git.samba.org / ira / wip.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
r8662: Revert change to CN=Cert Publishers, this group still needs to
[ira/wip.git] / source4 / setup / provision.ldif
1 ###############################
2 # Domain Naming Context
3 ###############################
4 dn: ${BASEDN}
5 objectClass: top
6 objectClass: domain
7 objectClass: domainDNS
8 name: ${DOMAIN}
9 flatname: ${DOMAIN}
10 dnsDomain: ${DNSDOMAIN}
11 dc: ${DOMAIN}
12 objectGUID: ${DOMAINGUID}
13 creationTime: ${NTTIME}
14 forceLogoff: 0x8000000000000000
15 lockoutDuration: -18000000000
16 lockOutObservationWindow: -18000000000
17 lockoutThreshold: 0
18 uSNCreated: 1
19 uSNChanged: 1
20 maxPwdAge: -37108517437440
21 minPwdAge: 0
22 minPwdLength: 7
23 modifiedCountAtLastProm: 0
24 nextRid: 1001
25 pwdProperties: 1
26 pwdHistoryLength: 24
27 objectSid: ${DOMAINSID}
28 serverState: 1
29 nTMixedDomain: 1
30 msDS-Behavior-Version: 0
31 ridManagerReference: CN=RID Manager$,CN=System,${BASEDN}
32 uASCompat: 1
33 modifiedCount: 1
34 objectCategory: CN=Domain-DNS,CN=Schema,CN=Configuration,${BASEDN}
35 isCriticalSystemObject: TRUE
36 subRefs: CN=Configuration,${BASEDN}
37 subRefs: CN=Schema,CN=Configuration,${BASEDN}
38 canonicalName: ${REALM}/
39
40 dn: CN=Users,${BASEDN}
41 objectClass: top
42 objectClass: container
43 cn: Users
44 description: Default container for upgraded user accounts
45 instanceType: 4
46 uSNCreated: 1
47 uSNChanged: 1
48 showInAdvancedViewOnly: FALSE
49 name: Users
50 systemFlags: 0x8c000000
51 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
52 isCriticalSystemObject: TRUE
53
54 dn: CN=Computers,${BASEDN}
55 objectClass: top
56 objectClass: container
57 cn: Computers
58 description: Default container for upgraded computer accounts
59 instanceType: 4
60 uSNCreated: 1
61 uSNChanged: 1
62 showInAdvancedViewOnly: FALSE
63 name: Computers
64 systemFlags: 0x8c000000
65 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
66 isCriticalSystemObject: TRUE
67
68 dn: OU=Domain Controllers,${BASEDN}
69 objectClass: top
70 objectClass: organizationalUnit
71 ou: Domain Controllers
72 description: Default container for domain controllers
73 instanceType: 4
74 uSNCreated: 1
75 uSNChanged: 1
76 showInAdvancedViewOnly: FALSE
77 name: Domain Controllers
78 systemFlags: 0x8c000000
79 objectCategory: CN=Organizational-Unit,CN=Schema,CN=Configuration,${BASEDN}
80 isCriticalSystemObject: TRUE
81
82 dn: CN=ForeignSecurityPrincipals,${BASEDN}
83 objectClass: top
84 objectClass: container
85 cn: ForeignSecurityPrincipals
86 description: Default container for security identifiers (SIDs) associated with objects from external, trusted domains
87 instanceType: 4
88 uSNCreated: 1
89 uSNChanged: 1
90 showInAdvancedViewOnly: FALSE
91 name: ForeignSecurityPrincipals
92 systemFlags: 0x8c000000
93 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
94 isCriticalSystemObject: TRUE
95
96 dn: CN=System,${BASEDN}
97 objectClass: top
98 objectClass: container
99 cn: System
100 description: Builtin system settings
101 instanceType: 4
102 uSNCreated: 1
103 uSNChanged: 1
104 showInAdvancedViewOnly: TRUE
105 name: System
106 systemFlags: 0x8c000000
107 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
108 isCriticalSystemObject: TRUE
109
110 dn: CN=RID Manager$,CN=System,${BASEDN}
111 objectclass: top
112 objectclass: rIDManager
113 cn: RID Manager$
114 instanceType: 4
115 uSNCreated: 1
116 uSNChanged: 1
117 showInAdvancedViewOnly: TRUE
118 name: RID Manager$
119 systemFlags: 0x8c000000
120 objectCategory: CN=RID-Manager,CN=Schema,CN=Configuration,${BASEDN}
121 isCriticalSystemObject: TRUE
122 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
123 rIDAvailablePool: 4611686014132423217
124
125 dn: CN=DomainUpdates,CN=System,${BASEDN}
126 objectClass: top
127 objectClass: container
128 cn: DomainUpdates
129 instanceType: 4
130 uSNCreated: 1
131 uSNChanged: 1
132 showInAdvancedViewOnly: TRUE
133 name: DomainUpdates
134 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
135
136 dn: CN=Windows2003Update,CN=DomainUpdates,CN=System,${BASEDN}
137 objectClass: top
138 objectClass: container
139 cn: Windows2003Update
140 instanceType: 4
141 uSNCreated: 1
142 uSNChanged: 1
143 showInAdvancedViewOnly: TRUE
144 name: Windows2003Update
145 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
146 revision: 8
147
148 dn: CN=Infrastructure,${BASEDN}
149 objectclass: top
150 objectclass: infrastructureUpdate
151 cn: Infrastructure
152 instanceType: 4
153 uSNCreated: 1
154 uSNChanged: 1
155 showInAdvancedViewOnly: TRUE
156 name: Infrastructure
157 systemFlags: 0x8c000000
158 objectCategory: CN=Infrastructure-Update,CN=Schema,CN=Configuration,${BASEDN}
159 isCriticalSystemObject: TRUE
160 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
161
162 dn: CN=Builtin,${BASEDN}
163 objectClass: top
164 objectClass: builtinDomain
165 cn: Builtin
166 instanceType: 4
167 showInAdvancedViewOnly: FALSE
168 name: Builtin
169 forceLogoff: 0x8000000000000000
170 lockoutDuration: -18000000000
171 lockOutObservationWindow: -18000000000
172 lockoutThreshold: 0
173 maxPwdAge: -37108517437440
174 minPwdAge: 0
175 minPwdLength: 0
176 modifiedCountAtLastProm: 0
177 nextRid: 1000
178 pwdProperties: 0
179 pwdHistoryLength: 0
180 objectSid: S-1-5-32
181 serverState: 1
182 uASCompat: 1
183 modifiedCount: 1
184 objectCategory: CN=Builtin-Domain,CN=Schema,CN=Configuration,${BASEDN}
185 isCriticalSystemObject: TRUE
186
187 dn: CN=Administrator,CN=Users,${BASEDN}
188 objectClass: top
189 objectClass: person
190 objectClass: organizationalPerson
191 objectClass: user
192 cn: Administrator
193 description: Built-in account for administering the computer/domain
194 uSNCreated: 1
195 memberOf: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
196 memberOf: CN=Domain Admins,CN=Users,${BASEDN}
197 memberOf: CN=Enterprise Admins,CN=Users,${BASEDN}
198 memberOf: CN=Schema Admins,CN=Users,${BASEDN}
199 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
200 uSNChanged: 1
201 name: Administrator
202 userAccountControl: 0x10200
203 objectSid: ${DOMAINSID}-500
204 adminCount: 1
205 accountExpires: -1
206 sAMAccountName: Administrator
207 isCriticalSystemObject: TRUE
208 unicodePwd: ${ADMINPASS}
209 unixName: ${ROOT}
210
211 dn: CN=Guest,CN=Users,${BASEDN}
212 objectClass: top
213 objectClass: person
214 objectClass: organizationalPerson
215 objectClass: user
216 cn: Guest
217 description: Built-in account for guest access to the computer/domain
218 uSNCreated: 1
219 memberOf: CN=Guests,CN=Builtin,${BASEDN}
220 uSNChanged: 1
221 name: Guest
222 userAccountControl: 0x10222
223 primaryGroupID: 514
224 objectSid: ${DOMAINSID}-501
225 sAMAccountName: Guest
226 isCriticalSystemObject: TRUE
227
228 dn: CN=Administrators,CN=Builtin,${BASEDN}
229 objectClass: top
230 objectClass: group
231 cn: Administrators
232 description: Administrators have complete and unrestricted access to the computer/domain
233 member: CN=Domain Admins,CN=Users,${BASEDN}
234 member: CN=Enterprise Admins,CN=Users,${BASEDN}
235 member: CN=Administrator,CN=Users,${BASEDN}
236 uSNCreated: 1
237 uSNChanged: 1
238 name: Administrators
239 objectSid: S-1-5-32-544
240 adminCount: 1
241 sAMAccountName: Administrators
242 sAMAccountType: 0x20000000
243 systemFlags: 0x8c000000
244 groupType: 0x80000005
245 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
246 isCriticalSystemObject: TRUE
247 unixName: ${WHEEL}
248 privilege: SeSecurityPrivilege
249 privilege: SeBackupPrivilege
250 privilege: SeRestorePrivilege
251 privilege: SeSystemtimePrivilege
252 privilege: SeShutdownPrivilege
253 privilege: SeRemoteShutdownPrivilege
254 privilege: SeTakeOwnershipPrivilege
255 privilege: SeDebugPrivilege
256 privilege: SeSystemEnvironmentPrivilege
257 privilege: SeSystemProfilePrivilege
258 privilege: SeProfileSingleProcessPrivilege
259 privilege: SeIncreaseBasePriorityPrivilege
260 privilege: SeLoadDriverPrivilege
261 privilege: SeCreatePagefilePrivilege
262 privilege: SeIncreaseQuotaPrivilege
263 privilege: SeChangeNotifyPrivilege
264 privilege: SeUndockPrivilege
265 privilege: SeManageVolumePrivilege
266 privilege: SeImpersonatePrivilege
267 privilege: SeCreateGlobalPrivilege
268 privilege: SeEnableDelegationPrivilege
269 privilege: SeInteractiveLogonRight
270 privilege: SeNetworkLogonRight
271 privilege: SeRemoteInteractiveLogonRight
272
273
274 dn: CN=Users,CN=Builtin,${BASEDN}
275 objectClass: top
276 objectClass: group
277 cn: Users
278 description: Users are prevented from making accidental or intentional system-wide changes.  Thus, Users can run certified applications, but not most legacy applications
279 member: CN=Domain Users,CN=Users,${BASEDN}
280 uSNCreated: 1
281 uSNChanged: 1
282 name: Users
283 objectSid: S-1-5-32-545
284 sAMAccountName: Users
285 sAMAccountType: 0x20000000
286 systemFlags: 0x8c000000
287 groupType: 0x80000005
288 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
289 isCriticalSystemObject: TRUE
290
291 dn: CN=Guests,CN=Builtin,${BASEDN}
292 objectClass: top
293 objectClass: group
294 cn: Guests
295 description: Guests have the same access as members of the Users group by default, except for the Guest account which is further restricted
296 member: CN=Domain Guests,CN=Users,${BASEDN}
297 member: CN=Guest,CN=Users,${BASEDN}
298 uSNCreated: 1
299 uSNChanged: 1
300 name: Guests
301 objectSid: S-1-5-32-546
302 sAMAccountName: Guests
303 sAMAccountType: 0x20000000
304 systemFlags: 0x8c000000
305 groupType: 0x80000005
306 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
307 isCriticalSystemObject: TRUE
308 unixName: ${NOGROUP}
309
310 dn: CN=Print Operators,CN=Builtin,${BASEDN}
311 objectClass: top
312 objectClass: group
313 cn: Print Operators
314 description: Members can administer domain printers
315 uSNCreated: 1
316 uSNChanged: 1
317 name: Print Operators
318 objectSid: S-1-5-32-550
319 adminCount: 1
320 sAMAccountName: Print Operators
321 sAMAccountType: 0x20000000
322 systemFlags: 0x8c000000
323 groupType: 0x80000005
324 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
325 isCriticalSystemObject: TRUE
326 privilege: SeLoadDriverPrivilege
327 privilege: SeShutdownPrivilege
328 privilege: SeInteractiveLogonRight
329
330 dn: CN=Backup Operators,CN=Builtin,${BASEDN}
331 objectClass: top
332 objectClass: group
333 cn: Backup Operators
334 description: Backup Operators can override security restrictions for the sole purpose of backing up or restoring files
335 uSNCreated: 1
336 uSNChanged: 1
337 name: Backup Operators
338 objectSid: S-1-5-32-551
339 adminCount: 1
340 sAMAccountName: Backup Operators
341 sAMAccountType: 0x20000000
342 systemFlags: 0x8c000000
343 groupType: 0x80000005
344 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
345 isCriticalSystemObject: TRUE
346 privilege: SeBackupPrivilege
347 privilege: SeRestorePrivilege
348 privilege: SeShutdownPrivilege
349 privilege: SeInteractiveLogonRight
350
351 dn: CN=Replicator,CN=Builtin,${BASEDN}
352 objectClass: top
353 objectClass: group
354 cn: Replicator
355 description: Supports file replication in a domain
356 uSNCreated: 1
357 uSNChanged: 1
358 name: Replicator
359 objectSid: S-1-5-32-552
360 adminCount: 1
361 sAMAccountName: Replicator
362 sAMAccountType: 0x20000000
363 systemFlags: 0x8c000000
364 groupType: 0x80000005
365 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
366 isCriticalSystemObject: TRUE
367
368 dn: CN=Remote Desktop Users,CN=Builtin,${BASEDN}
369 objectClass: top
370 objectClass: group
371 cn: Remote Desktop Users
372 description: Members in this group are granted the right to logon remotely
373 uSNCreated: 1
374 uSNChanged: 1
375 name: Remote Desktop Users
376 objectSid: S-1-5-32-555
377 sAMAccountName: Remote Desktop Users
378 sAMAccountType: 0x20000000
379 systemFlags: 0x8c000000
380 groupType: 0x80000005
381 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
382 isCriticalSystemObject: TRUE
383
384 dn: CN=Network Configuration Operators,CN=Builtin,${BASEDN}
385 objectClass: top
386 objectClass: group
387 cn: Network Configuration Operators
388 description: Members in this group can have some administrative privileges to manage configuration of networking features
389 uSNCreated: 1
390 uSNChanged: 1
391 name: Network Configuration Operators
392 objectSid: S-1-5-32-556
393 sAMAccountName: Network Configuration Operators
394 sAMAccountType: 0x20000000
395 systemFlags: 0x8c000000
396 groupType: 0x80000005
397 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
398 isCriticalSystemObject: TRUE
399
400 dn: CN=Performance Monitor Users,CN=Builtin,${BASEDN}
401 objectClass: top
402 objectClass: group
403 cn: Performance Monitor Users
404 description: Members of this group have remote access to monitor this computer
405 uSNCreated: 1
406 uSNChanged: 1
407 name: Performance Monitor Users
408 objectSid: S-1-5-32-558
409 sAMAccountName: Performance Monitor Users
410 sAMAccountType: 0x20000000
411 systemFlags: 0x8c000000
412 groupType: 0x80000005
413 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
414 isCriticalSystemObject: TRUE
415
416 dn: CN=Performance Log Users,CN=Builtin,${BASEDN}
417 objectClass: top
418 objectClass: group
419 cn: Performance Log Users
420 description: Members of this group have remote access to schedule logging of performance counters on this computer
421 uSNCreated: 1
422 uSNChanged: 1
423 name: Performance Log Users
424 objectSid: S-1-5-32-559
425 sAMAccountName: Performance Log Users
426 sAMAccountType: 0x20000000
427 systemFlags: 0x8c000000
428 groupType: 0x80000005
429 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
430 isCriticalSystemObject: TRUE
431
432 dn: CN=${NETBIOSNAME},OU=Domain Controllers,${BASEDN}
433 objectClass: top
434 objectClass: person
435 objectClass: organizationalPerson
436 objectClass: computer
437 cn: ${NETBIOSNAME}
438 uSNCreated: 1
439 uSNChanged: 1
440 name: ${NETBIOSNAME}
441 objectGUID: ${HOSTGUID}
442 userAccountControl: 532480
443 lastLogon: 127273269057298624
444 localPolicyFlags: 0
445 pwdLastSet: 127258826171655328
446 primaryGroupID: 516
447 objectSid: ${DOMAINSID}-1000
448 accountExpires: 9223372036854775807
449 sAMAccountName: ${NETBIOSNAME}$
450 sAMAccountType: 805306369
451 operatingSystem: Samba
452 operatingSystemVersion: 4.0
453 dNSHostName: ${DNSNAME}
454 isCriticalSystemObject: TRUE
455 unicodePwd: ${MACHINEPASS}
456 servicePrincipalName: HOST/${DNSNAME}
457 servicePrincipalName: HOST/${NETBIOSNAME}
458 msDS-KeyVersionNumber: 1
459
460 dn: CN=krbtgt,CN=Users,${BASEDN}
461 objectClass: top
462 objectClass: person
463 objectClass: organizationalPerson
464 objectClass: user
465 cn: krbtgt
466 description: Key Distribution Center Service Account
467 uSNCreated: 1
468 uSNChanged: 1
469 showInAdvancedViewOnly: TRUE
470 name: krbtgt
471 userAccountControl: 514
472 pwdLastSet: 127258826179466560
473 objectSid: ${DOMAINSID}-502
474 adminCount: 1
475 accountExpires: 9223372036854775807
476 sAMAccountName: krbtgt
477 sAMAccountType: 805306368
478 servicePrincipalName: kadmin/changepw
479 isCriticalSystemObject: TRUE
480 unicodePwd: ${KRBTGTPASS}
481
482 dn: CN=Domain Computers,CN=Users,${BASEDN}
483 objectClass: top
484 objectClass: group
485 cn: Domain Computers
486 description: All workstations and servers joined to the domain
487 uSNCreated: 1
488 uSNChanged: 1
489 name: Domain Computers
490 objectSid: ${DOMAINSID}-515
491 sAMAccountName: Domain Computers
492 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
493 isCriticalSystemObject: TRUE
494
495 dn: CN=Domain Controllers,CN=Users,${BASEDN}
496 objectClass: top
497 objectClass: group
498 cn: Domain Controllers
499 description: All domain controllers in the domain
500 uSNCreated: 1
501 uSNChanged: 1
502 name: Domain Controllers
503 objectSid: ${DOMAINSID}-516
504 adminCount: 1
505 sAMAccountName: Domain Controllers
506 isCriticalSystemObject: TRUE
507
508 dn: CN=Schema Admins,CN=Users,${BASEDN}
509 objectClass: top
510 objectClass: group
511 cn: Schema Admins
512 description: Designated administrators of the schema
513 member: CN=Administrator,CN=Users,${BASEDN}
514 uSNCreated: 1
515 uSNChanged: 1
516 name: Schema Admins
517 objectSid: ${DOMAINSID}-518
518 adminCount: 1
519 sAMAccountName: Schema Admins
520 isCriticalSystemObject: TRUE
521 unixName: ${WHEEL}
522
523 dn: CN=Enterprise Admins,CN=Users,${BASEDN}
524 objectClass: top
525 objectClass: group
526 cn: Enterprise Admins
527 description: Designated administrators of the enterprise
528 member: CN=Administrator,CN=Users,${BASEDN}
529 uSNCreated: 1
530 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
531 uSNChanged: 1
532 name: Enterprise Admins
533 objectSid: ${DOMAINSID}-519
534 adminCount: 1
535 sAMAccountName: Enterprise Admins
536 isCriticalSystemObject: TRUE
537 unixName: ${WHEEL}
538
539 dn: CN=Cert Publishers,CN=Users,${BASEDN}
540 objectClass: top
541 objectClass: group
542 cn: Cert Publishers
543 description: Members of this group are permitted to publish certificates to the Active Directory
544 uSNCreated: 1
545 uSNChanged: 1
546 name: Cert Publishers
547 groupType: 0x80000004
548 sAMAccountType: 0x20000000
549 objectSid: ${DOMAINSID}-517
550 sAMAccountName: Cert Publishers
551 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
552 isCriticalSystemObject: TRUE
553
554 dn: CN=Domain Admins,CN=Users,${BASEDN}
555 objectClass: top
556 objectClass: group
557 cn: Domain Admins
558 description: Designated administrators of the domain
559 member: CN=Administrator,CN=Users,${BASEDN}
560 uSNCreated: 1
561 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
562 uSNChanged: 1
563 name: Domain Admins
564 objectSid: ${DOMAINSID}-512
565 adminCount: 1
566 sAMAccountName: Domain Admins
567 isCriticalSystemObject: TRUE
568 unixName: ${WHEEL}
569
570 dn: CN=Domain Users,CN=Users,${BASEDN}
571 objectClass: top
572 objectClass: group
573 cn: Domain Users
574 description: All domain users
575 uSNCreated: 1
576 memberOf: CN=Users,CN=Builtin,${BASEDN}
577 uSNChanged: 1
578 name: Domain Users
579 objectSid: ${DOMAINSID}-513
580 sAMAccountName: Domain Users
581 isCriticalSystemObject: TRUE
582 unixName: ${USERS}
583
584 dn: CN=Domain Guests,CN=Users,${BASEDN}
585 objectClass: top
586 objectClass: group
587 cn: Domain Guests
588 description: All domain guests
589 uSNCreated: 1
590 memberOf: CN=Guests,CN=Builtin,${BASEDN}
591 uSNChanged: 1
592 name: Domain Guests
593 objectSid: ${DOMAINSID}-514
594 sAMAccountName: Domain Guests
595 isCriticalSystemObject: TRUE
596
597 dn: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
598 objectClass: top
599 objectClass: group
600 cn: Group Policy Creator Owners
601 description: Members in this group can modify group policy for the domain
602 member: CN=Administrator,CN=Users,${BASEDN}
603 uSNCreated: 1
604 uSNChanged: 1
605 name: Group Policy Creator Owners
606 objectSid: ${DOMAINSID}-520
607 sAMAccountName: Group Policy Creator Owners
608 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
609 isCriticalSystemObject: TRUE
610 unixName: ${WHEEL}
611
612 dn: CN=RAS and IAS Servers,CN=Users,${BASEDN}
613 objectClass: top
614 objectClass: group
615 cn: RAS and IAS Servers
616 description: Servers in this group can access remote access properties of users
617 instanceType: 4
618 uSNCreated: 1
619 uSNChanged: 1
620 name: RAS and IAS Servers
621 objectSid: ${DOMAINSID}-553
622 sAMAccountName: RAS and IAS Servers
623 sAMAccountType: 0x20000000
624 groupType: 0x80000004
625 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
626 isCriticalSystemObject: TRUE
627
628 dn: CN=Server Operators,CN=Builtin,${BASEDN}
629 objectClass: top
630 objectClass: group
631 cn: Server Operators
632 description: Members can administer domain servers
633 instanceType: 4
634 uSNCreated: 1
635 uSNChanged: 1
636 name: Server Operators
637 objectSid: S-1-5-32-549
638 adminCount: 1
639 sAMAccountName: Server Operators
640 sAMAccountType: 0x20000000
641 systemFlags: 0x8c000000
642 groupType: 0x80000005
643 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
644 isCriticalSystemObject: TRUE
645 privilege: SeBackupPrivilege
646 privilege: SeSystemtimePrivilege
647 privilege: SeRemoteShutdownPrivilege
648 privilege: SeRestorePrivilege
649 privilege: SeShutdownPrivilege
650 privilege: SeInteractiveLogonRight
651
652 dn: CN=Account Operators,CN=Builtin,${BASEDN}
653 objectClass: top
654 objectClass: group
655 cn: Account Operators
656 description: Members can administer domain user and group accounts
657 instanceType: 4
658 uSNCreated: 1
659 uSNChanged: 1
660 name: Account Operators
661 objectSid: S-1-5-32-548
662 adminCount: 1
663 sAMAccountName: Account Operators
664 sAMAccountType: 0x20000000
665 systemFlags: 0x8c000000
666 groupType: 0x80000005
667 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
668 isCriticalSystemObject: TRUE
669 privilege: SeInteractiveLogonRight
670
671 ###############################
672 # Configuration Naming Context
673 ###############################
674 dn: CN=Configuration,${BASEDN}
675 objectClass: top
676 objectClass: configuration
677 cn: Configuration
678 instanceType: 13
679 uSNCreated: ${USN}
680 uSNChanged: ${USN}
681 showInAdvancedViewOnly: TRUE
682 name: Configuration
683 objectCategory: CN=Configuration,CN=Schema,CN=Configuration,${BASEDN}
684 subRefs: CN=Schema,CN=Configuration,${BASEDN}
685 masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
686 msDs-masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
687
688 dn: CN=Partitions,CN=Configuration,${BASEDN}
689 objectClass: top
690 objectClass: crossRefContainer
691 cn: Partitions
692 instanceType: 4
693 uSNCreated: ${USN}
694 uSNChanged: ${USN}
695 showInAdvancedViewOnly: TRUE
696 name: Partitions
697 systemFlags: 0x80000000
698 objectCategory: CN=Cross-Ref-Container,CN=Schema,CN=Configuration,${BASEDN}
699 msDS-Behavior-Version: 0
700 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
701
702 dn: CN=Enterprise Configuration,CN=Partitions,CN=Configuration,${BASEDN}
703 objectClass: top
704 objectClass: crossRef
705 cn: Enterprise Configuration
706 instanceType: 4
707 uSNCreated: ${USN}
708 uSNChanged: ${USN}
709 showInAdvancedViewOnly: TRUE
710 name: Enterprise Configuration
711 systemFlags: 0x00000001
712 objectCategory: CN=Cross-Ref,CN=Schema,CN=Configuration,${BASEDN}
713 nCName: CN=Configuration,${BASEDN}
714 dnsRoot: ${DNSDOMAIN}
715
716 dn: CN=Enterprise Schema,CN=Partitions,CN=Configuration,${BASEDN}
717 objectClass: top
718 objectClass: crossRef
719 cn: Enterprise Schema
720 instanceType: 4
721 uSNCreated: ${USN}
722 uSNChanged: ${USN}
723 showInAdvancedViewOnly: TRUE
724 name: Enterprise Schema
725 systemFlags: 0x00000001
726 objectCategory: CN=Cross-Ref,CN=Schema,CN=Configuration,${BASEDN}
727 nCName: CN=Schema,CN=Configuration,${BASEDN}
728 dnsRoot: ${DNSDOMAIN}
729
730 dn: CN=${DOMAIN},CN=Partitions,CN=Configuration,${BASEDN}
731 objectClass: top
732 objectClass: crossRef
733 cn: ${DOMAIN}
734 instanceType: 4
735 uSNCreated: ${USN}
736 uSNChanged: ${USN}
737 showInAdvancedViewOnly: TRUE
738 name: ${DOMAIN}
739 systemFlags: 0x00000003
740 objectCategory: CN=Cross-Ref,CN=Schema,CN=Configuration,${BASEDN}
741 nCName: ${BASEDN}
742 nETBIOSName: ${DOMAIN}
743 dnsRoot: ${DNSDOMAIN}
744
745 dn: CN=Sites,CN=Configuration,${BASEDN}
746 objectClass: top
747 objectClass: sitesContainer
748 cn: Sites
749 instanceType: 4
750 uSNCreated: ${USN}
751 uSNChanged: ${USN}
752 showInAdvancedViewOnly: TRUE
753 name: Sites
754 systemFlags: 0x82000000
755 objectCategory: CN=Sites-Container,CN=Schema,CN=Configuration,${BASEDN}
756
757 dn: CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
758 objectClass: top
759 objectClass: site
760 cn: Sites
761 instanceType: 4
762 uSNCreated: ${USN}
763 uSNChanged: ${USN}
764 showInAdvancedViewOnly: TRUE
765 name: Sites
766 systemFlags: 0x82000000
767 objectCategory: CN=Site,CN=Schema,CN=Configuration,${BASEDN}
768
769 dn: CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
770 objectClass: top
771 objectClass: serversContainer
772 cn: Servers
773 instanceType: 4
774 uSNCreated: ${USN}
775 uSNChanged: ${USN}
776 showInAdvancedViewOnly: TRUE
777 name: Servers
778 systemFlags: 0x82000000
779 objectCategory: CN=Servers-Container,CN=Schema,CN=Configuration,${BASEDN}
780
781 dn: CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
782 objectClass: top
783 objectClass: server
784 cn: ${NETBIOSNAME}
785 instanceType: 4
786 uSNCreated: ${USN}
787 uSNChanged: ${USN}
788 showInAdvancedViewOnly: TRUE
789 name: ${NETBIOSNAME}
790 systemFlags: 0x52000000
791 objectCategory: CN=Server,CN=Schema,CN=Configuration,${BASEDN}
792 dNSHostName: ${DNSNAME}
793 serverReference: CN=${NETBIOSNAME},OU=Domain Controllers,${BASEDN}
794
795 dn: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
796 objectClass: top
797 objectClass: applicationSettings
798 objectClass: nTDSDSA
799 cn: NTDS Settings
800 instanceType: 4
801 uSNCreated: ${USN}
802 uSNChanged: ${USN}
803 showInAdvancedViewOnly: TRUE
804 name: NTDS Settings
805 systemFlags: 0x02000000
806 objectCategory: CN=NTDS-DSA,CN=Schema,CN=Configuration,${BASEDN}
807 dMDLocation: CN=Schema,CN=Configuration,${BASEDN}
808 objectGUID: ${INVOCATIONID}
809 invocationId: ${INVOCATIONID}
810 msDS-Behavior-Version: 2
811
812 dn: CN=Services,CN=Configuration,${BASEDN}
813 objectClass: top
814 objectClass: container
815 cn: Services
816 instanceType: 4
817 uSNCreated: ${USN}
818 uSNChanged: ${USN}
819 showInAdvancedViewOnly: TRUE
820 name: Services
821 systemFlags: 0x80000000
822 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
823
824 dn: CN=Windows NT,CN=Services,CN=Configuration,${BASEDN}
825 objectClass: top
826 objectClass: container
827 cn: Windows NT
828 instanceType: 4
829 uSNCreated: ${USN}
830 uSNChanged: ${USN}
831 showInAdvancedViewOnly: TRUE
832 name: Windows NT
833 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
834
835 dn: CN=Directory Service,CN=Windows NT,CN=Services,CN=Configuration,${BASEDN}
836 objectClass: top
837 objectClass: nTDSService
838 cn: Directory Service
839 instanceType: 4
840 uSNCreated: ${USN}
841 uSNChanged: ${USN}
842 showInAdvancedViewOnly: TRUE
843 name: Directory Service
844 objectCategory: CN=NTDS-Service,CN=Schema,CN=Configuration,${BASEDN}
845 sPNMappings: host=ldap,dns,cifs
846
847
848 ###############################
849 # Schema Naming Context
850 ###############################
851 dn: CN=Schema,CN=Configuration,${BASEDN}
852 objectClass: top
853 objectClass: dMD
854 cn: Schema
855 instanceType: 13
856 uSNCreated: ${USN}
857 uSNChanged: ${USN}
858 showInAdvancedViewOnly: TRUE
859 name: Schema
860 objectCategory: CN=DMD,CN=Schema,CN=Configuration,${BASEDN}
861 masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
862 msDs-masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
863 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
864 objectVersion: 30
Unnamed repository; edit this file 'description' to name the repository.