2009-09-17 23:19:24 +04:00
# Accounts for selfjoin (joins DC to itself)
2007-07-05 10:15:40 +04:00
2009-09-17 23:19:24 +04:00
# Object under "Domain Controllers"
2007-07-10 17:26:10 +04:00
dn: CN=${NETBIOSNAME},OU=Domain Controllers,${DOMAINDN}
2009-06-30 15:52:39 +04:00
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: user
2007-07-05 10:15:40 +04:00
objectClass: computer
accountExpires: 9223372036854775807
2009-09-17 23:19:24 +04:00
dNSHostName: ${DNSNAME}
# "frsComputerReferenceBL" doesn't exist since we still miss FRS support
isCriticalSystemObject: TRUE
localPolicyFlags: 0
2007-07-05 10:15:40 +04:00
operatingSystem: Samba
2009-07-14 02:15:50 +04:00
operatingSystemVersion: ${SAMBA_VERSION_STRING}
2009-09-17 23:19:24 +04:00
primaryGroupID: 516
# "rIDSetReferences" doesn't exist since we still miss distributed RIDs
sAMAccountName: ${NETBIOSNAME}$
# "servicePrincipalName" for FRS doesn't exit since we still miss FRS support
# "servicePrincipalName"s for DNS ("ldap/../ForestDnsZones",
# "ldap/../DomainDnsZones", "DNS/..") don't exist since we don't support AD DNS
servicePrincipalName: GC/${DNSNAME}/${REALM}
servicePrincipalName: HOST/${DNSNAME}/${DOMAIN}
2007-07-05 10:15:40 +04:00
servicePrincipalName: HOST/${NETBIOSNAME}
2009-09-17 23:19:24 +04:00
servicePrincipalName: HOST/${DNSNAME}
2007-07-05 10:15:40 +04:00
servicePrincipalName: HOST/${DNSNAME}/${REALM}
2009-09-17 23:19:24 +04:00
# "servicePrincipalName"s with GUIDs are located in
# "provision_self_join_modify.ldif"
servicePrincipalName: ldap/${DNSNAME}/${DOMAIN}
servicePrincipalName: ldap/${NETBIOSNAME}
servicePrincipalName: ldap/${DNSNAME}
servicePrincipalName: ldap/${DNSNAME}/${REALM}
userAccountControl: 532480
userPassword:: ${MACHINEPASS_B64}
2007-09-22 16:57:17 +04:00
2009-09-17 23:19:24 +04:00
# Here are missing the objects for the NTFRS subscription and the RID set since
# we don't support those techniques (FRS, distributed RIDs) yet.
# Objects under "Configuration/Sites/<Default sitename>/Servers"
2007-09-22 16:57:17 +04:00
2008-04-09 08:51:22 +04:00
dn: ${SERVERDN}
2007-10-02 01:08:53 +04:00
objectClass: top
objectClass: server
systemFlags: 1375731712
dNSHostName: ${DNSNAME}
serverReference: CN=${NETBIOSNAME},OU=Domain Controllers,${DOMAINDN}
2008-04-09 08:51:22 +04:00
dn: CN=NTDS Settings,${SERVERDN}
2007-10-02 01:08:53 +04:00
objectClass: top
objectClass: applicationSettings
objectClass: nTDSDSA
dMDLocation: ${SCHEMADN}
2009-09-17 23:19:24 +04:00
hasMasterNCs: ${CONFIGDN}
hasMasterNCs: ${SCHEMADN}
hasMasterNCs: ${DOMAINDN}
2007-10-02 01:08:53 +04:00
invocationId: ${INVOCATIONID}
2009-07-14 02:15:50 +04:00
msDS-Behavior-Version: ${DOMAIN_CONTROLLER_FUNCTIONALITY}
2009-09-17 23:19:24 +04:00
msDS-HasDomainNCs: ${DOMAINDN}
# "msDS-HasInstantiatedNCs"s for DNS don't exist since we don't support AD DNS
msDS-HasInstantiatedNCs: B:8:0000000D:${CONFIGDN}
msDS-HasInstantiatedNCs: B:8:0000000D:${SCHEMADN}
msDS-HasInstantiatedNCs: B:8:00000005:${DOMAINDN}
# "msDS-hasMasterNCs"s for DNS don't exist since we don't support AD DNS
2007-12-05 02:40:48 +03:00
msDS-hasMasterNCs: ${CONFIGDN}
msDS-hasMasterNCs: ${SCHEMADN}
msDS-hasMasterNCs: ${DOMAINDN}
2009-09-17 23:19:24 +04:00
options: 1
systemFlags: 33554432
2009-09-23 01:49:22 +04:00
${NTDSGUID}
2009-09-17 23:19:24 +04:00
# Provides an account for DNS keytab export
dn: CN=dns,CN=Users,${DOMAINDN}
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: user
description: DNS Service Account
userAccountControl: 514
accountExpires: 9223372036854775807
sAMAccountName: dns
servicePrincipalName: DNS/${DNSDOMAIN}
userPassword:: ${DNSPASS_B64}
isCriticalSystemObject: TRUE