source/setup/secrets.ldif

   1 dn: @INDEXLIST
   2 @IDXATTR: cn
   3 @IDXATTR: flatname
   4 @IDXATTR: realm
   5
   6 dn: @ATTRIBUTES
   7 realm: CASE_INSENSITIVE
   8 flatname: CASE_INSENSITIVE
   9 sAMAccountName: CASE_INSENSITIVE
  10
  11 #Add modules to the list to activate them by default
  12 #beware often order is important
  13 dn: @MODULES
  14 @LIST: operational
  15
  16 dn: CN=LSA Secrets
  17 objectClass: top
  18 objectClass: container
  19 cn: LSA Secrets
  20
  21 dn: CN=Primary Domains
  22 objectClass: top
  23 objectClass: container
  24 cn: Primary Domains
  25
  26 dn: flatname=${DOMAIN},CN=Primary Domains
  27 objectClass: top
  28 objectClass: primaryDomain
  29 objectClass: kerberosSecret
  30 flatname: ${DOMAIN}
  31 realm: ${REALM}
  32 secret: ${MACHINEPASS}
  33 secureChannelType: 6
  34 sAMAccountName: ${NETBIOSNAME}$
  35 whenCreated: ${LDAPTIME}
  36 whenChanged: ${LDAPTIME}
  37 msDS-KeyVersionNumber: 1
  38 objectSid: ${DOMAINSID}
  39 privateKeytab: secrets.keytab
  40
  41 dn: samAccountName=krbtgt,flatname=${DOMAIN},CN=Principals
  42 objectClass: top
  43 objectClass: secret
  44 objectClass: kerberosSecret
  45 flatname: ${DOMAIN}
  46 realm: ${REALM}
  47 secret: ${KRBTGTPASS}
  48 sAMAccountName: krbtgt
  49 whenCreated: ${LDAPTIME}
  50 whenChanged: ${LDAPTIME}
  51 msDS-KeyVersionNumber: 1
  52 objectSid: ${DOMAINSID}
  53 servicePrincipalName: kadmin/changepw
  54 saltPrincipal: krbtgt@${REALM}
  55 privateKeytab: secrets.keytab