!h6SrSSKrSSKrSSKrSSKrSSKrSSKJr SSKrSSK r SSK J r SSK J r SSKJrJr SSK Jr SSKJrJrJr SS KJrJrJrJr SS KJrJrJrJrJ r J!r!J"r" SS K#J$r$J%r%J&r&J'r'J(r(J)r) SS K*J+r+ SS K,J-r- Sr.Sr/"SS\R`5r1"SS\R`5r2"SS\R`5r3"SS\R`5r4"SS\R`5r5"SS\R`5r6"SS\R`5r7"SS\Rp5r9"S S!\Rp5r:"S"S#\Rp5r;"S$S%\Rp5r<"S&S'\Rp5r="S(S)\Rp5r>"S*S+\Rp5r?S,r@S-rASKS.jrBS/rCS0rDS1rES2rFS3rGS4rHS5rIS6rJS7rKS8rLS9rMS:rNS;rOS<rPS=rQS>rRS?rSS@rTSArUSBrVSCrWSDrXSErYSFrZSG\(SG4SHjr[SSS\(4SIjr\SLSJjr]g)MzDNS-related provisioningN) b64encode)tdb_copy)mdb_copy)ndr_pack ndr_unpack) setup_file)dnspmiscsecurity)DS_DOMAIN_FUNCTION_2000DS_DOMAIN_FUNCTION_2003DS_DOMAIN_FUNCTION_2016DS_GUID_USERS_CONTAINER)get_deletedobjects_descriptorget_domain_descriptor'get_domain_delete_protected1_descriptor'get_domain_delete_protected2_descriptorget_dns_partition_descriptor'get_dns_forest_microsoft_dns_descriptor'get_dns_domain_microsoft_dns_descriptor) setup_pathsetup_add_ldifsetup_modify_ldif setup_ldb FILL_FULLFILL_SUBDOMAIN)get_default_backend_store) get_stringcURU[RS/S9n[[ [ R USSS55nU$)N objectGUIDbasescopeattrsr)searchldb SCOPE_BASEstrrr GUID)samdbdomaindnres domainguids :/usr/lib/python3/dist-packages/samba/provision/sambadns.pyget_domainguidr/?sE ,,HCNN<., QCZ 3q6,+?+BCDJ cSUR[R"UU5[5-nUR U[R S/S9n[ [RUSSS5nU$)NzCN=DnsAdmins,%s objectSidr!r) get_wellknown_dnr&Dnrr%r'rr dom_sid)r*r+base_dnr, dnsadmins_sids r.get_dnsadmins_sidr8Esn%"8"8,4:67N#PPG ,,G3>>+, OCx//Q 1DQ1GHM r0cF^\rSrSrSS\R 4U4SjjrSrU=r$)ARecordVc|>[TU]5 [RUlX@lX lX0lXlgN) super__init__r DNS_TYPE_AwTyperankdwSerial dwTtlSecondsdata)selfip_addrserialttlrD __class__s r.rAARecord.__init__Xs. __    r0rGrErFrDrC __name__ __module__ __qualname____firstlineno__r DNS_RANK_ZONErA__static_attributes__ __classcell__rLs@r.r:r:Vs'(c8J8Jr0r:cF^\rSrSrSS\R 4U4SjjrSrU=r$) AAAARecordar<r=c|>[TU]5 [RUlX@lX lX0lXlgr?) r@rAr DNS_TYPE_AAAArCrDrErFrG)rHip6_addrrJrKrDrLs r.rAAAAARecord.__init__cs0 ''    r0rNrOrWs@r.rYrYas()s9K9Kr0rYcF^\rSrSrSS\R 4U4SjjrSrU=r$) CNAMERecordlr<r=c|>[TU]5 [RUlX@lX lX0lXlgr?) r@rAr DNS_TYPE_CNAMErCrDrErFrG)rHcnamerJrKrDrLs r.rACNAMERecord.__init__ns0 ((    r0rNrOrWs@r.r`r`ls%&Cd6H6Hr0r`cF^\rSrSrSS\R 4U4SjjrSrU=r$)NSRecordwr<r=c|>[TU]5 [RUlX@lX lX0lXlgr?) r@rAr DNS_TYPE_NSrCrDrErFrG)rH dns_serverrJrKrDrLs r.rANSRecord.__init__ys0 %%    r0rNrOrWs@r.rgrgws*+4;M;Mr0rgcN^\rSrSrSSSSSS\R 4U4SjjrSrU=r$) SOARecordr<r=iXiQic >[T U]5 [RUlXlX0lXl[R"5n X:l XJl XZl Xjl Xl X*lXzlXlgr?)r@rAr DNS_TYPE_SOArCrDrErFsoarJrefreshretryexpiremnamernameminimumrG) rHrvrwrJrsrtrurxrKrDrrrLs r.rASOARecord.__init__s^ &&   hhj        r0rNrOrWs@r.rnrns#,-s#tD[T U]5 [RUlXplXPlX`l[R"5nXl X(l X8l XHl Xl gr?)r@rAr DNS_TYPE_SRVrCrDrErFsrv nameTargetwPort wPrioritywWeightrG) rHtargetportpriorityweightrJrKrDrrLs r.rASRVRecord.__init__sO &&   hhj    r0rNrOrWs@r.r{r{s./A3((  r0r{cF^\rSrSrSS\R 4U4SjjrSrU=r$) TXTRecordr<r=c>[TU]5 [RUlX@lX lX0l[R"5n[U5Ul Xl XPl gr?) r@rAr DNS_TYPE_TXTrCrDrErF string_listlencountr(rG)rHslistrJrKrD stringlistrLs r.rATXTRecord.__init__sO &&   %%' u:  r0rNrOrWs@r.rrs%&Cd6H6H  r0rcB^\rSrSr\R 4U4SjjrSrU=r$) TypePropertyct>[TU]5 SUlSUl[R UlXlgNr<)r@rA wDataLengthversionr DSPROPERTY_ZONE_TYPEidrG)rH zone_typerLs r.rATypeProperty.__init__s/  ++ r0rGrrr) rPrQrRrSr DNS_ZONE_TYPE_PRIMARYrArUrVrWs@r.rrs!%!;!;r0rcB^\rSrSr\R 4U4SjjrSrU=r$)AllowUpdatePropertyct>[TU]5 SUlSUl[R UlXlgr)r@rArrr DSPROPERTY_ZONE_ALLOW_UPDATErrG)rH allow_updaterLs r.rAAllowUpdateProperty.__init__s/  33 r0r) rPrQrRrSr DNS_ZONE_UPDATE_SECURErArUrVrWs@r.rrs$($?$?!!r0rc,^\rSrSrSU4SjjrSrU=r$)SecureTimePropertyct>[TU]5 SUlSUl[R UlXlgr)r@rArrr DSPROPERTY_ZONE_SECURE_TIMErrG)rH secure_timerLs r.rASecureTimeProperty.__init__s/  22 r0rrrPrQrRrSrArUrVrWs@r.rrs   r0rc,^\rSrSrSU4SjjrSrU=r$)NorefreshIntervalPropertyct>[TU]5 SUlSUl[R UlXlgr)r@rArrr "DSPROPERTY_ZONE_NOREFRESH_INTERVALrrG)rHnorefresh_intervalrLs r.rA"NorefreshIntervalProperty.__init__s/  99& r0rrrrWs@r.rrs ''r0rc,^\rSrSrSU4SjjrSrU=r$)RefreshIntervalPropertyct>[TU]5 SUlSUl[R UlXlgr)r@rArrr DSPROPERTY_ZONE_REFRESH_INTERVALrrG)rHrefresh_intervalrLs r.rA RefreshIntervalProperty.__init__s/  77$ r0rrrrWs@r.rr %%r0rc,^\rSrSrSU4SjjrSrU=r$)AgingStatePropertyct>[TU]5 SUlSUl[R UlXlgr)r@rArrr DSPROPERTY_ZONE_AGING_STATErrG)rH aging_enabledrLs r.rAAgingStateProperty.__init__s/  22! r0rrrrWs@r.rrs ""r0rc,^\rSrSrSU4SjjrSrU=r$)AgingEnabledTimePropertyct>[TU]5 SUlSUl[R UlXlgr)r@rArrr "DSPROPERTY_ZONE_AGING_ENABLED_TIMErrG)rHnext_cycle_hoursrLs r.rA!AgingEnabledTimeProperty.__init__s/  99$ r0rrrrWs@r.rrrr0rcSU-nSU-n[U5n [U5n [U[S5U[ U 5R S5S.5 U[ :wa1[U[S5U[ U 5R S5S.5 [[R"55n [R"X5R5R5n [U5n [U5n[U[S5UU U UU[ U 5R S5[ U5R S5[ U 5R S5S.5 [!U[S5UUUS .5 U[ :wa[[R"55n[R"X5R5R5n[U[S5UUUUU[ U 5R S5[ U5R S5[ U 5R S5S.5 [!U[S5UUUS .5 gg) NzDC=DomainDnsZones,%szDC=ForestDnsZones,%sz"provision_dnszones_partitions.ldifutf8)ZONE_DNSECDESCzprovision_dnszones_add.ldif)r ZONE_GUIDZONE_DNSCONFIGDNSERVERDNDELETEDOBJECTS_DESCRIPTORLOSTANDFOUND_DESCRIPTORINFRASTRUCTURE_DESCRIPTORzprovision_dnszones_modify.ldif)rrr)rrrrrdecoderr(uuiduuid4r&r4canonical_ex_strstriprrr)r* domainsidr+forestdnconfigdnserverdn fill_level domainzone_dn forestzone_dn descriptordeletedobjects_descdomainzone_guiddomainzone_dnsprotected1_descprotected2_descforestzone_guidforestzone_dnss r.setup_dns_partitionsrs*X5M*X5M-i8J7 B5*%IJ Z(//7M^#uj)MN$ ,33F;Q  $**,'OVVE1BBDJJLN=iHO=iHO5*%BC $"%./B%C%J%J6%R#,_#=#D#DV#L%.%?%F%Fv%N F eZ(HI L ^#djjl+5FFHNNPuj)FG$(&  )23F)G)N)Nv)V'0'A'H'H'P)2?)C)J)J6)R J  %,L!M  $P  $r0c4[U[S5SU05 g)Nzprovision_dns_accounts_add.ldifDOMAINDN)rr)r*r+s r.add_dns_accountsr6s5*%FGHJr0c :S[U50nUSLa [UUS9nO [UUS9n[R"[R "USU<SU<355nSS/US'[R "U[RS 5US 'URU5 g) N DnsAdminsT)name_mapzCN=MicrosoftDNS,,top container objectClassnTSecurityDescriptor) r(rrr&Messager4MessageElement FLAG_MOD_ADDadd) r*r+prefix domain_sidr7forestrsd_valmsgs r.add_dns_containerr<sS/0H ~8BJL9BJL ++cffUvx$PQ RC-C  63#3#31 3 IIcNr0c 0nSUS'SUS'SUS'SUS'S US 'S US 'S US'SUS'SUS'SUS'SUS'SUS'SUS'0nSUS'SUS'SUS'SUS'SUS 'S US 'S!US'S"US'S#US'S$US'S%US'S&US'S'US'S(U<S)U<3n[R"[R"X55n/nUR[ [ [ RS*955 UR[ [[ RS+955 UR[ [555 UR[ [555 UR[ [555 UR[ [555 UR[ [555 S,S-/US.'[R"S/[R S05US0'[R"U[R S15US1'UR#U5 /nUH5n UR[ [%U S2S2[ R&S3955 M7 [R"[R"US4U-55nS,S5/US.'[R"U[R S65US6'UR#U5 UHn [ [)X9S2S2[ R&S395/n[R"[R"US7U <S)U<355nS,S5/US.'[R"U[R S65US6'UR#U5 M g)8Nz 198.41.0.4za.root-servers.netz192.228.79.201zb.root-servers.netz 192.33.4.12zc.root-servers.netz 199.7.91.13zd.root-servers.netz192.203.230.10ze.root-servers.netz 192.5.5.241zf.root-servers.netz 192.112.36.4zg.root-servers.netz 198.97.190.53zh.root-servers.netz 192.36.148.17zi.root-servers.netz 192.58.128.30zj.root-servers.netz 193.0.14.129zk.root-servers.netz 199.7.83.42zl.root-servers.netz 202.12.27.33zm.root-servers.netz2001:503:ba3e::2:30z2001:500:84::bz 2001:500:2::cz2001:500:2d::dz2001:500:a8::ez2001:500:2f::fz2001:500:12::d0dz2001:500:1::53z 2001:7fe::53z2001:503:c27::2:30z 2001:7fd::1z2001:500:9f::42z 2001:dc3::35z"DC=RootDNSServers,CN=MicrosoftDNS,r)r)rrdnsZonerZonecn dNSPropertyr)rJrKrDzDC=@,%sdnsNode dnsRecordDC=)r&rr4appendrrr DNS_ZONE_TYPE_CACHErDNS_ZONE_UPDATE_OFFrrrrrrrrrgDNS_RANK_ROOT_HINTr:) r*r+r rootserversrootservers_v6 container_dnrpropsrecordrservers r.add_rootserversrMs]K(4K$%(8K$%(5K$%(5K$%(8K$%(5K$%(6K$%(7K$%(7K$%(7K$%(6K$%(5K$%(6K$%N+@N'(+;N'(+:N'(+;N'(+;N'(+;N'(+=N'(+;N'(+9N'(+?N'(+8N'(+C+C ))B2BKPC  IIcN7;#7qtOfOfghikk#&&g|(LMN#Y/M--fc6F6F TK #r0c:U<SU<3n/n[USU-5n UR[U 55 [U5n UR[U 55 Ub%[ U5n UR[U 55 Ub%[ U5n UR[U 55 [ R"[ R"X<SU<355n SS/U S'[ R"U[ RS5U S'URU 5 g)N.z hostmaster.%srrr rr ) rnr rrgr:rYr&rr4rrr)r*rrhostname dnsdomainhostiphostip6 fqdn_hostname at_records at_soa_record at_ns_record at_a_recordat_aaaa_recordrs r. add_at_recordr$s'3MJm_y-HIMh}-.M*Lh|,- fo (;/0#G,(>23 ++cffUv|$DE FC+C ))*c6F6F TC  IIcNr0c[X45n[R"[R"X<SU<355nSS/US'[R"[ U5[R S5US'URU5 gNrrr rr )r{r&rr4rrrr)r*rrhostr srv_recordrs r.add_srv_recordr)si4&J ++cffUv|$DE FC+C ))(:*>@P@PR]^C  IIcNr0c[U5n[R"[R"X<SU<355nSS/US'[R"[ U5[R S5US'URU5 gr&)rgr&rr4rrrrr*rrr' ns_recordrs r. add_ns_recordr-shI ++cffUv|$DE FC+C ))(9*=s?O?OQ\]C  IIcNr0c*[U[RS9n[R"[R "X<SU<355nSS/US'[R "[U5[RS5US'URU5 g)N)rDrrr rr ) rgr DNS_RANK_NS_GLUEr&rr4rrrrr+s r.add_ns_glue_recordr0sqD$9$9:I ++cffUv|$DE FC+C ))(9*=s?O?OQ\]C  IIcNr0c[U5n[R"[R"X<SU<355nSS/US'[R"[ U5[R S5US'URU5 gr&)r`r&rr4rrrr)r*rrr' cname_recordrs r.add_cname_recordr3sit$L ++cffUv|$DE FC+C ))(<*@#BRBRT_`C  IIcNr0c/nU(a%[U5nUR[U55 U(a%[U5nUR[U55 U(as[R "[R "X<SU<355nSS/US'[R"U[RS5US'URU5 ggr&) r:r rrYr&rr4rrr) r*rrrr host_recordsa_record aaaa_recordrs r.add_host_recordr8sL 6?HX./ ) H[12kk#&&6<(HIJ#Y/M--lC S[R;a'UR!S UR UR5 Nf=f![a5 S[R;aUR!S X1R5 ggf=f) z\Create link for BIND to DNS keytab :param logger: Logger object :param paths: paths object zFailed to remove z: NzFailed to create link z -> rnrorprqi)r\r^r_rf dns_keytabrgisfiler]r`r{strerrorlinkrwryrxrzinfo)r|r}private_dns_keytab_pathbind_dns_keytab_pathes r.create_dns_dir_keytab_linkrs !ggll5+<+N>NO77<<(9(95;K;KL ww~~-.. 77>>. / / A ./  V GG+ B >> % C**E2**B?  F-u5-r5>>B &!/ A 2AJJ@AA A V LL13GU V V V C#2::5KK C % 1 15>>C C F#2::5KK C 4nnF6 FsV2E7 F1-A G0;9H;7 F.#F))F.1 G-;'G((G-0AH87H8;:I:9I:c ~[U[5(deUbSU-n US-U-n SU-n OSn Sn Sn UbSU-n US-U-nSU-nOSn SnSn[[S 5URUUUU UU[ R "S 5U UU U UU S . 5 URbO[R"URS UR5 [R"URS 5 gg![aC S[R;a,URSURUR4-5 ggf=f)apWrite out a DNS zone file, from the info in the current database. :param paths: paths object :param dnsdomain: DNS Domain name :param domaindn: DN of the Domain :param hostip: Local IPv4 IP :param hostip6: Local IPv6 IP :param hostname: Local hostname :param realm: Realm name :param domainguid: GUID of the domain. :param ntdsguid: GUID of the hosts nTDSDSA record. Nz IN AAAA z IN AAAA z#gc._msdcs IN AAAA z IN A z IN A z gc._msdcs IN A zprovision.zonez%Y%m%d%H) rZrVrUHOSTIP_BASE_LINEHOSTIP_HOST_LINE DOMAINGUID DATESTRING DEFAULTSITENTDSGUIDHOSTIP6_BASE_LINEHOSTIP6_HOST_LINEGC_MSDCS_IP_LINEGC_MSDCS_IP6_LINEroirprq) isinstancer(rrrstimestrftimerwr\rxryr`rzr{)r|r}rrrrrhr-rQrMhostip6_base_linehostip6_host_linegc_msdcs_ip6_linehostip_base_linehostip_host_linegc_msdcs_ip_lines r.create_zone_filersi j# & && &5?$'<s##Kk;7Jggooeii(GWW\\';7NH ,,L ^^)>:  2156 ~~##%Hggll7X,>?O   _c"((* -o>))G$LLl#..LI  IaL!- :/ :;BB6Jw +B C)Y F! " w!"ABD J *ENN,@,@,BBL)ELL,>,>,@@L|,Oll<0O"M  Z7 ^]; =  [/: Wo6 8 E ! GGBGGLLo.GHGGLL/G*CD F  GGBGGLLo>GGLL/: <% [/G2KL Wo.GHJ  \ "k95gy1 3BLE%k59gu57k59gu57  ~~! Q(*(8$uAGGLL!4EHHUB7HHUE*Azz">?? " Wa 8ENN;.  )9 2:: - NN> ? .i  Nse T V P  Nse T V *  Nse T V $ Qrzz1 OQ2 Qse:C-Y)=F>Z C-Z7B[ A![) Z 3ZZ  Z4Z//Z47 [[[/\\c[[S5URS5 [[S5URS5 g)z Write out a dns_update_list filedns_update_listNspn_update_list)rrrr)r}s r.create_dns_update_listrs4z+,e.C.CTJz+,e.C.CTJr0cSSKJn US:Xa[[S5URUUUR SSR URS5SS5-URURS .5 [[S 5UR5 gUS :XGa[R"S /S [R[RSS9R5Sn[U5nSnSnSn Sn Sn Sn Sn SnUR5R!S5S:waSnGOUR5R!S5S:waSnGOUR5R!S5S:waSn GOUR5R!S5S:waSn GOUR5R!S5S:waSn GOaUR5R!S5S:waSn GO:UR5R!S5S:waSn GOUR5R!S5S:wd#UR5R!S5S:waSnOUR5R!S5S:waU"S5eUR5R!S5S:waU"S5eUR5R!S5S:waU"S5eUR5R!S 5S:waU"S5eUR#S!UR-5 [[S"5URUR[$R&R)5UUU U U U U US#. 5 gg)$aCWrite out a file containing zone statements suitable for inclusion in a named.conf file (including GSS-TSIG configuration). :param paths: all paths :param realm: Realm name :param dnsdomain: DNS Domain name :param dns_backend: DNS backend type :param keytab_name: File name of DNS keytab file :param logger: Logger object r)ProvisioningErrorBIND9_FLATFILEz named.confz*.rr<N)rVrU ZONE_FILEREALM_WC NAMED_CONFNAMED_CONF_UPDATEznamed.conf.update BIND9_DLZznamed -VT)shellstdoutstderrcwd#zBIND 9.8rorzBIND 9.9z BIND 9.10z BIND 9.11z BIND 9.12z BIND 9.14z BIND 9.16z BIND 9.18z BIND 9.20zBIND 9.7z&DLZ option incompatible with BIND 9.7.z BIND_9.13z/Only stable/esv releases of BIND are supported.z BIND_9.15z BIND_9.17z0BIND version unknown, please modify %s manually.znamed.conf.dlz) r MODULESDIRBIND9_8BIND9_9BIND9_10BIND9_11BIND9_12BIND9_14BIND9_16BIND9_18)samba.provisionrrr namedconfrsr_rnamedconf_update subprocessPopenPIPESTDOUT communicaterrfindrrparam modules_dir)r}rhr dns_backendr|r bind_infobind9_8bind9_9bind9_10bind9_11bind9_12bind9_14bind9_16bind9_18s r.create_named_confrs "2&&:l+U__!*"!& $sxx C0@0D'E E"'//).)?)? ?  :12E4J4JK  #$$j\,6OO,6,=,=),./:kmA? y)  ??  ! !* - 3G __  # #J /2 5G __  # #K 0B 6H __  # #K 0B 6H __  # #K 0B 6H __  # #K 0B 6H __  # #K 0B 6H __  # #K 0B 6 __  # #K 0B 6H __  # #J /2 5#$LM M __  # #K 0B 6#$UV V __  # #K 0B 6#$UV V __  # #K 0B 6#$UV V NNMPUP_P__ `:./"'//"'++"9"9";&& ( ( ( ( ( ( C S $r0c x[[S5UUUUU[RR XE5US.5 g)aFWrite out a file containing zone statements suitable for inclusion in a named.conf file (including GSS-TSIG configuration). :param path: Path of the new named.conf file. :param realm: Realm name :param dnsdomain: DNS Domain name :param binddns_dir: Path to bind dns directory :param keytab_name: File name of DNS keytab file z named.txt)rVr[rUrWDNS_KEYTAB_ABS PRIVATE_DIRN)rrr\r^r_)r^rhrdnsnamerg keytab_names r.create_named_txtr$s9z+&"% ggll;D& /r0c US;$)N)rrSAMBA_INTERNALNONE)rs r.is_valid_dns_backendr 9s S SSr0c<[Us=:*=(a [:*$s $r?)r r)os_levels r.is_valid_os_levelr =s "h I I2I II IIr0c6[XSX5 [XS5 gNz CN=System)rr)r*rrr7s r.create_dns_legacyrAse{IME[1r0c >[XSX1U5 [XSXCXVU5 gr)r@rO) r*rrrrMrrrr7s r.fill_dns_data_legacyrHs*e{I#%%;"G5r0c [XX4URURU5 [XSUU5 U[:wa[XSUUSS9 gg)NrKrLT)r)rrrrr)r*rrer+rr7rs r.create_dns_partitionsrSsU8Ee':I#%^#%+> ' 6$r0Tc U(a [XS5 [XSUX5 U (a[XSUXWX5 U[:wa&[ XSU5 U (a[ XSUXgXX5 ggg)aRFill data in various AD partitions :param samdb: LDB object connected to sam.ldb file :param domainsid: Domain SID (as dom_sid object) :param site: Site name to create hostnames in :param domaindn: DN of the domain :param forestdn: DN of the forest :param dnsdomain: DNS name of the domain :param dnsforest: DNS name of the forest :param hostname: Host name of this DC :param hostip: IPv4 addresses :param hostip6: IPv6 addresses :param domainguid: Domain GUID :param ntdsguid: NTDS GUID :param dnsadmins_sid: SID for DnsAdmins group :param autofill: Create DNS records (using fixed template) rKrLN)rr@rOrrDrS)r*rrMr+rrrCrrrr-rQr7autofillradd_roots r.fill_dns_data_partitionsras0)<=e':I0e/BD'6 D^# *=yI  2Et!*f!+ 7  $r0c `[U5(d[SU-5e[U5(d[SU-5eUS:XaURS5 gURS5 [ XR 5 UR n UR 5R5n URR5n U nURnURR5n[X 5n[X 5nUR5 URSU -5 [XR U U5 U[":Xa/URSU -5 [%XR XUUXU5 OqUS ;akU[&:aaURS 5 [)XR X+U UU 5 URS 5 [+XR XU XUXUUR,UU S 9 UR/5 UR3S 5(a[5XX#UXVXUU S9 gg! UR15 e=f)aProvision DNS information (assuming GC role) :param samdb: LDB object connected to sam.ldb file :param secretsdb: LDB object connected to secrets.ldb file :param names: Names shortcut :param paths: Paths shortcut :param logger: Logger object :param dns_backend: Type of DNS backend :param os_level: Functional level (treated as os level) :param dnspass: Password for bind's DNS account :param hostip: IPv4 address :param hostip6: IPv6 address Invalid dns backend: %rInvalid os level: %rrz'No DNS backend set, not configuring DNSNzAdding DNS accountsz%Creating CN=MicrosoftDNS,CN=System,%sz'Populating CN=MicrosoftDNS,CN=System,%s)rrz5Creating DomainDnsZones and ForestDnsZones partitionsz7Populating DomainDnsZones and ForestDnsZones partitions)rBIND9_)rMrjrr)r rr rrr+get_root_basednget_linearizedrrcsitenamerbr8r/transaction_startrrr rr rrrQtransaction_committransaction_cancel startswithsetup_bind9_dns)r*rdrer}r|rr rjrrrr+rrrCrMrr7r-s r. setup_ad_dnsr$s" , ,1K?@@ X & &.9::f => KK%&UNN+"~~H$$&557H%%'II >>D  &&(H%e6M0J # ;hFG%(MJ . . KKAHL M d!)6M K; ;33 KKO P !%%8"/ = KKQ R $UOOTX%.8V%/0: <   "h''%#DRX ' )(    " s CHH-c [U5(aURS5(d[SU-5e[U5(d[SU-5eURn [ X 5n [ XURURURURURUU S9 [XC5 [XC5 US:Xa8[XCUURU XRURU UR S9 US:Xa"U[":a[%XUX"R&U 5 [)X2RURUUS9 [+UR,URURUR<S UR<3URURS 9 UR/S UR05 UR/S UR,5 g )aProvision DNS information (assuming BIND9 backend in DC role) :param samdb: LDB object connected to sam.ldb file :param secretsdb: LDB object connected to secrets.ldb file :param names: Names shortcut :param paths: Paths shortcut :param logger: Logger object :param dns_backend: Type of DNS backend :param os_level: Functional level (treated as os level) :param site: Site to create hostnames in :param dnspass: Password for bind's DNS account :param hostip: IPv4 address :param hostip6: IPv6 address rrr)rhrrirjrkr)rMrrrrrhr-rQr)rhrrr|r)rhrrrgrz9See %s for an example configuration include file for BINDz@and %s for further documentation required for secure DNS updatesN)r r"rr r+r/rlrfrgrhrrrrrrrQr rrrrnamedtxtrr)r*rdrer}r|rr rMrjrrrkr+r-s r.r#r#s$ ! - -  " "8 , ,1K?@@ X & &.9::~~H0J ))))#kk"'//(-(8(8'+= ?6!v-&&T#(??6!(>>${{z"'..  2 k!h2I&I%* >e;; %[#%U^^ ;;%//(-H!&!2!2!&!1!1 3  KKK! KK >>+r0)F)NNNNN)^__doc__r\rrtrr&base64rrrsamba.tdb_utilrsamba.mdb_utilr samba.ndrrrr samba.dcerpcr r r samba.dsdbr r rrsamba.descriptorrrrrrrrsamba.provision.commonrrrrrr samba.samdbr samba.commonrr/r8DnssrvRpcRecordr:rYr`rgrnr{r DnsPropertyrrrrrrrrrrrr$r)r-r0r3r8r@rDrOrSrlrrrrrrrr r rrrrr$r#rr0r.r4s1*  ##*-- 2# "d""%%$&&t##$$($$" $$ 4##!$**! )) ' 0 0'%d..%"))"%t//%8 v "DN< DZz2$j>.4'FT;0|E?PKSl*TJ25 6 LP(1D-7b15T4%_)FLP59?+r0