s4:provision_*_references.ldif - "add" and do not "replace" the "wellKnownObjects"

This is the correct AD operation in this case. Multi-valued replaces are
generally denied most of the time.

diff --git a/source4/setup/provision_basedn_references.ldif b/source4/setup/provision_basedn_references.ldif
index a71c11c5c4ef1bbb380e277574dc14907f7c17bb..188982aee19ca9c5e253bbb4243cba8258871c82 100644 (file)
--- a/source4/setup/provision_basedn_references.ldif
+++ b/source4/setup/provision_basedn_references.ldif
@@ -7,7 +7,7 @@ changetype: modify
 replace: rIDManagerReference
 rIDManagerReference: CN=RID Manager$,CN=System,${DOMAINDN}
 -
-replace: wellKnownObjects
+add: wellKnownObjects
 wellKnownObjects: B:32:6227f0af1fc2410d8e3bb10615bb5b0f:CN=NTDS Quotas,${DOMAINDN}
 wellKnownObjects: B:32:f4be92a4c777485e878e9421d53087db:CN=Microsoft,CN=Program Data,${DOMAINDN}
 wellKnownObjects: B:32:09460c08ae1e4a4ea0f64aee7daa1e5a:CN=Program Data,${DOMAINDN}

diff --git a/source4/setup/provision_configuration_references.ldif b/source4/setup/provision_configuration_references.ldif
index 6e31fb79fe6605c493a68a3a1b0015be546e505a..febe4360c9cb85fc7d6696b7d86aa38a33dcc754 100644 (file)
--- a/source4/setup/provision_configuration_references.ldif
+++ b/source4/setup/provision_configuration_references.ldif
@@ -8,7 +8,7 @@ changetype: modify
 replace: subRefs
 subRefs: ${SCHEMADN}
 -
-replace: wellKnownObjects
+add: wellKnownObjects
 wellKnownObjects: B:32:6227f0af1fc2410d8e3bb10615bb5b0f:CN=NTDS Quotas,${CONFIGDN}
 wellKnownObjects: B:32:ab8153b7768811d1aded00c04fd8d5cd:CN=LostAndFoundConfig,${CONFIGDN}
 wellKnownObjects: B:32:18e2ea80684f11d2b9aa00c04f79f805:CN=Deleted Objects,${CONFIGDN}