mirror of
https://github.com/samba-team/samba.git
synced 2024-12-22 13:34:15 +03:00
s4-provision: LDIF files to set up AD DNS schema
This files set up DomainDnsZones and ForestDnsZones partitions and other configuration parameters for replication. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
This commit is contained in:
parent
595b9c4cc6
commit
b36e9de863
@ -1019,7 +1019,7 @@ systemFlags: -2147483648
|
||||
msDS-Behavior-Version: ${FOREST_FUNCTIONALITY}
|
||||
showInAdvancedViewOnly: TRUE
|
||||
|
||||
# Partitions for DNS are missing since we don't support AD DNS
|
||||
# Partitions for DNS are missing here, they are added from provision_dnszones.ldif
|
||||
|
||||
dn: CN=Enterprise Configuration,CN=Partitions,${CONFIGDN}
|
||||
objectClass: top
|
||||
|
74
source4/setup/provision_dnszones_add.ldif
Normal file
74
source4/setup/provision_dnszones_add.ldif
Normal file
@ -0,0 +1,74 @@
|
||||
#################################
|
||||
# Required objectclasses
|
||||
#################################
|
||||
dn: CN=Deleted Objects,${DOMAINZONE_DN}
|
||||
objectClass: top
|
||||
objectClass: container
|
||||
description: Deleted objects
|
||||
isDeleted: TRUE
|
||||
isCriticalSystemObject: TRUE
|
||||
systemFlags: -1946157056
|
||||
|
||||
dn: CN=LostAndFound,${DOMAINZONE_DN}
|
||||
objectClass: top
|
||||
objectClass: lostAndFound
|
||||
isCriticalSystemObject: TRUE
|
||||
systemFlags: -1946157056
|
||||
|
||||
dn: CN=Infrastructure,${DOMAINZONE_DN}
|
||||
objectClass: top
|
||||
objectClass: infrastructureUpdate
|
||||
isCriticalSystemObject: TRUE
|
||||
systemFlags: -1946157056
|
||||
|
||||
dn: CN=NTDS Quotas,${DOMAINZONE_DN}
|
||||
objectClass: top
|
||||
objectClass: msDS-QuotaContainer
|
||||
description: Quota specifications container
|
||||
isCriticalSystemObject: TRUE
|
||||
msDS-TombstoneQuotaFactor: 100
|
||||
|
||||
|
||||
dn: CN=Deleted Objects,${FORESTZONE_DN}
|
||||
objectClass: top
|
||||
objectClass: container
|
||||
description: Deleted objects
|
||||
isDeleted: TRUE
|
||||
isCriticalSystemObject: TRUE
|
||||
systemFlags: -1946157056
|
||||
|
||||
dn: CN=LostAndFound,${FORESTZONE_DN}
|
||||
objectClass: top
|
||||
objectClass: lostAndFound
|
||||
isCriticalSystemObject: TRUE
|
||||
systemFlags: -1946157056
|
||||
|
||||
dn: CN=Infrastructure,${FORESTZONE_DN}
|
||||
objectClass: top
|
||||
objectClass: infrastructureUpdate
|
||||
isCriticalSystemObject: TRUE
|
||||
systemFlags: -1946157056
|
||||
|
||||
dn: CN=NTDS Quotas,${FORESTZONE_DN}
|
||||
objectClass: top
|
||||
objectClass: msDS-QuotaContainer
|
||||
description: Quota specifications container
|
||||
isCriticalSystemObject: TRUE
|
||||
msDS-TombstoneQuotaFactor: 100
|
||||
|
||||
#################################
|
||||
# Configure partitions
|
||||
#################################
|
||||
dn: CN=${DOMAINZONE_GUID},CN=Partitions,${CONFIGDN}
|
||||
objectClass: top
|
||||
objectClass: crossRef
|
||||
nCName: ${DOMAINZONE_DN}
|
||||
dnsRoot: ${DOMAINZONE_DNS}
|
||||
systemFlags: 5
|
||||
|
||||
dn: CN=${FORESTZONE_GUID},CN=Partitions,${CONFIGDN}
|
||||
objectClass: top
|
||||
objectClass: crossRef
|
||||
nCName: ${FORESTZONE_DN}
|
||||
dnsRoot: ${FORESTZONE_DNS}
|
||||
systemFlags: 5
|
36
source4/setup/provision_dnszones_modify.ldif
Normal file
36
source4/setup/provision_dnszones_modify.ldif
Normal file
@ -0,0 +1,36 @@
|
||||
dn: ${DOMAINZONE_DN}
|
||||
changetype: modify
|
||||
add: wellKnownObjects
|
||||
wellKnownObjects: B:32:6227f0af1fc2410d8e3bb10615bb5b0f:CN=NTDS Quotas,${DOMAINZONE_DN}
|
||||
wellKnownObjects: B:32:18e2ea80684f11d2b9aa00c04f79f805:CN=Deleted Objects,${DOMAINZONE_DN}
|
||||
wellKnownObjects: B:32:2fbac1870ade11d297c400c04fd8d5cd:CN=Infrastructure,${DOMAINZONE_DN}
|
||||
wellKnownObjects: B:32:ab8153b7768811d1aded00c04fd8d5cd:CN=LostAndFound,${DOMAINZONE_DN}
|
||||
|
||||
dn: CN=Infrastructure,${DOMAINZONE_DN}
|
||||
changetype: modify
|
||||
add: fSMORoleOwner
|
||||
fSMORoleOwner: CN=NTDS Settings,${SERVERDN}
|
||||
|
||||
dn: CN=Infrastructure,${FORESTZONE_DN}
|
||||
changetype: modify
|
||||
add: fSMORoleOwner
|
||||
fSMORoleOwner: CN=NTDS Settings,${SERVERDN}
|
||||
|
||||
dn: ${FORESTZONE_DN}
|
||||
changetype: modify
|
||||
add: wellKnownObjects
|
||||
wellKnownObjects: B:32:6227f0af1fc2410d8e3bb10615bb5b0f:CN=NTDS Quotas,${FORESTZONE_DN}
|
||||
wellKnownObjects: B:32:18e2ea80684f11d2b9aa00c04f79f805:CN=Deleted Objects,${FORESTZONE_DN}
|
||||
wellKnownObjects: B:32:2fbac1870ade11d297c400c04fd8d5cd:CN=Infrastructure,${FORESTZONE_DN}
|
||||
wellKnownObjects: B:32:ab8153b7768811d1aded00c04fd8d5cd:CN=LostAndFound,${FORESTZONE_DN}
|
||||
|
||||
dn: CN=NTDS Settings,${SERVERDN}
|
||||
changetype: modify
|
||||
add: msDS-HasInstantiatedNCs
|
||||
msDS-HasInstantiatedNCs: B:8:0000000D:${DOMAINZONE_DN}
|
||||
msDS-HasInstantiatedNCs: B:8:0000000D:${FORESTZONE_DN}
|
||||
-
|
||||
add: msDS-hasMasterNCs
|
||||
msDS-hasMasterNCs: ${DOMAINZONE_DN}
|
||||
msDS-hasMasterNCs: ${FORESTZONE_DN}
|
||||
-
|
16
source4/setup/provision_dnszones_partitions.ldif
Normal file
16
source4/setup/provision_dnszones_partitions.ldif
Normal file
@ -0,0 +1,16 @@
|
||||
################################
|
||||
## DNSZones Naming Context
|
||||
################################
|
||||
dn: ${DOMAINZONE_DN}
|
||||
objectClass: top
|
||||
objectClass: domainDNS
|
||||
description: Microsoft DNS Directory
|
||||
msDS-NcType: 0
|
||||
instanceType: 13
|
||||
|
||||
dn: ${FORESTZONE_DN}
|
||||
objectClass: top
|
||||
objectClass: domainDNS
|
||||
description: Microsoft DNS Directory
|
||||
msDS-NcType: 0
|
||||
instanceType: 13
|
@ -44,11 +44,11 @@ hasMasterNCs: ${DOMAINDN}
|
||||
invocationId: ${INVOCATIONID}
|
||||
msDS-Behavior-Version: ${DOMAIN_CONTROLLER_FUNCTIONALITY}
|
||||
msDS-HasDomainNCs: ${DOMAINDN}
|
||||
# "msDS-HasInstantiatedNCs"s for DNS don't exist since we don't support AD DNS
|
||||
# "msDS-HasInstantiatedNCs"s for DNS is added from provision_dnszones_modify.ldif
|
||||
msDS-HasInstantiatedNCs: B:8:0000000D:${CONFIGDN}
|
||||
msDS-HasInstantiatedNCs: B:8:0000000D:${SCHEMADN}
|
||||
msDS-HasInstantiatedNCs: B:8:00000005:${DOMAINDN}
|
||||
# "msDS-hasMasterNCs"s for DNS don't exist since we don't support AD DNS
|
||||
# "msDS-hasMasterNCs"s for DNS is added from provision_dnszones_modify.ldif
|
||||
msDS-hasMasterNCs: ${CONFIGDN}
|
||||
msDS-hasMasterNCs: ${SCHEMADN}
|
||||
msDS-hasMasterNCs: ${DOMAINDN}
|
||||
|
Loading…
Reference in New Issue
Block a user