All domain controllers in the domain
521 whenCreated: ${LDAPTIME}
522 whenChanged: ${LDAPTIME}
525 name: Domain Controllers
526 objectGUID: ${NEWGUID}
527 objectSid: ${DOMAINSID}-516
529 sAMAccountName: Domain Controllers
530 sAMAccountType: 268435456
531 groupType: -2147483646
532 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
533 isCriticalSystemObject: TRUE
535 dn: CN=Schema Admins,CN=Users,${BASEDN}
539 description: Designated administrators of the schema
540 member: CN=Administrator,CN=Users,${BASEDN}
542 whenCreated: ${LDAPTIME}
543 whenChanged: ${LDAPTIME}
547 objectGUID: ${NEWGUID}
548 objectSid: ${DOMAINSID}-518
550 sAMAccountName: Schema Admins
551 sAMAccountType: 268435456
552 groupType: -2147483646
553 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
554 isCriticalSystemObject: TRUE
556 dn: CN=Enterprise Admins,CN=Users,${BASEDN}
559 cn: Enterprise Admins
560 description: Designated administrators of the enterprise
561 member: CN=Administrator,CN=Users,${BASEDN}
563 whenCreated: ${LDAPTIME}
564 whenChanged: ${LDAPTIME}
566 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
568 name: Enterprise Admins
569 objectGUID: ${NEWGUID}
570 objectSid: ${DOMAINSID}-519
572 sAMAccountName: Enterprise Admins
573 sAMAccountType: 268435456
574 groupType: -2147483646
575 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
576 isCriticalSystemObject: TRUE
578 dn: CN=Cert Publishers,CN=Users,${BASEDN}
582 description: Members of this group are permitted to publish certificates to the Active Directory
584 whenCreated: ${LDAPTIME}
585 whenChanged: ${LDAPTIME}
588 name: Cert Publishers
589 objectGUID: ${NEWGUID}
590 objectSid: ${DOMAINSID}-517
591 sAMAccountName: Cert Publishers
592 sAMAccountType: 0x20000000
593 groupType: -2147483644
594 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
595 isCriticalSystemObject: TRUE
597 dn: CN=Domain Admins,CN=Users,${BASEDN}
601 description: Designated administrators of the domain
602 member: CN=Administrator,CN=Users,${BASEDN}
604 whenCreated: ${LDAPTIME}
605 whenChanged: ${LDAPTIME}
607 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
610 objectGUID: ${NEWGUID}
611 objectSid: ${DOMAINSID}-512
613 sAMAccountName: Domain Admins
614 sAMAccountType: 268435456
615 groupType: -2147483646
616 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
617 isCriticalSystemObject: TRUE
619 dn: CN=Domain Users,CN=Users,${BASEDN}
623 description: All domain users
625 whenCreated: ${LDAPTIME}
626 whenChanged: ${LDAPTIME}
628 memberOf: CN=Users,CN=Builtin,${BASEDN}
631 objectGUID: ${NEWGUID}
632 objectSid: ${DOMAINSID}-513
633 sAMAccountName: Domain Users
634 sAMAccountType: 268435456
635 groupType: -2147483646
636 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
637 isCriticalSystemObject: TRUE
639 dn: CN=Domain Guests,CN=Users,${BASEDN}
643 description: All domain guests
645 whenCreated: ${LDAPTIME}
646 whenChanged: ${LDAPTIME}
648 memberOf: CN=Guests,CN=Builtin,${BASEDN}
651 objectGUID: ${NEWGUID}
652 objectSid: ${DOMAINSID}-514
653 sAMAccountName: Domain Guests
654 sAMAccountType: 268435456
655 groupType: -2147483646
656 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
657 isCriticalSystemObject: TRUE
659 dn: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
662 cn: Group Policy Creator Owners
663 description: Members in this group can modify group policy for the domain
664 member: CN=Administrator,CN=Users,${BASEDN}
666 whenCreated: ${LDAPTIME}
667 whenChanged: ${LDAPTIME}
670 name: Group Policy Creator Owners
671 objectGUID: ${NEWGUID}
672 objectSid: ${DOMAINSID}-520
673 sAMAccountName: Group Policy Creator Owners
674 sAMAccountType: 268435456
675 groupType: -2147483646
676 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
677 isCriticalSystemObject: TRUE
679 dn: CN=RAS and IAS Servers,CN=Users,${BASEDN}
682 cn: RAS and IAS Servers
683 description: Servers in this group can access remote access properties of users
685 whenCreated: ${LDAPTIME}
686 whenChanged: ${LDAPTIME}
689 name: RAS and IAS Servers
690 objectGUID: ${NEWGUID}
691 objectSid: ${DOMAINSID}-553
692 sAMAccountName: RAS and IAS Servers
693 sAMAccountType: 0x20000000
694 groupType: -2147483644
695 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
696 isCriticalSystemObject: TRUE
698 dn: CN=Server Operators,CN=Builtin,${BASEDN}
702 description: Members can administer domain servers
704 whenCreated: ${LDAPTIME}
705 whenChanged: ${LDAPTIME}
708 name: Server Operators
709 objectGUID: ${NEWGUID}
710 objectSid: S-1-5-32-549
712 sAMAccountName: Server Operators
713 sAMAccountType: 0x20000000
714 systemFlags: 0x8c000000
715 groupType: 0x80000005
716 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
717 isCriticalSystemObject: TRUE
719 dn: CN=Account Operators,CN=Builtin,${BASEDN}
722 cn: Account Operators
723 description: Members can administer domain user and group accounts
725 whenCreated: ${LDAPTIME}
726 whenChanged: ${LDAPTIME}
729 name: Account Operators
730 objectGUID: ${NEWGUID}
731 objectSid: S-1-5-32-548
733 sAMAccountName: Account Operators
734 sAMAccountType: 0x20000000
735 systemFlags: 0x8c000000
736 groupType: 0x80000005
737 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
738 isCriticalSystemObject: TRUE
740 dn: CN=Templates,${BASEDN}
742 objectClass: container
744 description: Container for SAM account templates
746 whenCreated: ${LDAPTIME}
747 whenChanged: ${LDAPTIME}
750 showInAdvancedViewOnly: FALSE
752 objectGUID: ${NEWGUID}
753 systemFlags: 0x8c000000
754 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
755 isCriticalSystemObject: TRUE
757 dn: CN=TemplateUser,CN=Templates,${BASEDN}
760 objectClass: organizationalPerson
761 objectClass: Template
762 objectClass: userTemplate
766 userAccountControl: 0x222
777 sAMAccountType: 0x30000000
779 dn: CN=TemplateGroup,CN=Templates,${BASEDN}
781 objectClass: Template
782 objectClass: groupTemplate
786 sAMAccountType: 0x10000000