provision: add get_dns_{forest,domain}_microsoft_dns_descriptor()

author Stefan Metzmacher <metze@samba.org>

Wed, 23 Jan 2013 14:55:31 +0000 (15:55 +0100)

committer Andrew Bartlett <abartlet@samba.org>

Sun, 27 Jan 2013 09:14:21 +0000 (20:14 +1100)
author Stefan Metzmacher <metze@samba.org>
Wed, 23 Jan 2013 14:55:31 +0000 (15:55 +0100)
committer Andrew Bartlett <abartlet@samba.org>
Sun, 27 Jan 2013 09:14:21 +0000 (20:14 +1100)
diff --git a/source4/scripting/python/samba/provision/__init__.py b/source4/scripting/python/samba/provision/__init__.py

index 221b580c46e575b61e05dc091bbdfc09a1e25d79..390a092989602e41bf3aecbb7db6a06c3158ae98 100644 (file)
--- a/source4/scripting/python/samba/provision/__init__.py
+++ b/source4/scripting/python/samba/provision/__init__.py
@@ -94,6 +94,8 @@ from samba.provision.descriptor import (
      get_domain_delete_protected1_descriptor,
      get_domain_delete_protected2_descriptor,
      get_dns_partition_descriptor,
+    get_dns_forest_microsoft_dns_descriptor,
+    get_dns_domain_microsoft_dns_descriptor,
      )
  from samba.provision.common import (
      setup_path,
diff --git a/source4/scripting/python/samba/provision/descriptor.py b/source4/scripting/python/samba/provision/descriptor.py

index dfb2a721e631450fcad3e792894d2f4de55ce09d..32e91ed2b5726f49f509b162e4ec4cb9dc7e56fb 100644 (file)
--- a/source4/scripting/python/samba/provision/descriptor.py
+++ b/source4/scripting/python/samba/provision/descriptor.py
@@ -343,3 +343,17 @@ def get_dns_partition_descriptor(domain_sid, name_map={}):
      "(OU;CISA;WP;f30e3bbf-9ff0-11d1-b603-0000f80367c1;bf967aa5-0de6-11d0-a285-00aa003049e2;WD)" \
      "(AU;SA;CR;;;DU)(AU;SA;CR;;;BA)(AU;SA;WPWOWD;;;WD)"
      return sddl2binary(sddl, domain_sid, name_map)
+
+def get_dns_forest_microsoft_dns_descriptor(domain_sid, name_map={}):
+    sddl = "O:SYG:SYD:AI" \
+    "(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)" \
+    "(A;CI;RPWPCRCCDCLCRCWOWDSDDTSW;;;ED)"
+    return sddl2binary(sddl, domain_sid, name_map)
+
+def get_dns_domain_microsoft_dns_descriptor(domain_sid, name_map={}):
+    sddl = "O:SYG:SYD:AI" \
+    "(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;DA)" \
+    "(A;CI;RPWPCRCCDCLCRCWOWDSDDTSW;;;DnsAdmins)" \
+    "(A;;RPWPCRCCDCLCLORCWOWDSDDTSW;;;SY)" \
+    "(A;CI;RPWPCRCCDCLCRCWOWDSDDTSW;;;ED)"
+    return sddl2binary(sddl, domain_sid, name_map)
author	Stefan Metzmacher <metze@samba.org>
	Wed, 23 Jan 2013 14:55:31 +0000 (15:55 +0100)
committer	Andrew Bartlett <abartlet@samba.org>
	Sun, 27 Jan 2013 09:14:21 +0000 (20:14 +1100)
source4/scripting/python/samba/provision/__init__.py		patch \| blob \| history
source4/scripting/python/samba/provision/descriptor.py		patch \| blob \| history