1 # Accounts for selfjoin (joins DC to itself)
3 # Object under "Domain Controllers"
4 dn: CN=$
{NETBIOSNAME
},OU=Domain Controllers
,$
{DOMAINDN
}
7 objectClass: organizationalPerson
10 accountExpires
: 9223372036854775807
11 dNSHostName
: $
{DNSNAME
}
12 # "frsComputerReferenceBL" doesn't exist since we still miss FRS support
13 isCriticalSystemObject
: TRUE
15 operatingSystem
: Samba
16 operatingSystemVersion
: $
{SAMBA_VERSION_STRING
}
18 # "rIDSetReferences" doesn't exist since we still miss distributed RIDs
19 sAMAccountName
: $
{NETBIOSNAME
}$
20 # "servicePrincipalName" for FRS doesn't exit since we still miss FRS support
21 # "servicePrincipalName"s for DNS ("ldap/../ForestDnsZones",
22 # "ldap/../DomainDnsZones", "DNS/..") don't exist since we don't support AD DNS
23 servicePrincipalName
: GC
/$
{DNSNAME
}/$
{REALM
}
24 servicePrincipalName
: HOST
/$
{DNSNAME
}/$
{DOMAIN
}
25 servicePrincipalName
: HOST
/$
{NETBIOSNAME
}
26 servicePrincipalName
: HOST
/$
{DNSNAME
}
27 servicePrincipalName
: HOST
/$
{DNSNAME
}/$
{REALM
}
28 # "servicePrincipalName"s with GUIDs are located in
29 # "provision_self_join_modify.ldif"
30 servicePrincipalName
: ldap
/$
{DNSNAME
}/$
{DOMAIN
}
31 servicePrincipalName
: ldap
/$
{NETBIOSNAME
}
32 servicePrincipalName
: ldap
/$
{DNSNAME
}
33 servicePrincipalName
: ldap
/$
{DNSNAME
}/$
{REALM
}
34 userAccountControl
: 532480
35 userPassword:: $
{MACHINEPASS_B64
}
37 # Here are missing the objects for the NTFRS subscription and the RID set since
38 # we don't support those techniques (FRS, distributed RIDs) yet.
40 # Objects under "Configuration/Sites/<Default sitename>/Servers"
45 systemFlags
: 1375731712
46 dNSHostName
: $
{DNSNAME
}
47 serverReference
: CN=$
{NETBIOSNAME
},OU=Domain Controllers
,$
{DOMAINDN
}
49 dn: CN=NTDS Settings
,$
{SERVERDN
}
51 objectClass: applicationSettings
53 dMDLocation
: $
{SCHEMADN
}
54 hasMasterNCs
: $
{CONFIGDN
}
55 hasMasterNCs
: $
{SCHEMADN
}
56 hasMasterNCs
: $
{DOMAINDN
}
57 invocationId
: $
{INVOCATIONID
}
58 msDS
-Behavior
-Version
: $
{DOMAIN_CONTROLLER_FUNCTIONALITY
}
59 msDS
-HasDomainNCs
: $
{DOMAINDN
}
60 # "msDS-HasInstantiatedNCs"s for DNS don't exist since we don't support AD DNS
61 msDS
-HasInstantiatedNCs
: B
:8:0000000D
:$
{CONFIGDN
}
62 msDS
-HasInstantiatedNCs
: B
:8:0000000D
:$
{SCHEMADN
}
63 msDS
-HasInstantiatedNCs
: B
:8:00000005:$
{DOMAINDN
}
64 # "msDS-hasMasterNCs"s for DNS don't exist since we don't support AD DNS
65 msDS
-hasMasterNCs
: $
{CONFIGDN
}
66 msDS
-hasMasterNCs
: $
{SCHEMADN
}
67 msDS
-hasMasterNCs
: $
{DOMAINDN
}
72 # Provides an account for DNS keytab export
73 dn: CN=dns
,CN=Users
,$
{DOMAINDN
}
76 objectClass: organizationalPerson
78 description: DNS Service Account
79 userAccountControl
: 514
80 accountExpires
: 9223372036854775807
82 servicePrincipalName
: DNS
/$
{DNSDOMAIN
}
83 userPassword:: $
{DNSPASS_B64
}
84 isCriticalSystemObject
: TRUE