kcmldapcontroller/confskel/openldap/skel.ldif

dn: @@@REALM_DCNAME@@@
o: @@@REALM_SIMPLE_CP_NAME@@@
dc: @@@REALM_SIMPLE_LC_NAME@@@
emsdescription: Ems OLC Databse
emstype: DirectoryContainer
cn: @@@REALM_SIMPLE_CP_NAME@@@
emsmodelclass: EMSObject
objectClass: dcObject
objectClass: organization
objectClass: emsObject
emspermission: subtree:grant:all:all
emspermission: subtree:deny:CORE_USER_CANCHANGEPW:all
emspermission: subtree:grant:CORE_USER_CANCHANGEPW:user;uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@
OpenLDAPaci: 1#subtree#grant;r,s,c;[all]#public#
OpenLDAPaci: 2#entry#grant;r,w,s,c;[all]#access-id#uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@
OpenLDAPaci: 3#subtree#grant;r,w,s,c;[all]#access-id#uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@
structuralObjectClass: organization
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z
contextCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000

dn: ou=realm,@@@REALM_DCNAME@@@
emscontainertype: EmsControl
emsdescription: EMS Control
objectClass: organizationalUnit
objectClass: emsOrganizationalUnit
ou: Realm
cn: Realm
emstype: RealmContainer
emsmodelclass: EMSOrganizationalUnit
structuralObjectClass: organizationalUnit
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: ou=core,ou=realm,@@@REALM_DCNAME@@@
cn: Core Control
emsdescription: Core Control OU
objectClass: organizationalUnit
objectClass: emsOrganizationalUnit
ou: Core Control
emscontainertype: CoreContainer
emstype: ControlContainer
emsmodelclass: EMSOrganizationalUnit
structuralObjectClass: organizationalUnit
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@
emscontainertype: ServiceContainer
emsdescription: Service OU
emsmodelclass: EMSOrganizationalUnit
emstype: ServiceContainer
objectClass: organizationalUnit
objectClass: emsOrganizationalUnit
ou: Master Services
cn: Master Services
structuralObjectClass: organizationalUnit
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: cn=kerberos control,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@
objectClass: namedObject
objectClass: emskerberosservice
objectClass: krb5Realm
cn: Kerberos Control
emsdescription: Kerberos Service
emsmodelclass: KerberosService
emstype: ServiceEntry
emsmodulename: kerberos
emskrbserver: @@@KDCSERVER@@@
krb5RealmName: @@@REALM_UCNAME@@@
structuralObjectClass: namedObject
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: cn=tde realm data,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@
objectClass: namedObject
cn: TDE Realm Data
structuralObjectClass: namedObject
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: o=kerberos,cn=kerberos control,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@
cn: kerberos
emsdescription: Kerberos Registry
emsmodelclass: EMSSecurityObject
emstype: ServicePlugin
o: kerberos
objectClass: organization
objectClass: emsSecurityObject
objectClass: emsIgnore
structuralObjectClass: organization
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: o=tde,cn=tde realm data,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@
cn: tde
emsdescription: TDE Realm Data
emsmodelclass: EMSSecurityObject
emstype: ServicePlugin
o: tde
objectClass: organization
objectClass: emsSecurityObject
objectClass: emsIgnore
structuralObjectClass: organization
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@
emscontainertype: EGroupContainer
emsdescription: EMS Group Container
emstype: GroupContainer
objectClass: organizationalUnit
objectClass: emsOrganizationalUnit
ou: groups
cn: groups
emsmodelclass: EMSOrganizationalUnit
structuralObjectClass: organizationalUnit
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: cn=@@@ADMINGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@
cn: @@@ADMINGROUP@@@
description: Realm Administrators
emsdescription: Group
emsplugins: PosixGroup
emsplugins: KerberosGroup
emstype: GroupEntry
gidNumber: 900
objectClass: groupOfNames
objectClass: emsGroup
objectClass: posixGroup
objectClass: tdeAccountObject
emsmodules: kerberos
emsmodules: posix
member: cn=placeholder,@@@REALM_DCNAME@@@
member: uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@
memberUid: @@@ADMINUSER@@@
tdeBuiltinAccount: TRUE
emsmodelclass: EMSGroup
structuralObjectClass: groupOfNames
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: cn=@@@LOCALADMINGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@
cn: @@@LOCALADMINGROUP@@@
description: Machine Administrators
emsdescription: Group
emsplugins: PosixGroup
emsplugins: KerberosGroup
emstype: GroupEntry
gidNumber: 901
objectClass: groupOfNames
objectClass: emsGroup
objectClass: posixGroup
objectClass: tdeAccountObject
emsmodules: kerberos
emsmodules: posix
member: cn=placeholder,@@@REALM_DCNAME@@@
member: uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@
memberUid: @@@ADMINUSER@@@
tdeBuiltinAccount: TRUE
emsmodelclass: EMSGroup
structuralObjectClass: groupOfNames
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: cn=@@@STANDARDUSERGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@
cn: @@@STANDARDUSERGROUP@@@
description: Standard Users
emsdescription: Group
emsplugins: PosixGroup
emsplugins: KerberosGroup
emstype: GroupEntry
gidNumber: 902
objectClass: groupOfNames
objectClass: emsGroup
objectClass: posixGroup
objectClass: tdeAccountObject
emsmodules: kerberos
emsmodules: posix
member: cn=placeholder,@@@REALM_DCNAME@@@
member: uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@
memberUid: @@@ADMINUSER@@@
tdeBuiltinAccount: TRUE
emsmodelclass: EMSGroup
structuralObjectClass: groupOfNames
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@
emscontainertype: EUserContainer
emsdescription: EMS User Container
emstype: UserContainer
objectClass: organizationalUnit
objectClass: emsOrganizationalUnit
ou: users
cn: users
emsmodelclass: EMSOrganizationalUnit
structuralObjectClass: organizationalUnit
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@
cn: Realm Administrator
emsdescription: Admin User Entry
emsprimarygroupdn: cn=@@@ADMINUSER@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@
emstype: UserEntry
gidNumber: 900
givenName: Realm
homeDirectory: /home/@@@ADMINUSER@@@
krb5KDCFlags: 586
krb5PrincipalName: @@@ADMINUSER@@@@@@@REALM_UCNAME@@@
krb5RealmName: @@@REALM_UCNAME@@@
objectClass: inetOrgPerson
objectClass: krb5Realm
objectClass: krb5Principal
objectClass: krb5KDCEntry
objectClass: emsUser
objectClass: posixAccount
objectClass: tdeExtendedUserData
objectClass: tdeAccountObject
ou: Administrative
sn: Administrator
title: Administrator
uid: @@@ADMINUSER@@@
uidNumber: 999
userPassword: {SASL}@@@ADMINUSER@@@@@@@REALM_UCNAME@@@
tdeBuiltinAccount: TRUE
emsmodules: kerberos
emsmodules: posix
emsmodelclass: EMSUser
emsplugins: KerberosUser
emsplugins: PosixUser
structuralObjectClass: inetOrgPerson
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
krb5KeyVersionNumber: 1
krb5EncryptionType: 23
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: cn=certificate store,o=tde,cn=tde realm data,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@
cn: certificate store
description: TDE Certificate Store
objectClass: tdeCertificateStore
objectClass: applicationProcess
tdeBuiltinAccount: TRUE
structuralObjectClass: applicationProcess
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z

dn: cn=builtin mappings,o=tde,cn=tde realm data,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@
cn: builtin mappings
description: TDE Builtin Mappings
objectClass: tdeBuiltinStore
objectClass: applicationProcess
tdeBuiltinAccount: TRUE
structuralObjectClass: applicationProcess
builtinRealmAdminAccount: uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@
builtinRealmAdminGroup: cn=@@@ADMINGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@
builtinMachineAdminGroup: cn=@@@LOCALADMINGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@
builtinStandardUserGroup: cn=@@@STANDARDUSERGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@
creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
createTimestamp: @@@TIMESTAMP@@@Z
entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000
modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@
modifyTimestamp: @@@TIMESTAMP@@@Z
Add skeleton ldif file for loading 13 years ago			`dn: @@@REALM_DCNAME@@@`
			`o: @@@REALM_SIMPLE_CP_NAME@@@`
			`dc: @@@REALM_SIMPLE_LC_NAME@@@`
			`emsdescription: Ems OLC Databse`
			`emstype: DirectoryContainer`
			`cn: @@@REALM_SIMPLE_CP_NAME@@@`
			`emsmodelclass: EMSObject`
			`objectClass: dcObject`
			`objectClass: organization`
			`objectClass: emsObject`
			`emspermission: subtree:grant:all:all`
			`emspermission: subtree:deny:CORE_USER_CANCHANGEPW:all`
			`emspermission: subtree:grant:CORE_USER_CANCHANGEPW:user;uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`OpenLDAPaci: 1#subtree#grant;r,s,c;[all]#public#`
			`OpenLDAPaci: 2#entry#grant;r,w,s,c;[all]#access-id#uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`OpenLDAPaci: 3#subtree#grant;r,w,s,c;[all]#access-id#uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`structuralObjectClass: organization`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add skeleton ldif file for loading 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`contextCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add skeleton ldif file for loading 13 years ago
			`dn: ou=realm,@@@REALM_DCNAME@@@`
			`emscontainertype: EmsControl`
			`emsdescription: EMS Control`
			`objectClass: organizationalUnit`
			`objectClass: emsOrganizationalUnit`
			`ou: Realm`
			`cn: Realm`
			`emstype: RealmContainer`
			`emsmodelclass: EMSOrganizationalUnit`
			`structuralObjectClass: organizationalUnit`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add skeleton ldif file for loading 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

			`dn: ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`cn: Core Control`
			`emsdescription: Core Control OU`
			`objectClass: organizationalUnit`
			`objectClass: emsOrganizationalUnit`
			`ou: Core Control`
			`emscontainertype: CoreContainer`
			`emstype: ControlContainer`
			`emsmodelclass: EMSOrganizationalUnit`
			`structuralObjectClass: organizationalUnit`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add skeleton ldif file for loading 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

LDAP and Kerberos now partially work together 13 years ago			`dn: ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`emscontainertype: ServiceContainer`
			`emsdescription: Service OU`
			`emsmodelclass: EMSOrganizationalUnit`
			`emstype: ServiceContainer`
			`objectClass: organizationalUnit`
			`objectClass: emsOrganizationalUnit`
			`ou: Master Services`
			`cn: Master Services`
			`structuralObjectClass: organizationalUnit`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
LDAP and Kerberos now partially work together 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

			`dn: cn=kerberos control,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`objectClass: namedObject`
			`objectClass: emskerberosservice`
			`objectClass: krb5Realm`
			`cn: Kerberos Control`
			`emsdescription: Kerberos Service`
			`emsmodelclass: KerberosService`
			`emstype: ServiceEntry`
			`emsmodulename: kerberos`
			`emskrbserver: @@@KDCSERVER@@@`
			`krb5RealmName: @@@REALM_UCNAME@@@`
			`structuralObjectClass: namedObject`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
LDAP and Kerberos now partially work together 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

Add ssl generation and storage 13 years ago			`dn: cn=tde realm data,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`objectClass: namedObject`
			`cn: TDE Realm Data`
			`structuralObjectClass: namedObject`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add ssl generation and storage 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

LDAP and Kerberos now partially work together 13 years ago			`dn: o=kerberos,cn=kerberos control,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`cn: kerberos`
			`emsdescription: Kerberos Registry`
			`emsmodelclass: EMSSecurityObject`
			`emstype: ServicePlugin`
			`o: kerberos`
			`objectClass: organization`
			`objectClass: emsSecurityObject`
			`objectClass: emsIgnore`
			`structuralObjectClass: organization`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
LDAP and Kerberos now partially work together 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

Add ssl generation and storage 13 years ago			`dn: o=tde,cn=tde realm data,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`cn: tde`
			`emsdescription: TDE Realm Data`
			`emsmodelclass: EMSSecurityObject`
			`emstype: ServicePlugin`
			`o: tde`
			`objectClass: organization`
			`objectClass: emsSecurityObject`
			`objectClass: emsIgnore`
			`structuralObjectClass: organization`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add ssl generation and storage 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

Add skeleton ldif file for loading 13 years ago			`dn: ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`emscontainertype: EGroupContainer`
			`emsdescription: EMS Group Container`
			`emstype: GroupContainer`
			`objectClass: organizationalUnit`
			`objectClass: emsOrganizationalUnit`
			`ou: groups`
			`cn: groups`
			`emsmodelclass: EMSOrganizationalUnit`
			`structuralObjectClass: organizationalUnit`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add skeleton ldif file for loading 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

			`dn: cn=@@@ADMINGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`cn: @@@ADMINGROUP@@@`
Realm is now almost fully online 13 years ago			`description: Realm Administrators`
Add skeleton ldif file for loading 13 years ago			`emsdescription: Group`
			`emsplugins: PosixGroup`
			`emsplugins: KerberosGroup`
			`emstype: GroupEntry`
Realm is now almost fully online 13 years ago			`gidNumber: 900`
			`objectClass: groupOfNames`
			`objectClass: emsGroup`
			`objectClass: posixGroup`
			`objectClass: tdeAccountObject`
			`emsmodules: kerberos`
			`emsmodules: posix`
			`member: cn=placeholder,@@@REALM_DCNAME@@@`
			`member: uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`memberUid: @@@ADMINUSER@@@`
			`tdeBuiltinAccount: TRUE`
			`emsmodelclass: EMSGroup`
			`structuralObjectClass: groupOfNames`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Realm is now almost fully online 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

			`dn: cn=@@@LOCALADMINGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`cn: @@@LOCALADMINGROUP@@@`
			`description: Machine Administrators`
			`emsdescription: Group`
			`emsplugins: PosixGroup`
			`emsplugins: KerberosGroup`
			`emstype: GroupEntry`
			`gidNumber: 901`
LDAP and Kerberos now partially work together 13 years ago			`objectClass: groupOfNames`
Add skeleton ldif file for loading 13 years ago			`objectClass: emsGroup`
			`objectClass: posixGroup`
Fix admin user login 13 years ago			`objectClass: tdeAccountObject`
Add skeleton ldif file for loading 13 years ago			`emsmodules: kerberos`
			`emsmodules: posix`
LDAP and Kerberos now partially work together 13 years ago			`member: cn=placeholder,@@@REALM_DCNAME@@@`
			`member: uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@`
OpenLDAP now initializes, but login is not possible and kadmin does not work yet 13 years ago			`memberUid: @@@ADMINUSER@@@`
Fix admin user login 13 years ago			`tdeBuiltinAccount: TRUE`
Add skeleton ldif file for loading 13 years ago			`emsmodelclass: EMSGroup`
LDAP and Kerberos now partially work together 13 years ago			`structuralObjectClass: groupOfNames`
Add skeleton ldif file for loading 13 years ago			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add skeleton ldif file for loading 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

Add standard user group, certificates, etc 13 years ago			`dn: cn=@@@STANDARDUSERGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`cn: @@@STANDARDUSERGROUP@@@`
			`description: Standard Users`
			`emsdescription: Group`
			`emsplugins: PosixGroup`
			`emsplugins: KerberosGroup`
			`emstype: GroupEntry`
Move primary realm wizard sources to separate directory Add cert-updater 13 years ago			`gidNumber: 902`
Add standard user group, certificates, etc 13 years ago			`objectClass: groupOfNames`
			`objectClass: emsGroup`
			`objectClass: posixGroup`
			`objectClass: tdeAccountObject`
			`emsmodules: kerberos`
			`emsmodules: posix`
			`member: cn=placeholder,@@@REALM_DCNAME@@@`
			`member: uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`memberUid: @@@ADMINUSER@@@`
			`tdeBuiltinAccount: TRUE`
			`emsmodelclass: EMSGroup`
			`structuralObjectClass: groupOfNames`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add standard user group, certificates, etc 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

Add skeleton ldif file for loading 13 years ago			`dn: ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`emscontainertype: EUserContainer`
			`emsdescription: EMS User Container`
			`emstype: UserContainer`
			`objectClass: organizationalUnit`
			`objectClass: emsOrganizationalUnit`
			`ou: users`
			`cn: users`
			`emsmodelclass: EMSOrganizationalUnit`
			`structuralObjectClass: organizationalUnit`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add skeleton ldif file for loading 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`

			`dn: uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`cn: Realm Administrator`
			`emsdescription: Admin User Entry`
			`emsprimarygroupdn: cn=@@@ADMINUSER@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`emstype: UserEntry`
Realm is now almost fully online 13 years ago			`gidNumber: 900`
Add skeleton ldif file for loading 13 years ago			`givenName: Realm`
			`homeDirectory: /home/@@@ADMINUSER@@@`
			`krb5KDCFlags: 586`
			`krb5PrincipalName: @@@ADMINUSER@@@@@@@REALM_UCNAME@@@`
			`krb5RealmName: @@@REALM_UCNAME@@@`
			`objectClass: inetOrgPerson`
			`objectClass: krb5Realm`
			`objectClass: krb5Principal`
			`objectClass: krb5KDCEntry`
			`objectClass: emsUser`
			`objectClass: posixAccount`
LDAP and Kerberos now partially work together 13 years ago			`objectClass: tdeExtendedUserData`
Fix admin user login 13 years ago			`objectClass: tdeAccountObject`
Add skeleton ldif file for loading 13 years ago			`ou: Administrative`
			`sn: Administrator`
			`title: Administrator`
			`uid: @@@ADMINUSER@@@`
			`uidNumber: 999`
New realm now functions almost fully 13 years ago			`userPassword: {SASL}@@@ADMINUSER@@@@@@@REALM_UCNAME@@@`
Fix admin user login 13 years ago			`tdeBuiltinAccount: TRUE`
Add skeleton ldif file for loading 13 years ago			`emsmodules: kerberos`
			`emsmodules: posix`
			`emsmodelclass: EMSUser`
			`emsplugins: KerberosUser`
			`emsplugins: PosixUser`
			`structuralObjectClass: inetOrgPerson`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
			`krb5KeyVersionNumber: 1`
			`krb5EncryptionType: 23`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add skeleton ldif file for loading 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`modifyTimestamp: @@@TIMESTAMP@@@Z`
Add ssl generation and storage 13 years ago
			`dn: cn=certificate store,o=tde,cn=tde realm data,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`cn: certificate store`
			`description: TDE Certificate Store`
			`objectClass: tdeCertificateStore`
			`objectClass: applicationProcess`
			`tdeBuiltinAccount: TRUE`
			`structuralObjectClass: applicationProcess`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add ssl generation and storage 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
Add standard user group, certificates, etc 13 years ago			`modifyTimestamp: @@@TIMESTAMP@@@Z`

			`dn: cn=builtin mappings,o=tde,cn=tde realm data,ou=master services,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`cn: builtin mappings`
			`description: TDE Builtin Mappings`
			`objectClass: tdeBuiltinStore`
			`objectClass: applicationProcess`
			`tdeBuiltinAccount: TRUE`
			`structuralObjectClass: applicationProcess`
Provide a range of user and certificate management options 13 years ago			`builtinRealmAdminAccount: uid=@@@ADMINUSER@@@,ou=users,ou=core,ou=realm,@@@REALM_DCNAME@@@`
Add standard user group, certificates, etc 13 years ago			`builtinRealmAdminGroup: cn=@@@ADMINGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`builtinMachineAdminGroup: cn=@@@LOCALADMINGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`builtinStandardUserGroup: cn=@@@STANDARDUSERGROUP@@@,ou=groups,ou=core,ou=realm,@@@REALM_DCNAME@@@`
			`creatorsName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
			`createTimestamp: @@@TIMESTAMP@@@Z`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`entryCSN: @@@TIMESTAMP@@@.@@@TIMESTAMP_MICROSECONDS@@@Z#000000#000#000000`
Add standard user group, certificates, etc 13 years ago			`modifiersName: cn=@@@ROOTUSER@@@,@@@REALM_DCNAME@@@`
Index entryCSN Use more precise entryCSN timestamps 11 years ago			`modifyTimestamp: @@@TIMESTAMP@@@Z`