bc4505e8a415302905ec2f6733cefc4aeb9975e9
[kai/samba.git] / source / setup / provision.ldif
1 ###############################
2 # Domain Naming Context
3 ###############################
4 dn: ${BASEDN}
5 objectClass: top
6 objectClass: domain
7 objectClass: domainDNS
8 name: ${DOMAIN}
9 flatname: ${DOMAIN}
10 dnsDomain: ${DNSDOMAIN}
11 dc: ${DOMAIN}
12 objectGUID: ${DOMAINGUID}
13 creationTime: ${NTTIME}
14 forceLogoff: 0x8000000000000000
15 lockoutDuration: -18000000000
16 lockOutObservationWindow: -18000000000
17 lockoutThreshold: 0
18 uSNCreated: 1
19 uSNChanged: 1
20 maxPwdAge: -37108517437440
21 minPwdAge: 0
22 minPwdLength: 7
23 modifiedCountAtLastProm: 0
24 nextRid: 1001
25 pwdProperties: 1
26 pwdHistoryLength: 24
27 objectSid: ${DOMAINSID}
28 serverState: 1
29 nTMixedDomain: 1
30 msDS-Behavior-Version: 0
31 ridManagerReference: CN=RID Manager$,CN=System,${BASEDN}
32 uASCompat: 1
33 modifiedCount: 1
34 objectCategory: CN=Domain-DNS,CN=Schema,CN=Configuration,${BASEDN}
35 isCriticalSystemObject: TRUE
36 subRefs: CN=Configuration,${BASEDN}
37 subRefs: CN=Schema,CN=Configuration,${BASEDN}
38 canonicalName: ${REALM}/
39
40 dn: CN=Users,${BASEDN}
41 objectClass: top
42 objectClass: container
43 cn: Users
44 description: Default container for upgraded user accounts
45 instanceType: 4
46 uSNCreated: 1
47 uSNChanged: 1
48 showInAdvancedViewOnly: FALSE
49 name: Users
50 systemFlags: 0x8c000000
51 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
52 isCriticalSystemObject: TRUE
53
54 dn: CN=Computers,${BASEDN}
55 objectClass: top
56 objectClass: container
57 cn: Computers
58 description: Default container for upgraded computer accounts
59 instanceType: 4
60 uSNCreated: 1
61 uSNChanged: 1
62 showInAdvancedViewOnly: FALSE
63 name: Computers
64 systemFlags: 0x8c000000
65 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
66 isCriticalSystemObject: TRUE
67
68 dn: OU=Domain Controllers,${BASEDN}
69 objectClass: top
70 objectClass: organizationalUnit
71 ou: Domain Controllers
72 description: Default container for domain controllers
73 instanceType: 4
74 uSNCreated: 1
75 uSNChanged: 1
76 showInAdvancedViewOnly: FALSE
77 name: Domain Controllers
78 systemFlags: 0x8c000000
79 objectCategory: CN=Organizational-Unit,CN=Schema,CN=Configuration,${BASEDN}
80 isCriticalSystemObject: TRUE
81
82 dn: CN=ForeignSecurityPrincipals,${BASEDN}
83 objectClass: top
84 objectClass: container
85 cn: ForeignSecurityPrincipals
86 description: Default container for security identifiers (SIDs) associated with objects from external, trusted domains
87 instanceType: 4
88 uSNCreated: 1
89 uSNChanged: 1
90 showInAdvancedViewOnly: FALSE
91 name: ForeignSecurityPrincipals
92 systemFlags: 0x8c000000
93 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
94 isCriticalSystemObject: TRUE
95
96 dn: CN=System,${BASEDN}
97 objectClass: top
98 objectClass: container
99 cn: System
100 description: Builtin system settings
101 instanceType: 4
102 uSNCreated: 1
103 uSNChanged: 1
104 showInAdvancedViewOnly: TRUE
105 name: System
106 systemFlags: 0x8c000000
107 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
108 isCriticalSystemObject: TRUE
109
110 dn: CN=RID Manager$,CN=System,${BASEDN}
111 objectclass: top
112 objectclass: rIDManager
113 cn: RID Manager$
114 instanceType: 4
115 uSNCreated: 1
116 uSNChanged: 1
117 showInAdvancedViewOnly: TRUE
118 name: RID Manager$
119 systemFlags: 0x8c000000
120 objectCategory: CN=RID-Manager,CN=Schema,CN=Configuration,${BASEDN}
121 isCriticalSystemObject: TRUE
122 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
123 rIDAvailablePool: 4611686014132423217
124
125 dn: CN=DomainUpdates,CN=System,${BASEDN}
126 objectClass: top
127 objectClass: container
128 cn: DomainUpdates
129 instanceType: 4
130 uSNCreated: 1
131 uSNChanged: 1
132 showInAdvancedViewOnly: TRUE
133 name: DomainUpdates
134 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
135
136 dn: CN=Windows2003Update,CN=DomainUpdates,CN=System,${BASEDN}
137 objectClass: top
138 objectClass: container
139 cn: Windows2003Update
140 instanceType: 4
141 uSNCreated: 1
142 uSNChanged: 1
143 showInAdvancedViewOnly: TRUE
144 name: Windows2003Update
145 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
146 revision: 8
147
148 dn: CN=Infrastructure,${BASEDN}
149 objectclass: top
150 objectclass: infrastructureUpdate
151 cn: Infrastructure
152 instanceType: 4
153 uSNCreated: 1
154 uSNChanged: 1
155 showInAdvancedViewOnly: TRUE
156 name: Infrastructure
157 systemFlags: 0x8c000000
158 objectCategory: CN=Infrastructure-Update,CN=Schema,CN=Configuration,${BASEDN}
159 isCriticalSystemObject: TRUE
160 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
161
162 dn: CN=Builtin,${BASEDN}
163 objectClass: top
164 objectClass: builtinDomain
165 cn: Builtin
166 instanceType: 4
167 showInAdvancedViewOnly: FALSE
168 name: Builtin
169 forceLogoff: 0x8000000000000000
170 lockoutDuration: -18000000000
171 lockOutObservationWindow: -18000000000
172 lockoutThreshold: 0
173 maxPwdAge: -37108517437440
174 minPwdAge: 0
175 minPwdLength: 0
176 modifiedCountAtLastProm: 0
177 nextRid: 1000
178 pwdProperties: 0
179 pwdHistoryLength: 0
180 objectSid: S-1-5-32
181 serverState: 1
182 uASCompat: 1
183 modifiedCount: 1
184 objectCategory: CN=Builtin-Domain,CN=Schema,CN=Configuration,${BASEDN}
185 isCriticalSystemObject: TRUE
186
187 dn: CN=Administrator,CN=Users,${BASEDN}
188 objectClass: top
189 objectClass: person
190 objectClass: organizationalPerson
191 objectClass: user
192 cn: Administrator
193 description: Built-in account for administering the computer/domain
194 instanceType: 4
195 uSNCreated: 1
196 memberOf: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
197 memberOf: CN=Domain Admins,CN=Users,${BASEDN}
198 memberOf: CN=Enterprise Admins,CN=Users,${BASEDN}
199 memberOf: CN=Schema Admins,CN=Users,${BASEDN}
200 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
201 uSNChanged: 1
202 name: Administrator
203 userAccountControl: 0x10200
204 badPwdCount: 0
205 codePage: 0
206 countryCode: 0
207 badPasswordTime: 0
208 lastLogoff: 0
209 lastLogon: 0
210 pwdLastSet: 0
211 primaryGroupID: 513
212 objectSid: ${DOMAINSID}-500
213 adminCount: 1
214 accountExpires: -1
215 logonCount: 0
216 sAMAccountName: Administrator
217 sAMAccountType: 0x30000000
218 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
219 isCriticalSystemObject: TRUE
220 unicodePwd: ${ADMINPASS}
221 unixName: ${ROOT}
222
223 dn: CN=Guest,CN=Users,${BASEDN}
224 objectClass: top
225 objectClass: person
226 objectClass: organizationalPerson
227 objectClass: user
228 cn: Guest
229 description: Built-in account for guest access to the computer/domain
230 instanceType: 4
231 uSNCreated: 1
232 memberOf: CN=Guests,CN=Builtin,${BASEDN}
233 uSNChanged: 1
234 name: Guest
235 userAccountControl: 0x10222
236 badPwdCount: 0
237 codePage: 0
238 countryCode: 0
239 badPasswordTime: 0
240 lastLogoff: 0
241 lastLogon: 0
242 pwdLastSet: 0
243 primaryGroupID: 514
244 objectSid: ${DOMAINSID}-501
245 accountExpires: -1
246 logonCount: 0
247 sAMAccountName: Guest
248 sAMAccountType: 0x30000000
249 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
250 isCriticalSystemObject: TRUE
251
252 dn: CN=Administrators,CN=Builtin,${BASEDN}
253 objectClass: top
254 objectClass: group
255 cn: Administrators
256 description: Administrators have complete and unrestricted access to the computer/domain
257 member: CN=Domain Admins,CN=Users,${BASEDN}
258 member: CN=Enterprise Admins,CN=Users,${BASEDN}
259 member: CN=Administrator,CN=Users,${BASEDN}
260 instanceType: 4
261 uSNCreated: 1
262 uSNChanged: 1
263 name: Administrators
264 objectSid: S-1-5-32-544
265 adminCount: 1
266 sAMAccountName: Administrators
267 sAMAccountType: 0x20000000
268 systemFlags: 0x8c000000
269 groupType: 0x80000005
270 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
271 isCriticalSystemObject: TRUE
272 unixName: ${WHEEL}
273 privilege: SeSecurityPrivilege
274 privilege: SeBackupPrivilege
275 privilege: SeRestorePrivilege
276 privilege: SeSystemtimePrivilege
277 privilege: SeShutdownPrivilege
278 privilege: SeRemoteShutdownPrivilege
279 privilege: SeTakeOwnershipPrivilege
280 privilege: SeDebugPrivilege
281 privilege: SeSystemEnvironmentPrivilege
282 privilege: SeSystemProfilePrivilege
283 privilege: SeProfileSingleProcessPrivilege
284 privilege: SeIncreaseBasePriorityPrivilege
285 privilege: SeLoadDriverPrivilege
286 privilege: SeCreatePagefilePrivilege
287 privilege: SeIncreaseQuotaPrivilege
288 privilege: SeChangeNotifyPrivilege
289 privilege: SeUndockPrivilege
290 privilege: SeManageVolumePrivilege
291 privilege: SeImpersonatePrivilege
292 privilege: SeCreateGlobalPrivilege
293 privilege: SeEnableDelegationPrivilege
294 privilege: SeInteractiveLogonRight
295 privilege: SeNetworkLogonRight
296 privilege: SeRemoteInteractiveLogonRight
297
298
299 dn: CN=Users,CN=Builtin,${BASEDN}
300 objectClass: top
301 objectClass: group
302 cn: Users
303 description: Users are prevented from making accidental or intentional system-wide changes.  Thus, Users can run certified applications, but not most legacy applications
304 member: CN=Domain Users,CN=Users,${BASEDN}
305 instanceType: 4
306 uSNCreated: 1
307 uSNChanged: 1
308 name: Users
309 objectSid: S-1-5-32-545
310 sAMAccountName: Users
311 sAMAccountType: 0x20000000
312 systemFlags: 0x8c000000
313 groupType: 0x80000005
314 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
315 isCriticalSystemObject: TRUE
316
317 dn: CN=Guests,CN=Builtin,${BASEDN}
318 objectClass: top
319 objectClass: group
320 cn: Guests
321 description: Guests have the same access as members of the Users group by default, except for the Guest account which is further restricted
322 member: CN=Domain Guests,CN=Users,${BASEDN}
323 member: CN=Guest,CN=Users,${BASEDN}
324 instanceType: 4
325 uSNCreated: 1
326 uSNChanged: 1
327 name: Guests
328 objectSid: S-1-5-32-546
329 sAMAccountName: Guests
330 sAMAccountType: 0x20000000
331 systemFlags: 0x8c000000
332 groupType: 0x80000005
333 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
334 isCriticalSystemObject: TRUE
335 unixName: ${NOGROUP}
336
337 dn: CN=Print Operators,CN=Builtin,${BASEDN}
338 objectClass: top
339 objectClass: group
340 cn: Print Operators
341 description: Members can administer domain printers
342 instanceType: 4
343 uSNCreated: 1
344 uSNChanged: 1
345 name: Print Operators
346 objectSid: S-1-5-32-550
347 adminCount: 1
348 sAMAccountName: Print Operators
349 sAMAccountType: 0x20000000
350 systemFlags: 0x8c000000
351 groupType: 0x80000005
352 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
353 isCriticalSystemObject: TRUE
354 privilege: SeLoadDriverPrivilege
355 privilege: SeShutdownPrivilege
356 privilege: SeInteractiveLogonRight
357
358 dn: CN=Backup Operators,CN=Builtin,${BASEDN}
359 objectClass: top
360 objectClass: group
361 cn: Backup Operators
362 description: Backup Operators can override security restrictions for the sole purpose of backing up or restoring files
363 instanceType: 4
364 uSNCreated: 1
365 uSNChanged: 1
366 name: Backup Operators
367 objectSid: S-1-5-32-551
368 adminCount: 1
369 sAMAccountName: Backup Operators
370 sAMAccountType: 0x20000000
371 systemFlags: 0x8c000000
372 groupType: 0x80000005
373 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
374 isCriticalSystemObject: TRUE
375 privilege: SeBackupPrivilege
376 privilege: SeRestorePrivilege
377 privilege: SeShutdownPrivilege
378 privilege: SeInteractiveLogonRight
379
380 dn: CN=Replicator,CN=Builtin,${BASEDN}
381 objectClass: top
382 objectClass: group
383 cn: Replicator
384 description: Supports file replication in a domain
385 instanceType: 4
386 uSNCreated: 1
387 uSNChanged: 1
388 name: Replicator
389 objectSid: S-1-5-32-552
390 adminCount: 1
391 sAMAccountName: Replicator
392 sAMAccountType: 0x20000000
393 systemFlags: 0x8c000000
394 groupType: 0x80000005
395 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
396 isCriticalSystemObject: TRUE
397
398 dn: CN=Remote Desktop Users,CN=Builtin,${BASEDN}
399 objectClass: top
400 objectClass: group
401 cn: Remote Desktop Users
402 description: Members in this group are granted the right to logon remotely
403 instanceType: 4
404 uSNCreated: 1
405 uSNChanged: 1
406 name: Remote Desktop Users
407 objectSid: S-1-5-32-555
408 sAMAccountName: Remote Desktop Users
409 sAMAccountType: 0x20000000
410 systemFlags: 0x8c000000
411 groupType: 0x80000005
412 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
413 isCriticalSystemObject: TRUE
414
415 dn: CN=Network Configuration Operators,CN=Builtin,${BASEDN}
416 objectClass: top
417 objectClass: group
418 cn: Network Configuration Operators
419 description: Members in this group can have some administrative privileges to manage configuration of networking features
420 instanceType: 4
421 uSNCreated: 1
422 uSNChanged: 1
423 name: Network Configuration Operators
424 objectSid: S-1-5-32-556
425 sAMAccountName: Network Configuration Operators
426 sAMAccountType: 0x20000000
427 systemFlags: 0x8c000000
428 groupType: 0x80000005
429 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
430 isCriticalSystemObject: TRUE
431
432 dn: CN=Performance Monitor Users,CN=Builtin,${BASEDN}
433 objectClass: top
434 objectClass: group
435 cn: Performance Monitor Users
436 description: Members of this group have remote access to monitor this computer
437 instanceType: 4
438 uSNCreated: 1
439 uSNChanged: 1
440 name: Performance Monitor Users
441 objectSid: S-1-5-32-558
442 sAMAccountName: Performance Monitor Users
443 sAMAccountType: 0x20000000
444 systemFlags: 0x8c000000
445 groupType: 0x80000005
446 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
447 isCriticalSystemObject: TRUE
448
449 dn: CN=Performance Log Users,CN=Builtin,${BASEDN}
450 objectClass: top
451 objectClass: group
452 cn: Performance Log Users
453 description: Members of this group have remote access to schedule logging of performance counters on this computer
454 instanceType: 4
455 uSNCreated: 1
456 uSNChanged: 1
457 name: Performance Log Users
458 objectSid: S-1-5-32-559
459 sAMAccountName: Performance Log Users
460 sAMAccountType: 0x20000000
461 systemFlags: 0x8c000000
462 groupType: 0x80000005
463 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
464 isCriticalSystemObject: TRUE
465
466 dn: CN=${NETBIOSNAME},OU=Domain Controllers,${BASEDN}
467 objectClass: top
468 objectClass: person
469 objectClass: organizationalPerson
470 objectClass: user
471 objectClass: computer
472 cn: ${NETBIOSNAME}
473 instanceType: 4
474 uSNCreated: 1
475 uSNChanged: 1
476 name: ${NETBIOSNAME}
477 objectGUID: ${HOSTGUID}
478 userAccountControl: 532480
479 badPwdCount: 0
480 codePage: 0
481 countryCode: 0
482 badPasswordTime: 0
483 lastLogoff: 0
484 lastLogon: 127273269057298624
485 localPolicyFlags: 0
486 pwdLastSet: 127258826171655328
487 primaryGroupID: 516
488 objectSid: ${DOMAINSID}-1000
489 accountExpires: 9223372036854775807
490 logonCount: 30
491 sAMAccountName: ${NETBIOSNAME}$
492 sAMAccountType: 805306369
493 operatingSystem: Samba
494 operatingSystemVersion: 4.0
495 dNSHostName: ${DNSNAME}
496 objectCategory: CN=Computer,CN=Schema,CN=Configuration,${BASEDN}
497 isCriticalSystemObject: TRUE
498 unicodePwd: ${MACHINEPASS}
499 servicePrincipalName: HOST/${DNSNAME}
500 servicePrincipalName: HOST/${NETBIOSNAME}
501 msDS-KeyVersionNumber: 1
502
503 dn: CN=krbtgt,CN=Users,${BASEDN}
504 objectClass: top
505 objectClass: person
506 objectClass: organizationalPerson
507 objectClass: user
508 cn: krbtgt
509 description: Key Distribution Center Service Account
510 instanceType: 4
511 uSNCreated: 1
512 uSNChanged: 1
513 showInAdvancedViewOnly: TRUE
514 name: krbtgt
515 userAccountControl: 514
516 badPwdCount: 0
517 codePage: 0
518 countryCode: 0
519 badPasswordTime: 0
520 lastLogoff: 0
521 lastLogon: 0
522 pwdLastSet: 127258826179466560
523 primaryGroupID: 513
524 objectSid: ${DOMAINSID}-502
525 adminCount: 1
526 accountExpires: 9223372036854775807
527 logonCount: 0
528 sAMAccountName: krbtgt
529 sAMAccountType: 805306368
530 servicePrincipalName: kadmin/changepw
531 objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
532 isCriticalSystemObject: TRUE
533 unicodePwd: ${KRBTGTPASS}
534
535 dn: CN=Domain Computers,CN=Users,${BASEDN}
536 objectClass: top
537 objectClass: group
538 cn: Domain Computers
539 description: All workstations and servers joined to the domain
540 instanceType: 4
541 uSNCreated: 1
542 uSNChanged: 1
543 name: Domain Computers
544 objectSid: ${DOMAINSID}-515
545 sAMAccountName: Domain Computers
546 sAMAccountType: 0x10000000
547 groupType: 0x80000002
548 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
549 isCriticalSystemObject: TRUE
550
551 dn: CN=Domain Controllers,CN=Users,${BASEDN}
552 objectClass: top
553 objectClass: group
554 cn: Domain Controllers
555 description: All domain controllers in the domain
556 instanceType: 4
557 uSNCreated: 1
558 uSNChanged: 1
559 name: Domain Controllers
560 objectSid: ${DOMAINSID}-516
561 adminCount: 1
562 sAMAccountName: Domain Controllers
563 sAMAccountType: 0x10000000
564 groupType: 0x80000002
565 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
566 isCriticalSystemObject: TRUE
567
568 dn: CN=Schema Admins,CN=Users,${BASEDN}
569 objectClass: top
570 objectClass: group
571 cn: Schema Admins
572 description: Designated administrators of the schema
573 member: CN=Administrator,CN=Users,${BASEDN}
574 instanceType: 4
575 uSNCreated: 1
576 uSNChanged: 1
577 name: Schema Admins
578 objectSid: ${DOMAINSID}-518
579 adminCount: 1
580 sAMAccountName: Schema Admins
581 sAMAccountType: 0x10000000
582 groupType: 0x80000002
583 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
584 isCriticalSystemObject: TRUE
585 unixName: ${WHEEL}
586
587 dn: CN=Enterprise Admins,CN=Users,${BASEDN}
588 objectClass: top
589 objectClass: group
590 cn: Enterprise Admins
591 description: Designated administrators of the enterprise
592 member: CN=Administrator,CN=Users,${BASEDN}
593 instanceType: 4
594 uSNCreated: 1
595 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
596 uSNChanged: 1
597 name: Enterprise Admins
598 objectSid: ${DOMAINSID}-519
599 adminCount: 1
600 sAMAccountName: Enterprise Admins
601 sAMAccountType: 0x10000000
602 groupType: 0x80000002
603 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
604 isCriticalSystemObject: TRUE
605 unixName: ${WHEEL}
606
607 dn: CN=Cert Publishers,CN=Users,${BASEDN}
608 objectClass: top
609 objectClass: group
610 cn: Cert Publishers
611 description: Members of this group are permitted to publish certificates to the Active Directory
612 instanceType: 4
613 uSNCreated: 1
614 uSNChanged: 1
615 name: Cert Publishers
616 objectSid: ${DOMAINSID}-517
617 sAMAccountName: Cert Publishers
618 sAMAccountType: 0x20000000
619 groupType: 0x80000004
620 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
621 isCriticalSystemObject: TRUE
622
623 dn: CN=Domain Admins,CN=Users,${BASEDN}
624 objectClass: top
625 objectClass: group
626 cn: Domain Admins
627 description: Designated administrators of the domain
628 member: CN=Administrator,CN=Users,${BASEDN}
629 instanceType: 4
630 uSNCreated: 1
631 memberOf: CN=Administrators,CN=Builtin,${BASEDN}
632 uSNChanged: 1
633 name: Domain Admins
634 objectSid: ${DOMAINSID}-512
635 adminCount: 1
636 sAMAccountName: Domain Admins
637 sAMAccountType: 0x10000000
638 groupType: 0x80000002
639 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
640 isCriticalSystemObject: TRUE
641 unixName: ${WHEEL}
642
643 dn: CN=Domain Users,CN=Users,${BASEDN}
644 objectClass: top
645 objectClass: group
646 cn: Domain Users
647 description: All domain users
648 instanceType: 4
649 uSNCreated: 1
650 memberOf: CN=Users,CN=Builtin,${BASEDN}
651 uSNChanged: 1
652 name: Domain Users
653 objectSid: ${DOMAINSID}-513
654 sAMAccountName: Domain Users
655 sAMAccountType: 0x10000000
656 groupType: 0x80000002
657 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
658 isCriticalSystemObject: TRUE
659 unixName: ${USERS}
660
661 dn: CN=Domain Guests,CN=Users,${BASEDN}
662 objectClass: top
663 objectClass: group
664 cn: Domain Guests
665 description: All domain guests
666 instanceType: 4
667 uSNCreated: 1
668 memberOf: CN=Guests,CN=Builtin,${BASEDN}
669 uSNChanged: 1
670 name: Domain Guests
671 objectSid: ${DOMAINSID}-514
672 sAMAccountName: Domain Guests
673 sAMAccountType: 0x10000000
674 groupType: 0x80000002
675 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
676 isCriticalSystemObject: TRUE
677
678 dn: CN=Group Policy Creator Owners,CN=Users,${BASEDN}
679 objectClass: top
680 objectClass: group
681 cn: Group Policy Creator Owners
682 description: Members in this group can modify group policy for the domain
683 member: CN=Administrator,CN=Users,${BASEDN}
684 instanceType: 4
685 uSNCreated: 1
686 uSNChanged: 1
687 name: Group Policy Creator Owners
688 objectSid: ${DOMAINSID}-520
689 sAMAccountName: Group Policy Creator Owners
690 sAMAccountType: 0x10000000
691 groupType: 0x80000002
692 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
693 isCriticalSystemObject: TRUE
694 unixName: ${WHEEL}
695
696 dn: CN=RAS and IAS Servers,CN=Users,${BASEDN}
697 objectClass: top
698 objectClass: group
699 cn: RAS and IAS Servers
700 description: Servers in this group can access remote access properties of users
701 instanceType: 4
702 uSNCreated: 1
703 uSNChanged: 1
704 name: RAS and IAS Servers
705 objectSid: ${DOMAINSID}-553
706 sAMAccountName: RAS and IAS Servers
707 sAMAccountType: 0x20000000
708 groupType: 0x80000004
709 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
710 isCriticalSystemObject: TRUE
711
712 dn: CN=Server Operators,CN=Builtin,${BASEDN}
713 objectClass: top
714 objectClass: group
715 cn: Server Operators
716 description: Members can administer domain servers
717 instanceType: 4
718 uSNCreated: 1
719 uSNChanged: 1
720 name: Server Operators
721 objectSid: S-1-5-32-549
722 adminCount: 1
723 sAMAccountName: Server Operators
724 sAMAccountType: 0x20000000
725 systemFlags: 0x8c000000
726 groupType: 0x80000005
727 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
728 isCriticalSystemObject: TRUE
729 privilege: SeBackupPrivilege
730 privilege: SeSystemtimePrivilege
731 privilege: SeRemoteShutdownPrivilege
732 privilege: SeRestorePrivilege
733 privilege: SeShutdownPrivilege
734 privilege: SeInteractiveLogonRight
735
736 dn: CN=Account Operators,CN=Builtin,${BASEDN}
737 objectClass: top
738 objectClass: group
739 cn: Account Operators
740 description: Members can administer domain user and group accounts
741 instanceType: 4
742 uSNCreated: 1
743 uSNChanged: 1
744 name: Account Operators
745 objectSid: S-1-5-32-548
746 adminCount: 1
747 sAMAccountName: Account Operators
748 sAMAccountType: 0x20000000
749 systemFlags: 0x8c000000
750 groupType: 0x80000005
751 objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
752 isCriticalSystemObject: TRUE
753 privilege: SeInteractiveLogonRight
754
755 dn: CN=Templates,${BASEDN}
756 objectClass: top
757 objectClass: container
758 cn: Templates
759 description: Container for SAM account templates
760 instanceType: 4
761 uSNCreated: 1
762 uSNChanged: 1
763 showInAdvancedViewOnly: TRUE
764 name: Templates
765 systemFlags: 0x8c000000
766 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
767 isCriticalSystemObject: TRUE
768
769 ###
770 # note! the template users must not match normal searches. Be careful
771 # with what classes you put them in
772 ###
773
774 dn: CN=TemplateUser,CN=Templates,${BASEDN}
775 objectClass: top
776 objectClass: person
777 objectClass: organizationalPerson
778 objectClass: Template
779 objectClass: userTemplate
780 cn: TemplateUser
781 name: TemplateUser
782 instanceType: 4
783 userAccountControl: 0x202
784 badPwdCount: 0
785 codePage: 0
786 countryCode: 0
787 badPasswordTime: 0
788 lastLogoff: 0
789 lastLogon: 0
790 pwdLastSet: 0
791 primaryGroupID: 513
792 accountExpires: -1
793 logonCount: 0
794 sAMAccountType: 0x30000000
795
796 dn: CN=TemplateMemberServer,CN=Templates,${BASEDN}
797 objectClass: top
798 objectClass: Template
799 objectClass: userTemplate
800 cn: TemplateMemberServer
801 name: TemplateMemberServer
802 instanceType: 4
803 userAccountControl: 0x1002
804 badPwdCount: 0
805 codePage: 0
806 countryCode: 0
807 badPasswordTime: 0
808 lastLogoff: 0
809 lastLogon: 0
810 pwdLastSet: 0
811 primaryGroupID: 513
812 accountExpires: -1
813 logonCount: 0
814 sAMAccountType: 0x30000001
815
816 dn: CN=TemplateDomainController,CN=Templates,${BASEDN}
817 objectClass: top
818 objectClass: Template
819 objectClass: userTemplate
820 cn: TemplateDomainController
821 name: TemplateDomainController
822 instanceType: 4
823 userAccountControl: 0x2002
824 badPwdCount: 0
825 codePage: 0
826 countryCode: 0
827 badPasswordTime: 0
828 lastLogoff: 0
829 lastLogon: 0
830 pwdLastSet: 0
831 primaryGroupID: 513
832 accountExpires: -1
833 logonCount: 0
834 sAMAccountType: 0x30000001
835
836 dn: CN=TemplateTrustingDomain,CN=Templates,${BASEDN}
837 objectClass: top
838 objectClass: Template
839 objectClass: userTemplate
840 cn: TemplateTrustingDomain
841 name: TemplateTrustingDomain
842 instanceType: 4
843 userAccountControl: 0x820
844 badPwdCount: 0
845 codePage: 0
846 countryCode: 0
847 badPasswordTime: 0
848 lastLogoff: 0
849 lastLogon: 0
850 pwdLastSet: 0
851 primaryGroupID: 513
852 accountExpires: -1
853 logonCount: 0
854 sAMAccountType: 0x30000002
855
856 dn: CN=TemplateGroup,CN=Templates,${BASEDN}
857 objectClass: top
858 objectClass: Template
859 objectClass: groupTemplate
860 cn: TemplateGroup
861 name: TemplateGroup
862 instanceType: 4
863 groupType: 0x80000002
864 sAMAccountType: 0x10000000
865
866 dn: CN=TemplateAlias,CN=Templates,${BASEDN}
867 objectClass: top
868 objectClass: Template
869 objectClass: aliasTemplate
870 cn: TemplateAlias
871 name: TemplateAlias
872 instanceType: 4
873 groupType: 0x80000004
874 sAMAccountType: 0x10000000
875
876 dn: CN=TemplateForeignSecurityPrincipal,CN=Templates,${BASEDN}
877 objectClass: top
878 objectClass: Template
879 objectClass: foreignSecurityPrincipalTemplate
880 cn: TemplateForeignSecurityPrincipal
881 name: TemplateForeignSecurityPrincipal
882
883 dn: CN=TemplateSecret,CN=Templates,${BASEDN}
884 objectClass: top
885 objectClass: leaf
886 objectClass: Template
887 objectClass: secretTemplate
888 cn: TemplateSecret
889 name: TemplateSecret
890 instanceType: 4
891
892 dn: CN=TemplateTrustedDomain,CN=Templates,${BASEDN}
893 objectClass: top
894 objectClass: leaf
895 objectClass: Template
896 objectClass: trustedDomainTemplate
897 cn: TemplateTrustedDomain
898 name: TemplateTrustedDomain
899 instanceType: 4
900
901 ###############################
902 # Configuration Naming Context
903 ###############################
904 dn: CN=Configuration,${BASEDN}
905 objectClass: top
906 objectClass: configuration
907 cn: Configuration
908 instanceType: 13
909 uSNCreated: ${USN}
910 uSNChanged: ${USN}
911 showInAdvancedViewOnly: TRUE
912 name: Configuration
913 objectCategory: CN=Configuration,CN=Schema,CN=Configuration,${BASEDN}
914 subRefs: CN=Schema,CN=Configuration,${BASEDN}
915 masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
916 msDs-masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
917
918 dn: CN=Partitions,CN=Configuration,${BASEDN}
919 objectClass: top
920 objectClass: crossRefContainer
921 cn: Partitions
922 instanceType: 4
923 uSNCreated: ${USN}
924 uSNChanged: ${USN}
925 showInAdvancedViewOnly: TRUE
926 name: Partitions
927 systemFlags: 0x80000000
928 objectCategory: CN=Cross-Ref-Container,CN=Schema,CN=Configuration,${BASEDN}
929 msDS-Behavior-Version: 0
930 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
931
932 dn: CN=Enterprise Configuration,CN=Partitions,CN=Configuration,${BASEDN}
933 objectClass: top
934 objectClass: crossRef
935 cn: Enterprise Configuration
936 instanceType: 4
937 uSNCreated: ${USN}
938 uSNChanged: ${USN}
939 showInAdvancedViewOnly: TRUE
940 name: Enterprise Configuration
941 systemFlags: 0x00000001
942 objectCategory: CN=Cross-Ref,CN=Schema,CN=Configuration,${BASEDN}
943 nCName: CN=Configuration,${BASEDN}
944 dnsRoot: ${DNSDOMAIN}
945
946 dn: CN=Enterprise Schema,CN=Partitions,CN=Configuration,${BASEDN}
947 objectClass: top
948 objectClass: crossRef
949 cn: Enterprise Schema
950 instanceType: 4
951 uSNCreated: ${USN}
952 uSNChanged: ${USN}
953 showInAdvancedViewOnly: TRUE
954 name: Enterprise Schema
955 systemFlags: 0x00000001
956 objectCategory: CN=Cross-Ref,CN=Schema,CN=Configuration,${BASEDN}
957 nCName: CN=Schema,CN=Configuration,${BASEDN}
958 dnsRoot: ${DNSDOMAIN}
959
960 dn: CN=${DOMAIN},CN=Partitions,CN=Configuration,${BASEDN}
961 objectClass: top
962 objectClass: crossRef
963 cn: ${DOMAIN}
964 instanceType: 4
965 uSNCreated: ${USN}
966 uSNChanged: ${USN}
967 showInAdvancedViewOnly: TRUE
968 name: ${DOMAIN}
969 systemFlags: 0x00000003
970 objectCategory: CN=Cross-Ref,CN=Schema,CN=Configuration,${BASEDN}
971 nCName: ${BASEDN}
972 nETBIOSName: ${DOMAIN}
973 dnsRoot: ${DNSDOMAIN}
974
975 dn: CN=Sites,CN=Configuration,${BASEDN}
976 objectClass: top
977 objectClass: sitesContainer
978 cn: Sites
979 instanceType: 4
980 uSNCreated: ${USN}
981 uSNChanged: ${USN}
982 showInAdvancedViewOnly: TRUE
983 name: Sites
984 systemFlags: 0x82000000
985 objectCategory: CN=Sites-Container,CN=Schema,CN=Configuration,${BASEDN}
986
987 dn: CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
988 objectClass: top
989 objectClass: site
990 cn: Sites
991 instanceType: 4
992 uSNCreated: ${USN}
993 uSNChanged: ${USN}
994 showInAdvancedViewOnly: TRUE
995 name: Sites
996 systemFlags: 0x82000000
997 objectCategory: CN=Site,CN=Schema,CN=Configuration,${BASEDN}
998
999 dn: CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1000 objectClass: top
1001 objectClass: serversContainer
1002 cn: Servers
1003 instanceType: 4
1004 uSNCreated: ${USN}
1005 uSNChanged: ${USN}
1006 showInAdvancedViewOnly: TRUE
1007 name: Servers
1008 systemFlags: 0x82000000
1009 objectCategory: CN=Servers-Container,CN=Schema,CN=Configuration,${BASEDN}
1010
1011 dn: CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1012 objectClass: top
1013 objectClass: server
1014 cn: ${NETBIOSNAME}
1015 instanceType: 4
1016 uSNCreated: ${USN}
1017 uSNChanged: ${USN}
1018 showInAdvancedViewOnly: TRUE
1019 name: ${NETBIOSNAME}
1020 systemFlags: 0x52000000
1021 objectCategory: CN=Server,CN=Schema,CN=Configuration,${BASEDN}
1022 dNSHostName: ${DNSNAME}
1023 serverReference: CN=${NETBIOSNAME},OU=Domain Controllers,${BASEDN}
1024
1025 dn: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1026 objectClass: top
1027 objectClass: applicationSettings
1028 objectClass: nTDSDSA
1029 cn: NTDS Settings
1030 instanceType: 4
1031 uSNCreated: ${USN}
1032 uSNChanged: ${USN}
1033 showInAdvancedViewOnly: TRUE
1034 name: NTDS Settings
1035 systemFlags: 0x02000000
1036 objectCategory: CN=NTDS-DSA,CN=Schema,CN=Configuration,${BASEDN}
1037 dMDLocation: CN=Schema,CN=Configuration,${BASEDN}
1038 objectGUID: ${INVOCATIONID}
1039 invocationId: ${INVOCATIONID}
1040 msDS-Behavior-Version: 2
1041
1042 dn: CN=Services,CN=Configuration,${BASEDN}
1043 objectClass: top
1044 objectClass: container
1045 cn: Services
1046 instanceType: 4
1047 uSNCreated: ${USN}
1048 uSNChanged: ${USN}
1049 showInAdvancedViewOnly: TRUE
1050 name: Services
1051 systemFlags: 0x80000000
1052 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
1053
1054 dn: CN=Windows NT,CN=Services,CN=Configuration,${BASEDN}
1055 objectClass: top
1056 objectClass: container
1057 cn: Windows NT
1058 instanceType: 4
1059 uSNCreated: ${USN}
1060 uSNChanged: ${USN}
1061 showInAdvancedViewOnly: TRUE
1062 name: Windows NT
1063 objectCategory: CN=Container,CN=Schema,CN=Configuration,${BASEDN}
1064
1065 dn: CN=Directory Service,CN=Windows NT,CN=Services,CN=Configuration,${BASEDN}
1066 objectClass: top
1067 objectClass: nTDSService
1068 cn: Directory Service
1069 instanceType: 4
1070 uSNCreated: ${USN}
1071 uSNChanged: ${USN}
1072 showInAdvancedViewOnly: TRUE
1073 name: Directory Service
1074 objectCategory: CN=NTDS-Service,CN=Schema,CN=Configuration,${BASEDN}
1075 sPNMappings: host=ldap,dns,cifs
1076
1077
1078 ###############################
1079 # Schema Naming Context
1080 ###############################
1081 dn: CN=Schema,CN=Configuration,${BASEDN}
1082 objectClass: top
1083 objectClass: dMD
1084 cn: Schema
1085 instanceType: 13
1086 uSNCreated: ${USN}
1087 uSNChanged: ${USN}
1088 showInAdvancedViewOnly: TRUE
1089 name: Schema
1090 objectCategory: CN=DMD,CN=Schema,CN=Configuration,${BASEDN}
1091 masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1092 msDs-masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1093 fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,CN=Configuration,${BASEDN}
1094 objectVersion: 30