3 @IDXATTR: sAMAccountName
8 realm: CASE_INSENSITIVE
9 userPrincipalName: CASE_INSENSITIVE
10 servicePrincipalName: CASE_INSENSITIVE
11 name: CASE_INSENSITIVE WILDCARD
12 dn: CASE_INSENSITIVE WILDCARD
13 sAMAccountName: CASE_INSENSITIVE WILDCARD
14 objectClass: CASE_INSENSITIVE
27 person: organizationalPerson
28 organizationalPerson: user
30 template: userTemplate
31 template: groupTemplate
36 objectClass: domainDNS
39 dnsDomain: ${DNSDOMAIN}
41 objectGUID: ${DOMAINGUID}
42 creationTime: ${NTTIME}
43 forceLogoff: 0x8000000000000000
44 lockoutDuration: -18000000000
45 lockOutObservationWindow: -18000000000
47 whenCreated: ${LDAPTIME}
48 whenChanged: ${LDAPTIME}
51 maxPwdAge: -37108517437440
54 modifiedCountAtLastProm: 0
58 objectSid: ${DOMAINSID}
62 objectCategory: CN=Domain-DNS,CN=Schema,CN=Configuration,${BASEDN}
63 isCriticalSystemObject: TRUE
65 dn: CN=Users,${BASEDN}
67 objectClass: container
69 description: Default container for upgraded user accounts
71 whenCreated: ${LDAPTIME}
72 whenChanged: ${LDAPTIME}
75 showInAdvancedViewOnly: FALSE
77 objectGUID: ${NEWGUID}
78 systemFlags: 0x8c000000
79 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
80 isCriticalSystemObject: TRUE
82 dn: CN=Computers,${BASEDN}
84 objectClass: container
86 description: Default container for upgraded computer accounts
88 whenCreated: ${LDAPTIME}
89 whenChanged: ${LDAPTIME}
92 showInAdvancedViewOnly: FALSE
94 objectGUID: ${NEWGUID}
95 systemFlags: 0x8c000000
96 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
97 isCriticalSystemObject: TRUE
99 dn: OU=Domain Controllers,${BASEDN}
101 objectClass: organizationalUnit
102 ou: Domain Controllers
103 description: Default container for domain controllers
105 whenCreated: ${LDAPTIME}
106 whenChanged: ${LDAPTIME}
109 showInAdvancedViewOnly: FALSE
110 name: Domain Controllers
111 objectGUID: ${NEWGUID}
112 systemFlags: 0x8c000000
113 objectCategory: CN=Organizational-Unit,CN=Schema,CN=Configuration,${BASEDN}
114 isCriticalSystemObject: TRUE
116 dn: CN=ForeignSecurityPrincipals,${BASEDN}
118 objectClass: container
119 cn: ForeignSecurityPrincipals
120 description: Default container for security identifiers (SIDs) associated with objects from external, trusted domains
122 whenCreated: ${LDAPTIME}
123 whenChanged: ${LDAPTIME}
126 showInAdvancedViewOnly: FALSE
127 name: ForeignSecurityPrincipals
128 objectGUID: ${NEWGUID}
129 systemFlags: 0x8c000000
130 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
131 isCriticalSystemObject: TRUE
133 dn: CN=Builtin,${BASEDN}
135 objectClass: builtinDomain
138 showInAdvancedViewOnly: FALSE
140 forceLogoff: 0x8000000000000000
141 lockoutDuration: -18000000000
142 lockOutObservationWindow: -18000000000
144 maxPwdAge: -37108517437440
147 modifiedCountAtLastProm: 0
155 objectCategory: CN=Builtin-Domain,CN=Schema,CN=Configuration,${BASEDN}
156 isCriticalSystemObject: TRUE
158 dn: CN=Administrator,CN=Users,${BASEDN}
161 objectClass: organizationalPerson
164 description: Built-in account for administering the computer/domain
166 whenCreated: ${LDAPTIME}
167 whenChanged: ${LDAPTIME}
169 memberOf: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
170 memberOf: CN=Domain Admins,CN=Users,${BASEDN}
171 memberOf: CN=Enterprise Admins,CN=Users,${BASEDN}
172 memberOf: CN=Schema Admins,CN=Users,${BASEDN}
173 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
176 objectGUID: ${NEWGUID}
177 userAccountControl: 0x10200
186 objectSid: ${DOMAINSID}-500
190 sAMAccountName: Administrator
191 sAMAccountType: 0x30000000
192 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
193 isCriticalSystemObject: TRUE
194 unicodePwd: ${ADMINPASS}
197 dn: CN=Guest,CN=Users,${BASEDN}
200 objectClass: organizationalPerson
203 description: Built-in account for guest access to the computer/domain
205 whenCreated: ${LDAPTIME}
206 whenChanged: ${LDAPTIME}
208 memberOf: CN=Guests,CN=Builtin,${BASEDN}
211 objectGUID: ${NEWGUID}
212 userAccountControl: 0x10222
221 objectSid: ${DOMAINSID}-501
224 sAMAccountName: Guest
225 sAMAccountType: 0x30000000
226 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
227 isCriticalSystemObject: TRUE
229 dn: CN=Administrators,CN=Builtin,${BASEDN}
233 description: Administrators have complete and unrestricted access to the computer/domain
234 member: CN=Domain Admins,CN=Users,${BASEDN}
235 member: CN=Enterprise Admins,CN=Users,${BASEDN}
236 member: CN=Administrator,CN=Users,${BASEDN}
238 whenCreated: ${LDAPTIME}
239 whenChanged: ${LDAPTIME}
243 objectGUID: ${NEWGUID}
244 objectSid: S-1-5-32-544
246 sAMAccountName: Administrators
247 sAMAccountType: 0x20000000
248 systemFlags: 0x8c000000
249 groupType: 0x80000005
250 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
251 isCriticalSystemObject: TRUE
254 dn: CN=Users,CN=Builtin,${BASEDN}
258 description: Users are prevented from making accidental or intentional system-wide changes. Thus, Users can run certified applications, but not most legacy applications
259 member: CN=Domain Users,CN=Users,${BASEDN}
261 whenCreated: ${LDAPTIME}
262 whenChanged: ${LDAPTIME}
266 objectGUID: ${NEWGUID}
267 objectSid: S-1-5-32-545
268 sAMAccountName: Users
269 sAMAccountType: 0x20000000
270 systemFlags: 0x8c000000
271 groupType: 0x80000005
272 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
273 isCriticalSystemObject: TRUE
275 dn: CN=Guests,CN=Builtin,${BASEDN}
279 description: Guests have the same access as members of the Users group by default, except for the Guest account which is further restricted
280 member: CN=Domain Guests,CN=Users,${BASEDN}
281 member: CN=Guest,CN=Users,${BASEDN}
283 whenCreated: ${LDAPTIME}
284 whenChanged: ${LDAPTIME}
288 objectGUID: ${NEWGUID}
289 objectSid: S-1-5-32-546
290 sAMAccountName: Guests
291 sAMAccountType: 0x20000000
292 systemFlags: 0x8c000000
293 groupType: 0x80000005
294 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
295 isCriticalSystemObject: TRUE
298 dn: CN=Print Operators,CN=Builtin,${BASEDN}
302 description: Members can administer domain printers
304 whenCreated: ${LDAPTIME}
305 whenChanged: ${LDAPTIME}
308 name: Print Operators
309 objectGUID: ${NEWGUID}
310 objectSid: S-1-5-32-550
312 sAMAccountName: Print Operators
313 sAMAccountType: 0x20000000
314 systemFlags: 0x8c000000
315 groupType: 0x80000005
316 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
317 isCriticalSystemObject: TRUE
319 dn: CN=Backup Operators,CN=Builtin,${BASEDN}
323 description: Backup Operators can override security restrictions for the sole purpose of backing up or restoring files
325 whenCreated: ${LDAPTIME}
326 whenChanged: ${LDAPTIME}
329 name: Backup Operators
330 objectGUID: ${NEWGUID}
331 objectSid: S-1-5-32-551
333 sAMAccountName: Backup Operators
334 sAMAccountType: 0x20000000
335 systemFlags: 0x8c000000
336 groupType: 0x80000005
337 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
338 isCriticalSystemObject: TRUE
340 dn: CN=Replicator,CN=Builtin,${BASEDN}
344 description: Supports file replication in a domain
346 whenCreated: ${LDAPTIME}
347 whenChanged: ${LDAPTIME}
351 objectGUID: ${NEWGUID}
352 objectSid: S-1-5-32-552
354 sAMAccountName: Replicator
355 sAMAccountType: 0x20000000
356 systemFlags: 0x8c000000
357 groupType: 0x80000005
358 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
359 isCriticalSystemObject: TRUE
361 dn: CN=Remote Desktop Users,CN=Builtin,${BASEDN}
364 cn: Remote Desktop Users
365 description: Members in this group are granted the right to logon remotely
367 whenCreated: ${LDAPTIME}
368 whenChanged: ${LDAPTIME}
371 name: Remote Desktop Users
372 objectGUID: ${NEWGUID}
373 objectSid: S-1-5-32-555
374 sAMAccountName: Remote Desktop Users
375 sAMAccountType: 0x20000000
376 systemFlags: 0x8c000000
377 groupType: 0x80000005
378 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
379 isCriticalSystemObject: TRUE
381 dn: CN=Network Configuration Operators,CN=Builtin,${BASEDN}
384 cn: Network Configuration Operators
385 description: Members in this group can have some administrative privileges to manage configuration of networking features
387 whenCreated: ${LDAPTIME}
388 whenChanged: ${LDAPTIME}
391 name: Network Configuration Operators
392 objectGUID: ${NEWGUID}
393 objectSid: S-1-5-32-556
394 sAMAccountName: Network Configuration Operators
395 sAMAccountType: 0x20000000
396 systemFlags: 0x8c000000
397 groupType: 0x80000005
398 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
399 isCriticalSystemObject: TRUE
401 dn: CN=Performance Monitor Users,CN=Builtin,${BASEDN}
404 cn: Performance Monitor Users
405 description: Members of this group have remote access to monitor this computer
407 whenCreated: ${LDAPTIME}
408 whenChanged: ${LDAPTIME}
411 name: Performance Monitor Users
412 objectGUID: ${NEWGUID}
413 objectSid: S-1-5-32-558
414 sAMAccountName: Performance Monitor Users
415 sAMAccountType: 0x20000000
416 systemFlags: 0x8c000000
417 groupType: 0x80000005
418 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
419 isCriticalSystemObject: TRUE
421 dn: CN=Performance Log Users,CN=Builtin,${BASEDN}
424 cn: Performance Log Users
425 description: Members of this group have remote access to schedule logging of performance counters on this computer
427 whenCreated: ${LDAPTIME}
428 whenChanged: ${LDAPTIME}
431 name: Performance Log Users
432 objectGUID: ${NEWGUID}
433 objectSid: S-1-5-32-559
434 sAMAccountName: Performance Log Users
435 sAMAccountType: 0x20000000
436 systemFlags: 0x8c000000
437 groupType: 0x80000005
438 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
439 isCriticalSystemObject: TRUE
441 dn: CN=${NETBIOSNAME},OU=Domain Controllers,${BASEDN}
444 objectClass: organizationalPerson
446 objectClass: computer
449 whenCreated: ${LDAPTIME}
450 whenChanged: ${LDAPTIME}
454 objectGUID: ${HOSTGUID}
455 userAccountControl: 532480
461 lastLogon: 127273269057298624
463 pwdLastSet: 127258826171655328
465 objectSid: ${DOMAINSID}-1000
466 accountExpires: 9223372036854775807
468 sAMAccountName: ${NETBIOSNAME}$
469 sAMAccountType: 805306369
470 operatingSystem: Samba
471 operatingSystemVersion: 4.0
472 dNSHostName: ${DNSNAME}
473 objectCategory: CN=Computer,CN=Schema,CN=Configuration,${BASEDN}
474 isCriticalSystemObject: TRUE
475 unicodePwd: ${RANDPASS}
476 servicePrincipalName: HOST/${DNSNAME}
478 dn: CN=krbtgt,CN=Users,${BASEDN}
481 objectClass: organizationalPerson
484 description: Key Distribution Center Service Account
486 whenCreated: ${LDAPTIME}
487 whenChanged: ${LDAPTIME}
490 showInAdvancedViewOnly: TRUE
492 objectGUID: ${NEWGUID}
493 userAccountControl: 514
500 pwdLastSet: 127258826179466560
502 objectSid: ${DOMAINSID}-502
504 accountExpires: 9223372036854775807
506 sAMAccountName: krbtgt
507 sAMAccountType: 805306368
508 servicePrincipalName: kadmin/changepw
509 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
510 isCriticalSystemObject: TRUE
511 unicodePwd: ${RANDPASS}
513 dn: CN=Domain Computers,CN=Users,${BASEDN}
517 description: All workstations and servers joined to the domain
519 whenCreated: ${LDAPTIME}
520 whenChanged: ${LDAPTIME}
523 name: Domain Computers
524 objectGUID: ${NEWGUID}
525 objectSid: ${DOMAINSID}-515
526 sAMAccountName: Domain Computers
527 sAMAccountType: 268435456
528 groupType: -2147483646
529 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
530 isCriticalSystemObject: TRUE
532 dn: CN=Domain Controllers,CN=Users,${BASEDN}
535 cn: Domain Controllers
536 description: All domain controllers in the domain
538 whenCreated: ${LDAPTIME}
539 whenChanged: ${LDAPTIME}
542 name: Domain Controllers
543 objectGUID: ${NEWGUID}
544 objectSid: ${DOMAINSID}-516
546 sAMAccountName: Domain Controllers
547 sAMAccountType: 268435456
548 groupType: -2147483646
549 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
550 isCriticalSystemObject: TRUE
552 dn: CN=Schema Admins,CN=Users,${BASEDN}
556 description: Designated administrators of the schema
557 member: CN=Administrator,CN=Users,${BASEDN}
559 whenCreated: ${LDAPTIME}
560 whenChanged: ${LDAPTIME}
564 objectGUID: ${NEWGUID}
565 objectSid: ${DOMAINSID}-518
567 sAMAccountName: Schema Admins
568 sAMAccountType: 268435456
569 groupType: -2147483646
570 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
571 isCriticalSystemObject: TRUE
574 dn: CN=Enterprise Admins,CN=Users,${BASEDN}
577 cn: Enterprise Admins
578 description: Designated administrators of the enterprise
579 member: CN=Administrator,CN=Users,${BASEDN}
581 whenCreated: ${LDAPTIME}
582 whenChanged: ${LDAPTIME}
584 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
586 name: Enterprise Admins
587 objectGUID: ${NEWGUID}
588 objectSid: ${DOMAINSID}-519
590 sAMAccountName: Enterprise Admins
591 sAMAccountType: 268435456
592 groupType: -2147483646
593 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
594 isCriticalSystemObject: TRUE
597 dn: CN=Cert Publishers,CN=Users,${BASEDN}
601 description: Members of this group are permitted to publish certificates to the Active Directory
603 whenCreated: ${LDAPTIME}
604 whenChanged: ${LDAPTIME}
607 name: Cert Publishers
608 objectGUID: ${NEWGUID}
609 objectSid: ${DOMAINSID}-517
610 sAMAccountName: Cert Publishers
611 sAMAccountType: 0x20000000
612 groupType: -2147483644
613 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
614 isCriticalSystemObject: TRUE
616 dn: CN=Domain Admins,CN=Users,${BASEDN}
620 description: Designated administrators of the domain
621 member: CN=Administrator,CN=Users,${BASEDN}
623 whenCreated: ${LDAPTIME}
624 whenChanged: ${LDAPTIME}
626 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
629 objectGUID: ${NEWGUID}
630 objectSid: ${DOMAINSID}-512
632 sAMAccountName: Domain Admins
633 sAMAccountType: 268435456
634 groupType: -2147483646
635 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
636 isCriticalSystemObject: TRUE
639 dn: CN=Domain Users,CN=Users,${BASEDN}
643 description: All domain users
645 whenCreated: ${LDAPTIME}
646 whenChanged: ${LDAPTIME}
648 memberOf: CN=Users,CN=Builtin,${BASEDN}
651 objectGUID: ${NEWGUID}
652 objectSid: ${DOMAINSID}-513
653 sAMAccountName: Domain Users
654 sAMAccountType: 268435456
655 groupType: -2147483646
656 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
657 isCriticalSystemObject: TRUE
660 dn: CN=Domain Guests,CN=Users,${BASEDN}
664 description: All domain guests
666 whenCreated: ${LDAPTIME}
667 whenChanged: ${LDAPTIME}
669 memberOf: CN=Guests,CN=Builtin,${BASEDN}
672 objectGUID: ${NEWGUID}
673 objectSid: ${DOMAINSID}-514
674 sAMAccountName: Domain Guests
675 sAMAccountType: 268435456
676 groupType: -2147483646
677 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
678 isCriticalSystemObject: TRUE
680 dn: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
683 cn: Group Policy Creator Owners
684 description: Members in this group can modify group policy for the domain
685 member: CN=Administrator,CN=Users,${BASEDN}
687 whenCreated: ${LDAPTIME}
688 whenChanged: ${LDAPTIME}
691 name: Group Policy Creator Owners
692 objectGUID: ${NEWGUID}
693 objectSid: ${DOMAINSID}-520
694 sAMAccountName: Group Policy Creator Owners
695 sAMAccountType: 268435456
696 groupType: -2147483646
697 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
698 isCriticalSystemObject: TRUE
701 dn: CN=RAS and IAS Servers,CN=Users,${BASEDN}
704 cn: RAS and IAS Servers
705 description: Servers in this group can access remote access properties of users
707 whenCreated: ${LDAPTIME}
708 whenChanged: ${LDAPTIME}
711 name: RAS and IAS Servers
712 objectGUID: ${NEWGUID}
713 objectSid: ${DOMAINSID}-553
714 sAMAccountName: RAS and IAS Servers
715 sAMAccountType: 0x20000000
716 groupType: -2147483644
717 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
718 isCriticalSystemObject: TRUE
720 dn: CN=Server Operators,CN=Builtin,${BASEDN}
724 description: Members can administer domain servers
726 whenCreated: ${LDAPTIME}
727 whenChanged: ${LDAPTIME}
730 name: Server Operators
731 objectGUID: ${NEWGUID}
732 objectSid: S-1-5-32-549
734 sAMAccountName: Server Operators
735 sAMAccountType: 0x20000000
736 systemFlags: 0x8c000000
737 groupType: 0x80000005
738 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
739 isCriticalSystemObject: TRUE
741 dn: CN=Account Operators,CN=Builtin,${BASEDN}
744 cn: Account Operators
745 description: Members can administer domain user and group accounts
747 whenCreated: ${LDAPTIME}
748 whenChanged: ${LDAPTIME}
751 name: Account Operators
752 objectGUID: ${NEWGUID}
753 objectSid: S-1-5-32-548
755 sAMAccountName: Account Operators
756 sAMAccountType: 0x20000000
757 systemFlags: 0x8c000000
758 groupType: 0x80000005
759 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
760 isCriticalSystemObject: TRUE
762 dn: CN=Templates,${BASEDN}
764 objectClass: container
766 description: Container for SAM account templates
768 whenCreated: ${LDAPTIME}
769 whenChanged: ${LDAPTIME}
772 showInAdvancedViewOnly: FALSE
774 objectGUID: ${NEWGUID}
775 systemFlags: 0x8c000000
776 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
777 isCriticalSystemObject: TRUE
780 # note! the template users must not match normal searches. Be careful
781 # with what classes you put them in
784 dn: CN=TemplateUser,CN=Templates,${BASEDN}
787 objectClass: organizationalPerson
788 objectClass: Template
789 objectClass: userTemplate
793 userAccountControl: 0x202
804 sAMAccountType: 0x30000000
806 dn: CN=TemplateMemberServer,CN=Templates,${BASEDN}
808 objectClass: Template
809 objectClass: userTemplate
810 cn: TemplateMemberServer
811 name: TemplateMemberServer
813 userAccountControl: 0x1002
824 sAMAccountType: 0x30000001
826 dn: CN=TemplateDomainController,CN=Templates,${BASEDN}
828 objectClass: Template
829 objectClass: userTemplate
830 cn: TemplateDomainController
831 name: TemplateDomainController
833 userAccountControl: 0x2002
844 sAMAccountType: 0x30000001
846 dn: CN=TemplateGroup,CN=Templates,${BASEDN}
848 objectClass: Template
849 objectClass: groupTemplate
853 sAMAccountType: 0x10000000