diff options
Diffstat (limited to 'source4/setup/provision_basedn_modify.ldif')
| -rw-r--r-- | source4/setup/provision_basedn_modify.ldif | 94 |
1 files changed, 94 insertions, 0 deletions
diff --git a/source4/setup/provision_basedn_modify.ldif b/source4/setup/provision_basedn_modify.ldif new file mode 100644 index 0000000..7d852ba --- /dev/null +++ b/source4/setup/provision_basedn_modify.ldif @@ -0,0 +1,94 @@ +############################### +# Domain Naming Context +############################### +dn: ${DOMAINDN} +changetype: modify +- +# This should be 0x0001, but the 0 byte is not allowed - therefore encoded +replace: auditingPolicy +auditingPolicy:: AAE= +- +replace: creationTime +creationTime: ${CREATTIME} +- +# "dSCorePropagationDate" should contain the provision data +replace: forceLogoff +forceLogoff: -9223372036854775808 +- +# "fSMORoleOwner" filled in later +replace: gPLink +gPLink: [LDAP://CN={${POLICYGUID}},CN=Policies,CN=System,${DOMAINDN};0] +- +replace: isCriticalSystemObject +isCriticalSystemObject: TRUE +- +replace: lockoutDuration +lockoutDuration: -18000000000 +- +replace: lockOutObservationWindow +lockOutObservationWindow: -18000000000 +- +replace: lockoutThreshold +lockoutThreshold: 0 +- +# "masteredBy" filled in later +replace: maxPwdAge +maxPwdAge: -36288000000000 +- +replace: minPwdAge +minPwdAge: -864000000000 +- +replace: minPwdLength +minPwdLength: ${MIN_PWD_LENGTH} +- +replace: modifiedCount +modifiedCount: 1 +- +replace: modifiedCountAtLastProm +modifiedCountAtLastProm: 0 +- +replace: msDS-AllUsersTrustQuota +msDS-AllUsersTrustQuota: 1000 +- +replace: msDS-Behavior-Version +msDS-Behavior-Version: ${DOMAIN_FUNCTIONALITY} +- +replace: ms-DS-MachineAccountQuota +ms-DS-MachineAccountQuota: 10 +- +# "msDs-masteredBy" filled in later +replace: msDS-NcType +msDS-NcType: 0 +- +replace: msDS-PerUserTrustQuota +msDS-PerUserTrustQuota: 1 +- +replace: msDS-PerUserTrustTombstonesQuota +msDS-PerUserTrustTombstonesQuota: 10 +- +replace: nextRid +nextRid: ${NEXTRID} +- +replace: nTMixedDomain +nTMixedDomain: 0 +- +# This does only exist in SAMBA +replace: oEMInformation +oEMInformation: Provisioned by SAMBA ${SAMBA_VERSION_STRING} +- +replace: pwdProperties +pwdProperties: 1 +- +replace: pwdHistoryLength +pwdHistoryLength: 24 +- +replace: serverState +serverState: 1 +- +replace: systemFlags +systemFlags: -1946157056 +- +replace: uASCompat +uASCompat: 1 +- + |