sAMAccountType: 0x30000000
objectCategory: CN=Person,CN=Schema,CN=Configuration,${BASEDN}
isCriticalSystemObject: TRUE
+unicodePwd: ${ADMINPASS}
+unixName: root
dn: CN=Guest,CN=Users,${BASEDN}
objectClass: top
groupType: 0x80000005
objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
isCriticalSystemObject: TRUE
+unixName: root
dn: CN=Users,CN=Builtin,${BASEDN}
objectClass: top
groupType: 0x80000005
objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
isCriticalSystemObject: TRUE
+unixName: nogroup
dn: CN=Print Operators,CN=Builtin,${BASEDN}
objectClass: top
groupType: -2147483646
objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
isCriticalSystemObject: TRUE
+unixName: root
dn: CN=Enterprise Admins,CN=Users,${BASEDN}
objectClass: top
groupType: -2147483646
objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
isCriticalSystemObject: TRUE
+unixName: root
dn: CN=Cert Publishers,CN=Users,${BASEDN}
objectClass: top
groupType: -2147483646
objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
isCriticalSystemObject: TRUE
+unixName: root
dn: CN=Domain Users,CN=Users,${BASEDN}
objectClass: top
groupType: -2147483646
objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
isCriticalSystemObject: TRUE
+unixName: users
dn: CN=Domain Guests,CN=Users,${BASEDN}
objectClass: top
groupType: -2147483646
objectCategory: CN=Group,CN=Schema,CN=Configuration,${BASEDN}
isCriticalSystemObject: TRUE
+unixName: root
dn: CN=RAS and IAS Servers,CN=Users,${BASEDN}
objectClass: top
name: TemplateGroup
instanceType: 4
sAMAccountType: 0x10000000
+
#######################################################################
# add a foreign security principle
-sub add_foreign($$)
+sub add_foreign($$$)
{
my $sid = shift;
my $desc = shift;
+ my $unixname = shift;
return "
dn: CN=$sid,CN=ForeignSecurityPrincipals,\${BASEDN}
objectClass: top
objectGUID: \${NEWGUID}
objectSid: $sid
objectCategory: CN=Foreign-Security-Principal,CN=Schema,CN=Configuration,\${BASEDN}
+unixName: $unixname
";
}
my $data = FileLoad("provision.ldif") || die "Unable to load provision.ldif\n";
-$data .= add_foreign("S-1-5-7", "Anonymous");
-$data .= add_foreign("S-1-5-18", "System");
-$data .= add_foreign("S-1-5-11", "Authenticated Users");
+$data .= add_foreign("S-1-5-7", "Anonymous", "nobody");
+$data .= add_foreign("S-1-5-18", "System", "root");
+$data .= add_foreign("S-1-5-11", "Authenticated Users", "users");
if (!$opt_adminpass) {
$opt_adminpass = randpass();