bQddlZddlmZddlZddlmZddlmZmZddl m Z ddl Zddl m Z mZmZmZddlmZdZdZd ZGd d e ZGd d e ZGdde ZGddeZdS)N)LdbError)drsuapimisc)system_session)Command CommandError SuperCommandOption)SamDBc\ ||tjdg}n?#t$r2}|j\}}|tjkrt d|zd}~wwxYwd|dvr;tj||dddd}nd}|S)znGets the owner of an FSMO role :param roledn: The DN of the FSMO role :param role: The FSMO role fSMORoleOwnerscopeattrsz+The '%s' role is not present in this domainNrutf8) searchldb SCOPE_BASErargsERR_NO_SUCH_OBJECTrDndecode)samdbrolednrolerese7nummsg master_owners 3/usr/lib/python3/dist-packages/samba/netcmd/fsmo.pyget_fsmo_roleownerr"$s ll6!$7HJJ W c #( ( (LtSTT T  #a&  uc!f_&=a&@&G&G&O&OPP  s#& A"-AA"c |dkr|}d|z}n1|dkr+tj|}d|z}|}||dgt jdg} d| dvr ttj t j || ddd d  d } tt j || ddd d } n^#t$r7} | j\} }t!d | dddd |d d} ~ wwxYw|d|zdS|dkrE| d|}|d|}nJ|dkrD| d|}|d|}|}||kr|}||d}t/d|zt1||}t j}t j |||_t j| t jd|d<t j|t jd|d< ||n1#t$r$}|j\} }t!d|d|d}~wwxYw tj |||}n,#tjj!$r}t!d|d}~wwxYw |d}|d}tDj#}|dd}tj$||| ||n,#tjj!$r}t!d|d}~wwxYw|d|zdS|d|zdS) zTransfer dns FSMO role. domaindns$CN=Infrastructure,DC=DomainDnsZones, forestdns$CN=Infrastructure,DC=ForestDnsZones,r zextended_dn:1:1)rrcontrolsrrGUIDz"No GUID found in naming master DN z : z Nz0* The '%s' role does not have an FSMO roleowner Fz._msdcs.Tfallback_machinez ldap://%surl session_info credentialslpfSMORoleOwner_DelfSMORoleOwner_AddzFailed to add role 'z': zDrsuapi Connect failedzReplication failed&FSMO transfer of '%s' role successful 'This DC already has the '%s' FSMO role )% domain_dnsambadn_from_dns_nameforest_dns_name host_dns_namerrrstrrr)rrget_extended_componentrrrwritedomain_dns_name get_ntds_GUIDget_dsServiceName get_loadparmget_credentialsr rMessagednMessageElementFLAG_MOD_DELETE FLAG_MOD_ADDmodify drs_utilsdrsuapi_connect drsExceptionrDRSUAPI_DRS_WRIT_REPsendDsReplicaSync)outf sambaoptscredoptsrrr7 role_object forest_dnnew_host_dns_namer master_guidr e3rrmaster_dns_name new_dns_name new_ownerr0credsme5 connectionedrsuapi_connectiondrsuapi_handle req_optionsNCestrs r!transfer_dns_rolerd;s {OO%% )>)>)>).)>)>)@)@)@B   ,7KK,1,A,A,C,C,CE).)<)<)>)>)>)>).)>)>)@)@)@B ''))I,&&  # # % %((d(CC+9#1#3#3"'B000 KMMve[))!$!3L474G4C"E"E "%!3I474D4C"E"E  L LLOOOO L L LJS#,ccJKK K L <889J9;UDDJJ+ < < <7;; ; < ;!+A ']N!6KRSS!B O - -.@.<.9.0+ ? ? ? ?+ ; ; ;3T:: : ; rIrr)rOrrr7rid_dn naming_dninfrastructure_dn schema_dnrYr[r rside6rrs r! transfer_rolers !!I )I 5F"U%<%<%>%>>I,y8E++--..Iue557788I A 6%  AD u}})%>> "1 %     )%DAA ll9!$ }FF3xx1}}}}!f[!!$+ % +   )%DAA "%"4 % #"#"  ! ! !)%1BDII *-*< % (+*+* &''   )%DAA "%"4 % #"#" /000 [^bbcccuy   , LLOOOO , , ,JS#, $cc +,, , , rFrytransaction_startrIcreate_own_rid_setrrERR_ENTRY_ALREADY_EXISTStransaction_canceltransaction_commit) selfrrforce serviceNamer7r[seizer e1rrr^s r! seize_rolezcmd_fsmo_seize.seize_roles--// OO%% !5 !A+e.E.E.G.GGU4466772Y> KMM 5==6%--ADD U]]6%++ADD X  6%00ADD % % %6%!788ADD X  6%00ADD344 4)%t<<  #{**=LL!9:::$%diu===  %LMMM#t J $ %HIIIII!  J $!%&&&uE    LL2T9 : : :!$!3S1"!"!Ao   # # % % % 4 Q5==,,... 4 4 4W c5==SC,H%H%H ,,...++---8 Q#888%&V c00222*l,0DD##,78888,,...&,(,cc(3444( 4,  $ $ & & & IOOBTI J J J4M  sIF??G/J M%AM K-,M - L/73L**L//,M  M%c@|}|}tj|} d|z|_d| z|_tj} |dkr tj ||j| _ n5|dkr tj ||j| _ ntdd} t|| j |} | | |krf|c| d t|j||||| d d S#d } | d Yn%xYwn!|jd |zdSd } || r| d |ztj|tjd| d< || n1#t($r$} | j\}}td|d|d} ~ wwxYw|jd|zd SdS)zSeize DNS FSMO role. r%r'r$r&rvFNrz&Transfer successful, not seizing role Trr6rr rrr)rAr7r8r9r: domaindns_dn forestdns_dnrrDrrErr"rrdrOr>rFryrIrr)rrrrQrPrrrr7rSr[rr e2rrs r!seize_dns_rolezcmd_fsmo_seize.seize_dns_roleNsg--// OO%% *5+@+@+B+BCC BYNBYN KMM ;  6%!233ADD [ 6%!233ADD344 4)%t<<  #{**=LL!9::: $)$)Y$*/111 %NOOO#t J $ %HIIIII!  J $!%&&&uE    LL2T9 : : :!$!3S1"!"!Ao  0 Q 0 0 0W c"l$(DD##$/000 0 IOOBTI J J J4  s$ D88E8G G<G77G<Ncv|}||d}t|t||} |dkr|d| ||d| ||d| ||d| ||d | ||d | |||||d | ||||dS|d ks|d kr||| ||||dS||| |dS NTr*r,rrjrmrprrrtr$r&)rBrCr rrr rrrrrQrPrr0rZrs r!runzcmd_fsmo_seize.runs # # % %((d(CC!.*:*:"'B000 5== OOE5% 0 0 0 OOE5% 0 0 0 OOHeU 3 3 3 OO,eU ; ; ; OOHeU 3 3 3    UHi +U 4 4 4    UHi +U 4 4 4 4 4{""dk&9&9##D%9$/88888eU33333NNNNNN)__name__ __module__ __qualname____doc__synopsisoptions SambaOptionsCredentialsOptionsVersionOptionstakes_optiongroupsr r< takes_options takes_argsrrrrr!rrs H).- tW#JS 2 2 2yK" $ $ $ xh1f1f1f 0 1 1 1 M(JWWWr777r,07;444444rrcpeZdZdZdZejejejdZ e ddde dd gZ gZ d d Zd S) cmd_fsmo_showzShow the roles.rrrrrrrrNc |}||d}t|t||}|}t j|} d|z} d|z} | } d|z} d|z}d| z}| d d f| d d f| d df|ddf| ddf|ddf|ddfg}|D]}|\}}} t|||}|(| |dt|n| d|z]#t$r)}| |d|j Yd}~d}~wwxYwdS)NTr*r,rhrgrfr%r'rtSchemaMasterRolerrInfrastructureMasterRolerjRidAllocationMasterRolermPdcEmulationMasterRolerpDomainNamingMasterRoler$DomainDnsZonesMasterRoler&ForestDnsZonesMasterRolez owner: z%s has no current ownerz: * )rBrCr rr7r8r9r:rwrxr"rr<r)rrrQrPrr0rZrr7rSr}r|r~r{rrmastersmasterrE short_name long_namer^s r!rzcmd_fsmo_show.runs  # # % %((d(CC!.*:*:"'B000OO%% *5+@+@+B+BCC 09<&)@)@)B)BB ++-- - 9= I = I x);<%'79STE#<=u&>?x)AB +/IJ +/IJ  B BF*0 'RY B+E2zBB%LL999c&kkk!JKKKKLL!:i!HIII B B B 999aii@AAAAAAAA B B Bs-AE E4 E//E4)NNNNrrrrrrrrrrr r<rrrrrr!rrs H).- tW#JS 2 2 2M J"B"B"B"B"B"BrrceZdZdZdZejejejdZ e ddde dd e d d gd d gZ gZ ddZdS)cmd_fsmo_transferzTransfer the role.rrrrrrrrrrrrrNc^|}||d}t|t||} |dkrt |jd| t |jd| t |jd| t |jd| t |jd | t |j||d | t |j||d | dS|d ks|d krt |j|||| dSt |j|| dSr)rBrCr rrrOrdrs r!rzcmd_fsmo_transfer.runsW # # % %((d(CC!.*:*:"'B000 5== $)UE 2 2 2 $)UE 2 2 2 $)Xu 5 5 5 $)%5u = = = $)Xu 5 5 5 diH)5 2 2 2 diHk# % % % % %{""dk&9&9!$)Y$NNNNNdiu55555rrrrrr!rrs H).- tW#JS 2 2 2xh1f1f1f 0 1 1 1M"J+/7;666666rrcdeZdZdZiZeed<eed<eed<dS)cmd_fsmoz:Flexible Single Master Operations (FSMO) roles management.rshowtransferN)rrrr subcommandsrrrrrr!rrsPDDK)>++K'-//K//11K rr)r8 samba.getoptgetoptrrr samba.dcerpcrr samba.authrsamba.drs_utils samba.netcmdrrr r samba.samdbr r"rdrrrrrrrr!rs(  &&&&&&&&%%%%%% .WWWt<<<~K4K4K4K4K4WK4K4K4\4B4B4B4B4BG4B4B4Bn5656565656565656p22222|22222r