mirror of
https://github.com/samba-team/samba.git
synced 2025-10-28 03:33:13 +03:00
4c6e01a585
clients do correctly see our group policies, but the gpmc admin tool doesn't yet work to allow you to edit the policies
92 lines
1.8 KiB
Plaintext
92 lines
1.8 KiB
Plaintext
###############################
|
|
# Domain Naming Context
|
|
###############################
|
|
dn: ${DOMAINDN}
|
|
changetype: modify
|
|
replace: dnsDomain
|
|
dnsDomain: ${DNSDOMAIN}
|
|
-
|
|
replace: dc
|
|
dc: ${RDN_DC}
|
|
-
|
|
replace: forceLogoff
|
|
forceLogoff: 9223372036854775808
|
|
-
|
|
replace: lockoutDuration
|
|
lockoutDuration: -18000000000
|
|
-
|
|
replace: lockOutObservationWindow
|
|
lockOutObservationWindow: -18000000000
|
|
-
|
|
replace: lockoutThreshold
|
|
lockoutThreshold: 0
|
|
-
|
|
replace: maxPwdAge
|
|
maxPwdAge: -37108517437440
|
|
-
|
|
replace: minPwdAge
|
|
minPwdAge: 0
|
|
-
|
|
replace: minPwdLength
|
|
minPwdLength: 7
|
|
-
|
|
replace: modifiedCountAtLastProm
|
|
modifiedCountAtLastProm: 0
|
|
-
|
|
replace: nextRid
|
|
nextRid: 1000
|
|
-
|
|
replace: pwdProperties
|
|
pwdProperties: 1
|
|
-
|
|
replace: pwdHistoryLength
|
|
pwdHistoryLength: 24
|
|
-
|
|
replace: objectSid
|
|
objectSid: ${DOMAINSID}
|
|
-
|
|
replace: oEMInformation
|
|
oEMInformation: Provisioned by Samba4: ${LDAPTIME}
|
|
-
|
|
replace: serverState
|
|
serverState: 1
|
|
-
|
|
replace: nTMixedDomain
|
|
nTMixedDomain: 1
|
|
-
|
|
replace: msDS-Behavior-Version
|
|
msDS-Behavior-Version: 0
|
|
-
|
|
replace: ridManagerReference
|
|
ridManagerReference: CN=RID Manager$,CN=System,${DOMAINDN}
|
|
-
|
|
replace: uASCompat
|
|
uASCompat: 1
|
|
-
|
|
replace: modifiedCount
|
|
modifiedCount: 1
|
|
-
|
|
replace: objectCategory
|
|
objectCategory: CN=Domain-DNS,${SCHEMADN}
|
|
-
|
|
replace: fSMORoleOwner
|
|
fSMORoleOwner: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,${CONFIGDN}
|
|
-
|
|
replace: isCriticalSystemObject
|
|
isCriticalSystemObject: TRUE
|
|
-
|
|
replace: subRefs
|
|
subRefs: ${CONFIGDN}
|
|
subRefs: ${SCHEMADN}
|
|
-
|
|
replace: masteredBy
|
|
masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,${CONFIGDN}
|
|
-
|
|
replace: msDs-masteredBy
|
|
msDs-masteredBy: CN=NTDS Settings,CN=${NETBIOSNAME},CN=Servers,CN=${DEFAULTSITE},CN=Sites,${CONFIGDN}
|
|
-
|
|
replace: gPLink
|
|
gPLink: [LDAP://CN={${POLICYGUID}},CN=Policies,CN=System,${DOMAINDN};2]
|
|
-
|
|
${DOMAINGUID_MOD}
|