mirror of
https://github.com/samba-team/samba.git
synced 2025-01-11 05:18:09 +03:00
f5860b5a85
samdb before we start writing entries into it.
In doing so, I realised we still used 'dnsDomain', which is not part
of the standard schema (now removed).
We also set the 'wrong' side of the linked attributes for the
masteredBy on each partition - this is now set in provision_self_join
and backlinks via the linked attributes code.
When we have the schema loaded, we must also have a valid domain SID
loaded, so that the objectclass module works. This required some ejs
glue.
Andrew Bartlett
(This used to be commit b0de08916e)
84 lines
1.5 KiB
Plaintext
84 lines
1.5 KiB
Plaintext
###############################
|
|
# Domain Naming Context
|
|
###############################
|
|
dn: ${DOMAINDN}
|
|
changetype: modify
|
|
-
|
|
replace: dc
|
|
dc: ${RDN_DC}
|
|
-
|
|
replace: forceLogoff
|
|
forceLogoff: 9223372036854775808
|
|
-
|
|
replace: lockoutDuration
|
|
lockoutDuration: -18000000000
|
|
-
|
|
replace: lockOutObservationWindow
|
|
lockOutObservationWindow: -18000000000
|
|
-
|
|
replace: lockoutThreshold
|
|
lockoutThreshold: 0
|
|
-
|
|
replace: maxPwdAge
|
|
maxPwdAge: -37108517437440
|
|
-
|
|
replace: minPwdAge
|
|
minPwdAge: 0
|
|
-
|
|
replace: minPwdLength
|
|
minPwdLength: 7
|
|
-
|
|
replace: modifiedCountAtLastProm
|
|
modifiedCountAtLastProm: 0
|
|
-
|
|
replace: nextRid
|
|
nextRid: 1000
|
|
-
|
|
replace: pwdProperties
|
|
pwdProperties: 1
|
|
-
|
|
replace: pwdHistoryLength
|
|
pwdHistoryLength: 24
|
|
-
|
|
replace: objectSid
|
|
objectSid: ${DOMAINSID}
|
|
-
|
|
replace: oEMInformation
|
|
oEMInformation: Provisioned by Samba4: ${LDAPTIME}
|
|
-
|
|
replace: serverState
|
|
serverState: 1
|
|
-
|
|
replace: nTMixedDomain
|
|
nTMixedDomain: 1
|
|
-
|
|
replace: msDS-Behavior-Version
|
|
msDS-Behavior-Version: 0
|
|
-
|
|
replace: ridManagerReference
|
|
ridManagerReference: CN=RID Manager$,CN=System,${DOMAINDN}
|
|
-
|
|
replace: uASCompat
|
|
uASCompat: 1
|
|
-
|
|
replace: modifiedCount
|
|
modifiedCount: 1
|
|
-
|
|
replace: objectCategory
|
|
objectCategory: CN=Domain-DNS,${SCHEMADN}
|
|
-
|
|
replace: fSMORoleOwner
|
|
fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,${CONFIGDN}
|
|
-
|
|
replace: isCriticalSystemObject
|
|
isCriticalSystemObject: TRUE
|
|
-
|
|
replace: subRefs
|
|
subRefs: ${CONFIGDN}
|
|
subRefs: ${SCHEMADN}
|
|
-
|
|
replace: gPLink
|
|
gPLink: [LDAP://CN={${POLICYGUID}},CN=Policies,CN=System,${DOMAINDN};2]
|
|
-
|
|
${DOMAINGUID_MOD}
|