summaryrefslogtreecommitdiff
path: root/source4/setup/extended-rights.ldif
Commit message (Collapse)AuthorAgeFilesLines
* provision: Make clarifying header an LDIF comment in extended-rights.ldifAndrew Bartlett2017-12-141-7/+21
| | | | | Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
* provision: Align displayName of Property Sets with MS-ADTS 3.1.1.2.3.3Andrew Bartlett2017-12-141-8/+8
| | | | | | | This gives some better names than what the CN of the object was. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
* provision: Fill in a nicer displayName for Extended RightsAndrew Bartlett2017-12-141-71/+71
| | | | | | | We replace all the hyphens with a space. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
* provision: Fill in validAccesses in extended-rights.ldif for Property SetsAndrew Bartlett2017-12-141-0/+15
| | | | | | | | | | | A Property Right has the value of RIGHT_DS_READ_PROPERTY|RIGHT_DS_WRITE_PROPERTY which is 48 (0x30) per 5.1.3.2 Access Rights. The property Sets are listed in MS-ATDS 3.1.1.2.3.3 and can also be found by looking at the attributeSecurityGuid on the schema objects. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
* provision: Fill in validAccesses in extended-rights.ldif for Validated WritesAndrew Bartlett2017-12-141-0/+3
| | | | | | | | MS-ATDS 5.1.3.2.2 Validated Writes specifies the value of RIGHT_DS_WRITE_PROPERTY_EXTENDED which is 8 (0x08) per 5.1.3.2 Access Rights. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
* provision: Fill in validAccesses in extended-rights.ldif for Control Access ↵Andrew Bartlett2017-12-141-0/+54
| | | | | | | | | | Rights MS-ATDS 5.1.3.2.1 Control Access Rights specifies the value of RIGHT_DS_CONTROL_ACCESS which is 256 (0x100) per 5.1.3.2 Access Rights. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
* provision: Align extended-rights.ldif with the adprep LDIF for 2012R2Andrew Bartlett2017-12-141-75/+100
| | | | | | | | This removes the additional rights for 2016 and flags the 2012R2 changes to allow the same file to be used to produce a 2008R2 or 2012R2 domain Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
* provision: Reformat appliesTo in Extended Rights into LDIFAndrew Bartlett2017-12-141-134/+102
| | | | | | | | | We remove comments about Schema 45 and earlier as this is the base level that Samba supports. A future commit will move to a machine-parsable flag for the 2012 schema and remove the 2016 elements. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
* provision: Remove section numbers from extended rights, replace with dnAndrew Bartlett2017-12-141-246/+407
| | | | | | | | This makes this file more like LDIF so we can process it automatically as well as use it as a text document. Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
* provision: Import extended rights schema from MS-ADTS v47.0Andrew Bartlett2017-12-141-0/+595
Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Garming Sam <garming@catalyst.net.nz>
View Lorry Controller Status