diff --git a/README.md b/README.md index 6dafd5a..708af1c 100644 --- a/README.md +++ b/README.md @@ -397,6 +397,85 @@ ldapsearch -H ldap://localhost:{.env:LDAP_PORT} \ "(objectClass=*)" ``` +## Extended Directory Structure + +This project includes a **comprehensive enterprise directory structure** with 240+ entries across multiple organizational units, providing a realistic testing environment. + +### What's Included + +The directory structure now includes: + +- **34 User Accounts** across multiple departments (IT, Engineering, Sales, Marketing, Finance, HR, Operations, Legal, Executive) +- **30+ Service Accounts** for applications, CI/CD, monitoring, automation, and integrations +- **45+ Computer/Device Accounts** including workstations, laptops, servers (production, development, infrastructure), and network devices +- **50+ Groups** covering departments, security/access control, applications, projects, and locations +- **40+ Shared Resources** including conference rooms, printers, video conferencing equipment, and facilities +- **40+ Organizational Units** with nested department and location structures + +### LDIF Files + +The directory is populated from multiple LDIF files loaded in sequence: + +1. `01-users.ldif` - Base users and groups (original test users) +2. `02-organizational-structure.ldif` - Comprehensive OU hierarchy +3. `03-department-users.ldif` - Departmental user accounts +4. `04-computers.ldif` - Computer and device accounts +5. `05-service-accounts.ldif` - Application service accounts +6. `06-groups.ldif` - Comprehensive group structure +7. `07-resources.ldif` - Shared resources and equipment + +### Key Features + +- **Realistic Organization**: Departments with nested sub-units (IT, Engineering, Sales, Marketing, etc.) +- **Geographic Distribution**: Users and devices assigned to New York, San Francisco, London, Tokyo, and Remote locations +- **Network Infrastructure**: Servers with IP addresses, MAC addresses, and proper attributes +- **Group Hierarchies**: Department groups, security groups, application access groups, and project teams +- **Service Accounts**: Dedicated accounts for CI/CD, monitoring, backup, automation, and integrations +- **Physical Resources**: Conference rooms, printers, video conferencing equipment cataloged in LDAP + +### Documentation + +For detailed information about the directory structure, including: +- Complete listings of all users, computers, and resources +- LDAP search examples +- Customization instructions +- Integration patterns + +See **[ldif/README.md](ldif/README.md)** for comprehensive documentation. + +### Example Queries + +```bash +# List all engineering team members +ldapsearch -x -H ldap://localhost:389 -D "cn=admin,dc=testing,dc=local" -w admin \ + -b "ou=people,dc=testing,dc=local" "(departmentNumber=Engineering*)" cn mail title + +# Find all production servers +ldapsearch -x -H ldap://localhost:389 -D "cn=admin,dc=testing,dc=local" -w admin \ + -b "ou=computers,dc=testing,dc=local" "(cn=SRV-*-PROD-*)" cn ipHostNumber + +# List conference rooms in New York +ldapsearch -x -H ldap://localhost:389 -D "cn=admin,dc=testing,dc=local" -w admin \ + -b "ou=resources,dc=testing,dc=local" "(&(cn=*-CR-*)(l=New York))" cn description +``` + +### Python Explorer Script + +A comprehensive directory explorer script is available to demonstrate working with the extended structure: + +```bash +# From the project root +python examples/directory_explorer.py +``` + +This script demonstrates: +- Searching users by department +- Finding computers and servers by type +- Querying service accounts +- Exploring groups and memberships +- Locating shared resources +- Testing authentication + ## Next Steps Now that your LDAP server is running, you can: diff --git a/ldif/02-organizational-structure.ldif b/ldif/02-organizational-structure.ldif new file mode 100644 index 0000000..7bab564 --- /dev/null +++ b/ldif/02-organizational-structure.ldif @@ -0,0 +1,203 @@ +# Organizational Structure LDIF +# This file creates a comprehensive organizational structure for testing.local +# Including departments, sub-units, and other organizational divisions + +# Create Computers OU for computer accounts +dn: ou=computers,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: computers +description: Computer and device accounts + +# Create Services OU for service accounts +dn: ou=services,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: services +description: Service accounts and application identities + +# Create Resources OU for shared resources +dn: ou=resources,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: resources +description: Shared resources and equipment + +# Create Departments OU +dn: ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: departments +description: Organizational departments + +# IT Department +dn: ou=IT,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: IT +description: Information Technology Department + +# IT Sub-units +dn: ou=Infrastructure,ou=IT,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Infrastructure +description: IT Infrastructure and Operations Team + +dn: ou=Security,ou=IT,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Security +description: Information Security Team + +dn: ou=Support,ou=IT,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Support +description: IT Support and Help Desk + +# Engineering Department +dn: ou=Engineering,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Engineering +description: Engineering Department + +# Engineering Sub-units +dn: ou=Software,ou=Engineering,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Software +description: Software Engineering Team + +dn: ou=QA,ou=Engineering,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: QA +description: Quality Assurance Team + +dn: ou=DevOps,ou=Engineering,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: DevOps +description: DevOps and Platform Engineering + +# Human Resources Department +dn: ou=HR,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: HR +description: Human Resources Department + +# Finance Department +dn: ou=Finance,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Finance +description: Finance and Accounting Department + +# Sales Department +dn: ou=Sales,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Sales +description: Sales Department + +# Sales Sub-units +dn: ou=Enterprise,ou=Sales,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Enterprise +description: Enterprise Sales Team + +dn: ou=SMB,ou=Sales,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: SMB +description: Small and Medium Business Sales + +# Marketing Department +dn: ou=Marketing,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Marketing +description: Marketing Department + +# Marketing Sub-units +dn: ou=Digital,ou=Marketing,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Digital +description: Digital Marketing Team + +dn: ou=Content,ou=Marketing,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Content +description: Content and Communications Team + +# Operations Department +dn: ou=Operations,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Operations +description: Operations Department + +# Customer Success Department +dn: ou=CustomerSuccess,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: CustomerSuccess +description: Customer Success and Support + +# Legal Department +dn: ou=Legal,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Legal +description: Legal and Compliance Department + +# Executive OU +dn: ou=Executive,ou=departments,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Executive +description: Executive Leadership + +# Locations OU for geographic organization +dn: ou=locations,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: locations +description: Geographic locations and offices + +# Location entries +dn: ou=NewYork,ou=locations,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: NewYork +description: New York Office + +dn: ou=SanFrancisco,ou=locations,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: SanFrancisco +description: San Francisco Office + +dn: ou=London,ou=locations,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: London +description: London Office + +dn: ou=Tokyo,ou=locations,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Tokyo +description: Tokyo Office + +dn: ou=Remote,ou=locations,dc=testing,dc=local +objectClass: organizationalUnit +objectClass: top +ou: Remote +description: Remote Employees diff --git a/ldif/03-department-users.ldif b/ldif/03-department-users.ldif new file mode 100644 index 0000000..6d21001 --- /dev/null +++ b/ldif/03-department-users.ldif @@ -0,0 +1,650 @@ +# Department Users LDIF +# This file creates user accounts across various departments +# All passwords are set to "password123" for testing purposes + +# IT Department Users +dn: uid=bwilson,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: bwilson +cn: Bob Wilson +sn: Wilson +givenName: Bob +mail: bwilson@testing.local +telephoneNumber: +1-555-0101 +title: IT Director +departmentNumber: IT +employeeNumber: 1001 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10100 +gidNumber: 10100 +homeDirectory: /home/bwilson +loginShell: /bin/bash +description: IT Director + +dn: uid=mjohnson,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: mjohnson +cn: Michael Johnson +sn: Johnson +givenName: Michael +mail: mjohnson@testing.local +telephoneNumber: +1-555-0102 +title: Systems Administrator +departmentNumber: IT-Infrastructure +employeeNumber: 1002 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10101 +gidNumber: 10101 +homeDirectory: /home/mjohnson +loginShell: /bin/bash +description: Systems Administrator - Infrastructure Team + +dn: uid=sdavis,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: sdavis +cn: Sarah Davis +sn: Davis +givenName: Sarah +mail: sdavis@testing.local +telephoneNumber: +1-555-0103 +title: Security Engineer +departmentNumber: IT-Security +employeeNumber: 1003 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10102 +gidNumber: 10102 +homeDirectory: /home/sdavis +loginShell: /bin/bash +description: Security Engineer - Information Security Team + +dn: uid=tmartinez,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: tmartinez +cn: Tom Martinez +sn: Martinez +givenName: Tom +mail: tmartinez@testing.local +telephoneNumber: +1-555-0104 +title: IT Support Specialist +departmentNumber: IT-Support +employeeNumber: 1004 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10103 +gidNumber: 10103 +homeDirectory: /home/tmartinez +loginShell: /bin/bash +description: IT Support Specialist - Help Desk + +# Engineering Department Users +dn: uid=aanderson,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: aanderson +cn: Alice Anderson +sn: Anderson +givenName: Alice +mail: aanderson@testing.local +telephoneNumber: +1-555-0201 +title: VP of Engineering +departmentNumber: Engineering +employeeNumber: 2001 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10200 +gidNumber: 10200 +homeDirectory: /home/aanderson +loginShell: /bin/bash +description: VP of Engineering + +dn: uid=dthomas,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: dthomas +cn: David Thomas +sn: Thomas +givenName: David +mail: dthomas@testing.local +telephoneNumber: +1-555-0202 +title: Senior Software Engineer +departmentNumber: Engineering-Software +employeeNumber: 2002 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10201 +gidNumber: 10201 +homeDirectory: /home/dthomas +loginShell: /bin/bash +description: Senior Software Engineer + +dn: uid=ejackson,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: ejackson +cn: Emily Jackson +sn: Jackson +givenName: Emily +mail: ejackson@testing.local +telephoneNumber: +1-555-0203 +title: Software Engineer +departmentNumber: Engineering-Software +employeeNumber: 2003 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10202 +gidNumber: 10202 +homeDirectory: /home/ejackson +loginShell: /bin/bash +description: Software Engineer + +dn: uid=rwhite,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: rwhite +cn: Rachel White +sn: White +givenName: Rachel +mail: rwhite@testing.local +telephoneNumber: +1-555-0204 +title: QA Engineer +departmentNumber: Engineering-QA +employeeNumber: 2004 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10203 +gidNumber: 10203 +homeDirectory: /home/rwhite +loginShell: /bin/bash +description: QA Engineer + +dn: uid=kharris,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: kharris +cn: Kevin Harris +sn: Harris +givenName: Kevin +mail: kharris@testing.local +telephoneNumber: +1-555-0205 +title: DevOps Engineer +departmentNumber: Engineering-DevOps +employeeNumber: 2005 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10204 +gidNumber: 10204 +homeDirectory: /home/kharris +loginShell: /bin/bash +description: DevOps Engineer + +# HR Department Users +dn: uid=lmartin,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: lmartin +cn: Lisa Martin +sn: Martin +givenName: Lisa +mail: lmartin@testing.local +telephoneNumber: +1-555-0301 +title: HR Director +departmentNumber: HR +employeeNumber: 3001 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10300 +gidNumber: 10300 +homeDirectory: /home/lmartin +loginShell: /bin/bash +description: HR Director + +dn: uid=jthompson,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: jthompson +cn: Jennifer Thompson +sn: Thompson +givenName: Jennifer +mail: jthompson@testing.local +telephoneNumber: +1-555-0302 +title: HR Coordinator +departmentNumber: HR +employeeNumber: 3002 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10301 +gidNumber: 10301 +homeDirectory: /home/jthompson +loginShell: /bin/bash +description: HR Coordinator + +# Finance Department Users +dn: uid=pgarcia,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: pgarcia +cn: Patricia Garcia +sn: Garcia +givenName: Patricia +mail: pgarcia@testing.local +telephoneNumber: +1-555-0401 +title: CFO +departmentNumber: Finance +employeeNumber: 4001 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10400 +gidNumber: 10400 +homeDirectory: /home/pgarcia +loginShell: /bin/bash +description: Chief Financial Officer + +dn: uid=cmiller,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: cmiller +cn: Christopher Miller +sn: Miller +givenName: Christopher +mail: cmiller@testing.local +telephoneNumber: +1-555-0402 +title: Senior Accountant +departmentNumber: Finance +employeeNumber: 4002 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10401 +gidNumber: 10401 +homeDirectory: /home/cmiller +loginShell: /bin/bash +description: Senior Accountant + +dn: uid=swilson,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: swilson +cn: Samantha Wilson +sn: Wilson +givenName: Samantha +mail: swilson@testing.local +telephoneNumber: +1-555-0403 +title: Financial Analyst +departmentNumber: Finance +employeeNumber: 4003 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10402 +gidNumber: 10402 +homeDirectory: /home/swilson +loginShell: /bin/bash +description: Financial Analyst + +# Sales Department Users +dn: uid=rmoore,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: rmoore +cn: Robert Moore +sn: Moore +givenName: Robert +mail: rmoore@testing.local +telephoneNumber: +1-555-0501 +mobile: +1-555-0551 +title: VP of Sales +departmentNumber: Sales +employeeNumber: 5001 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10500 +gidNumber: 10500 +homeDirectory: /home/rmoore +loginShell: /bin/bash +description: VP of Sales + +dn: uid=ntaylor,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: ntaylor +cn: Nicole Taylor +sn: Taylor +givenName: Nicole +mail: ntaylor@testing.local +telephoneNumber: +1-555-0502 +mobile: +1-555-0552 +title: Enterprise Account Executive +departmentNumber: Sales-Enterprise +employeeNumber: 5002 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10501 +gidNumber: 10501 +homeDirectory: /home/ntaylor +loginShell: /bin/bash +description: Enterprise Account Executive + +dn: uid=banderson,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: banderson +cn: Brian Anderson +sn: Anderson +givenName: Brian +mail: banderson@testing.local +telephoneNumber: +1-555-0503 +mobile: +1-555-0553 +title: SMB Sales Representative +departmentNumber: Sales-SMB +employeeNumber: 5003 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10502 +gidNumber: 10502 +homeDirectory: /home/banderson +loginShell: /bin/bash +description: SMB Sales Representative + +dn: uid=amartin,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: amartin +cn: Amanda Martin +sn: Martin +givenName: Amanda +mail: amartin@testing.local +telephoneNumber: +1-555-0504 +mobile: +1-555-0554 +title: Sales Development Representative +departmentNumber: Sales +employeeNumber: 5004 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10503 +gidNumber: 10503 +homeDirectory: /home/amartin +loginShell: /bin/bash +description: Sales Development Representative + +# Marketing Department Users +dn: uid=jlee,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: jlee +cn: Jessica Lee +sn: Lee +givenName: Jessica +mail: jlee@testing.local +telephoneNumber: +1-555-0601 +title: Marketing Director +departmentNumber: Marketing +employeeNumber: 6001 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10600 +gidNumber: 10600 +homeDirectory: /home/jlee +loginShell: /bin/bash +description: Marketing Director + +dn: uid=mperez,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: mperez +cn: Maria Perez +sn: Perez +givenName: Maria +mail: mperez@testing.local +telephoneNumber: +1-555-0602 +title: Digital Marketing Manager +departmentNumber: Marketing-Digital +employeeNumber: 6002 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10601 +gidNumber: 10601 +homeDirectory: /home/mperez +loginShell: /bin/bash +description: Digital Marketing Manager + +dn: uid=drobinson,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: drobinson +cn: Daniel Robinson +sn: Robinson +givenName: Daniel +mail: drobinson@testing.local +telephoneNumber: +1-555-0603 +title: Content Writer +departmentNumber: Marketing-Content +employeeNumber: 6003 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10602 +gidNumber: 10602 +homeDirectory: /home/drobinson +loginShell: /bin/bash +description: Content Writer + +# Operations Department Users +dn: uid=jclark,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: jclark +cn: James Clark +sn: Clark +givenName: James +mail: jclark@testing.local +telephoneNumber: +1-555-0701 +title: Operations Manager +departmentNumber: Operations +employeeNumber: 7001 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10700 +gidNumber: 10700 +homeDirectory: /home/jclark +loginShell: /bin/bash +description: Operations Manager + +dn: uid=erodriguez,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: erodriguez +cn: Elena Rodriguez +sn: Rodriguez +givenName: Elena +mail: erodriguez@testing.local +telephoneNumber: +1-555-0702 +title: Operations Coordinator +departmentNumber: Operations +employeeNumber: 7002 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10701 +gidNumber: 10701 +homeDirectory: /home/erodriguez +loginShell: /bin/bash +description: Operations Coordinator + +# Customer Success Department Users +dn: uid=slewis,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: slewis +cn: Steven Lewis +sn: Lewis +givenName: Steven +mail: slewis@testing.local +telephoneNumber: +1-555-0801 +title: Customer Success Manager +departmentNumber: CustomerSuccess +employeeNumber: 8001 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10800 +gidNumber: 10800 +homeDirectory: /home/slewis +loginShell: /bin/bash +description: Customer Success Manager + +dn: uid=kwalker,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: kwalker +cn: Karen Walker +sn: Walker +givenName: Karen +mail: kwalker@testing.local +telephoneNumber: +1-555-0802 +title: Support Engineer +departmentNumber: CustomerSuccess +employeeNumber: 8002 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10801 +gidNumber: 10801 +homeDirectory: /home/kwalker +loginShell: /bin/bash +description: Support Engineer + +# Legal Department Users +dn: uid=dhall,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: dhall +cn: Diana Hall +sn: Hall +givenName: Diana +mail: dhall@testing.local +telephoneNumber: +1-555-0901 +title: General Counsel +departmentNumber: Legal +employeeNumber: 9001 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10900 +gidNumber: 10900 +homeDirectory: /home/dhall +loginShell: /bin/bash +description: General Counsel + +dn: uid=tyoung,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: tyoung +cn: Timothy Young +sn: Young +givenName: Timothy +mail: tyoung@testing.local +telephoneNumber: +1-555-0902 +title: Compliance Officer +departmentNumber: Legal +employeeNumber: 9002 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 10901 +gidNumber: 10901 +homeDirectory: /home/tyoung +loginShell: /bin/bash +description: Compliance Officer + +# Executive Users +dn: uid=cking,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: cking +cn: Catherine King +sn: King +givenName: Catherine +mail: cking@testing.local +telephoneNumber: +1-555-1001 +mobile: +1-555-1051 +title: Chief Executive Officer +departmentNumber: Executive +employeeNumber: 0001 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 11000 +gidNumber: 11000 +homeDirectory: /home/cking +loginShell: /bin/bash +description: Chief Executive Officer + +dn: uid=gwright,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: gwright +cn: George Wright +sn: Wright +givenName: George +mail: gwright@testing.local +telephoneNumber: +1-555-1002 +mobile: +1-555-1052 +title: Chief Technology Officer +departmentNumber: Executive +employeeNumber: 0002 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 11001 +gidNumber: 11001 +homeDirectory: /home/gwright +loginShell: /bin/bash +description: Chief Technology Officer + +dn: uid=llopez,ou=people,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: llopez +cn: Laura Lopez +sn: Lopez +givenName: Laura +mail: llopez@testing.local +telephoneNumber: +1-555-1003 +mobile: +1-555-1053 +title: Chief Operating Officer +departmentNumber: Executive +employeeNumber: 0003 +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 11002 +gidNumber: 11002 +homeDirectory: /home/llopez +loginShell: /bin/bash +description: Chief Operating Officer diff --git a/ldif/04-computers.ldif b/ldif/04-computers.ldif new file mode 100644 index 0000000..9b4e514 --- /dev/null +++ b/ldif/04-computers.ldif @@ -0,0 +1,527 @@ +# Computer and Device Accounts LDIF +# This file creates computer accounts, servers, workstations, and network devices +# Located in ou=computers,dc=testing,dc=local + +# Employee Workstations - IT Department +dn: cn=WS-IT-001,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: WS-IT-001 +ipHostNumber: 10.0.1.101 +macAddress: 00:50:56:00:01:01 +description: Bob Wilson's Workstation - IT Director +serialNumber: IT-WS-2023-001 +l: New York + +dn: cn=WS-IT-002,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: WS-IT-002 +ipHostNumber: 10.0.1.102 +macAddress: 00:50:56:00:01:02 +description: Michael Johnson's Workstation - Systems Admin +serialNumber: IT-WS-2023-002 +l: New York + +dn: cn=WS-IT-003,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: WS-IT-003 +ipHostNumber: 10.0.1.103 +macAddress: 00:50:56:00:01:03 +description: Sarah Davis's Workstation - Security Engineer +serialNumber: IT-WS-2023-003 +l: San Francisco + +dn: cn=WS-IT-004,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: WS-IT-004 +ipHostNumber: 10.0.1.104 +macAddress: 00:50:56:00:01:04 +description: Tom Martinez's Workstation - IT Support +serialNumber: IT-WS-2023-004 +l: New York + +# Employee Workstations - Engineering Department +dn: cn=WS-ENG-001,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: WS-ENG-001 +ipHostNumber: 10.0.2.101 +macAddress: 00:50:56:00:02:01 +description: Alice Anderson's Workstation - VP of Engineering +serialNumber: ENG-WS-2023-001 +l: San Francisco + +dn: cn=WS-ENG-002,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: WS-ENG-002 +ipHostNumber: 10.0.2.102 +macAddress: 00:50:56:00:02:02 +description: David Thomas's Workstation - Senior Software Engineer +serialNumber: ENG-WS-2023-002 +l: San Francisco + +dn: cn=WS-ENG-003,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: WS-ENG-003 +ipHostNumber: 10.0.2.103 +macAddress: 00:50:56:00:02:03 +description: Emily Jackson's Workstation - Software Engineer +serialNumber: ENG-WS-2023-003 +l: Remote + +dn: cn=WS-ENG-004,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: WS-ENG-004 +ipHostNumber: 10.0.2.104 +macAddress: 00:50:56:00:02:04 +description: Rachel White's Workstation - QA Engineer +serialNumber: ENG-WS-2023-004 +l: San Francisco + +dn: cn=WS-ENG-005,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: WS-ENG-005 +ipHostNumber: 10.0.2.105 +macAddress: 00:50:56:00:02:05 +description: Kevin Harris's Workstation - DevOps Engineer +serialNumber: ENG-WS-2023-005 +l: New York + +# Employee Workstations - Sales Department +dn: cn=WS-SALES-001,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: WS-SALES-001 +ipHostNumber: 10.0.5.101 +macAddress: 00:50:56:00:05:01 +description: Robert Moore's Workstation - VP of Sales +serialNumber: SALES-WS-2023-001 +l: New York + +dn: cn=WS-SALES-002,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: WS-SALES-002 +ipHostNumber: 10.0.5.102 +macAddress: 00:50:56:00:05:02 +description: Nicole Taylor's Workstation - Enterprise AE +serialNumber: SALES-WS-2023-002 +l: San Francisco + +# Laptops +dn: cn=LT-EXEC-001,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: LT-EXEC-001 +ipHostNumber: 10.0.10.101 +macAddress: 00:50:56:00:10:01 +description: Catherine King's Laptop - CEO +serialNumber: EXEC-LT-2024-001 +l: New York + +dn: cn=LT-EXEC-002,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: LT-EXEC-002 +ipHostNumber: 10.0.10.102 +macAddress: 00:50:56:00:10:02 +description: George Wright's Laptop - CTO +serialNumber: EXEC-LT-2024-002 +l: San Francisco + +dn: cn=LT-SALES-001,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: LT-SALES-001 +ipHostNumber: 10.0.10.201 +macAddress: 00:50:56:00:10:21 +description: Brian Anderson's Laptop - Sales Rep +serialNumber: SALES-LT-2023-001 +l: Remote + +dn: cn=LT-SALES-002,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: LT-SALES-002 +ipHostNumber: 10.0.10.202 +macAddress: 00:50:56:00:10:22 +description: Amanda Martin's Laptop - Sales Dev Rep +serialNumber: SALES-LT-2023-002 +l: Remote + +# Production Servers +dn: cn=SRV-WEB-PROD-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-WEB-PROD-01 +ipHostNumber: 10.100.1.10 +macAddress: 00:50:56:10:01:01 +description: Production Web Server 01 +serialNumber: SRV-2022-WEB-001 +l: New York +owner: uid=kharris,ou=people,dc=testing,dc=local + +dn: cn=SRV-WEB-PROD-02,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-WEB-PROD-02 +ipHostNumber: 10.100.1.11 +macAddress: 00:50:56:10:01:02 +description: Production Web Server 02 +serialNumber: SRV-2022-WEB-002 +l: San Francisco +owner: uid=kharris,ou=people,dc=testing,dc=local + +dn: cn=SRV-DB-PROD-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-DB-PROD-01 +ipHostNumber: 10.100.2.10 +macAddress: 00:50:56:10:02:01 +description: Production Database Server - Primary +serialNumber: SRV-2022-DB-001 +l: New York +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=SRV-DB-PROD-02,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-DB-PROD-02 +ipHostNumber: 10.100.2.11 +macAddress: 00:50:56:10:02:02 +description: Production Database Server - Replica +serialNumber: SRV-2022-DB-002 +l: San Francisco +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=SRV-APP-PROD-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-APP-PROD-01 +ipHostNumber: 10.100.3.10 +macAddress: 00:50:56:10:03:01 +description: Production Application Server 01 +serialNumber: SRV-2023-APP-001 +l: New York +owner: uid=kharris,ou=people,dc=testing,dc=local + +dn: cn=SRV-APP-PROD-02,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-APP-PROD-02 +ipHostNumber: 10.100.3.11 +macAddress: 00:50:56:10:03:02 +description: Production Application Server 02 +serialNumber: SRV-2023-APP-002 +l: San Francisco +owner: uid=kharris,ou=people,dc=testing,dc=local + +dn: cn=SRV-API-PROD-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-API-PROD-01 +ipHostNumber: 10.100.4.10 +macAddress: 00:50:56:10:04:01 +description: Production API Server 01 +serialNumber: SRV-2023-API-001 +l: New York +owner: uid=kharris,ou=people,dc=testing,dc=local + +dn: cn=SRV-CACHE-PROD-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-CACHE-PROD-01 +ipHostNumber: 10.100.5.10 +macAddress: 00:50:56:10:05:01 +description: Production Redis Cache Server +serialNumber: SRV-2023-CACHE-001 +l: New York +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +# Development/Staging Servers +dn: cn=SRV-WEB-DEV-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-WEB-DEV-01 +ipHostNumber: 10.101.1.10 +macAddress: 00:50:56:11:01:01 +description: Development Web Server +serialNumber: SRV-2023-WEB-DEV-001 +l: San Francisco +owner: uid=dthomas,ou=people,dc=testing,dc=local + +dn: cn=SRV-DB-DEV-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-DB-DEV-01 +ipHostNumber: 10.101.2.10 +macAddress: 00:50:56:11:02:01 +description: Development Database Server +serialNumber: SRV-2023-DB-DEV-001 +l: San Francisco +owner: uid=dthomas,ou=people,dc=testing,dc=local + +dn: cn=SRV-APP-STAGE-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-APP-STAGE-01 +ipHostNumber: 10.101.3.10 +macAddress: 00:50:56:11:03:01 +description: Staging Application Server +serialNumber: SRV-2023-APP-STAGE-001 +l: San Francisco +owner: uid=rwhite,ou=people,dc=testing,dc=local + +# Infrastructure Servers +dn: cn=SRV-LDAP-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-LDAP-01 +ipHostNumber: 10.100.10.10 +macAddress: 00:50:56:10:10:01 +description: LDAP Directory Server +serialNumber: SRV-2022-LDAP-001 +l: New York +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=SRV-DNS-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-DNS-01 +ipHostNumber: 10.100.10.20 +macAddress: 00:50:56:10:10:02 +description: Primary DNS Server +serialNumber: SRV-2022-DNS-001 +l: New York +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=SRV-DNS-02,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-DNS-02 +ipHostNumber: 10.100.10.21 +macAddress: 00:50:56:10:10:03 +description: Secondary DNS Server +serialNumber: SRV-2022-DNS-002 +l: San Francisco +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=SRV-FILE-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-FILE-01 +ipHostNumber: 10.100.10.30 +macAddress: 00:50:56:10:10:04 +description: File Server - Shared Storage +serialNumber: SRV-2022-FILE-001 +l: New York +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=SRV-BACKUP-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-BACKUP-01 +ipHostNumber: 10.100.10.40 +macAddress: 00:50:56:10:10:05 +description: Backup Server +serialNumber: SRV-2022-BACKUP-001 +l: New York +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=SRV-MONITOR-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-MONITOR-01 +ipHostNumber: 10.100.10.50 +macAddress: 00:50:56:10:10:06 +description: Monitoring Server - Prometheus/Grafana +serialNumber: SRV-2023-MON-001 +l: New York +owner: uid=kharris,ou=people,dc=testing,dc=local + +dn: cn=SRV-LOG-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SRV-LOG-01 +ipHostNumber: 10.100.10.60 +macAddress: 00:50:56:10:10:07 +description: Log Aggregation Server - ELK Stack +serialNumber: SRV-2023-LOG-001 +l: New York +owner: uid=sdavis,ou=people,dc=testing,dc=local + +# Network Devices +dn: cn=RTR-CORE-NY-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: RTR-CORE-NY-01 +ipHostNumber: 10.200.1.1 +macAddress: 00:1A:2B:3C:4D:01 +description: Core Router - New York Office +serialNumber: CISCO-RTR-2022-001 +l: New York +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=RTR-CORE-SF-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: RTR-CORE-SF-01 +ipHostNumber: 10.200.2.1 +macAddress: 00:1A:2B:3C:4D:02 +description: Core Router - San Francisco Office +serialNumber: CISCO-RTR-2022-002 +l: San Francisco +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=SW-CORE-NY-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SW-CORE-NY-01 +ipHostNumber: 10.200.1.10 +macAddress: 00:1A:2B:3C:5D:01 +description: Core Switch - New York Office +serialNumber: CISCO-SW-2022-001 +l: New York +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=SW-CORE-SF-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: SW-CORE-SF-01 +ipHostNumber: 10.200.2.10 +macAddress: 00:1A:2B:3C:5D:02 +description: Core Switch - San Francisco Office +serialNumber: CISCO-SW-2022-002 +l: San Francisco +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=FW-EDGE-NY-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: FW-EDGE-NY-01 +ipHostNumber: 10.200.1.100 +macAddress: 00:1A:2B:3C:6D:01 +description: Edge Firewall - New York Office +serialNumber: PALO-FW-2022-001 +l: New York +owner: uid=sdavis,ou=people,dc=testing,dc=local + +dn: cn=FW-EDGE-SF-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: FW-EDGE-SF-01 +ipHostNumber: 10.200.2.100 +macAddress: 00:1A:2B:3C:6D:02 +description: Edge Firewall - San Francisco Office +serialNumber: PALO-FW-2022-002 +l: San Francisco +owner: uid=sdavis,ou=people,dc=testing,dc=local + +dn: cn=AP-NY-FL1-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: AP-NY-FL1-01 +ipHostNumber: 10.0.1.201 +macAddress: 00:1A:2B:3C:7D:01 +description: Wireless Access Point - NY Floor 1 +serialNumber: UBNT-AP-2023-001 +l: New York + +dn: cn=AP-SF-FL2-01,ou=computers,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: ieee802Device +objectClass: top +cn: AP-SF-FL2-01 +ipHostNumber: 10.0.2.201 +macAddress: 00:1A:2B:3C:7D:02 +description: Wireless Access Point - SF Floor 2 +serialNumber: UBNT-AP-2023-002 +l: San Francisco diff --git a/ldif/05-service-accounts.ldif b/ldif/05-service-accounts.ldif new file mode 100644 index 0000000..7ccd149 --- /dev/null +++ b/ldif/05-service-accounts.ldif @@ -0,0 +1,628 @@ +# Service Accounts LDIF +# This file creates service accounts for applications, systems, and automation +# Located in ou=services,dc=testing,dc=local +# These accounts are used by applications and systems, not human users + +# Web Application Service Accounts +dn: uid=svc-webapp-prod,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-webapp-prod +cn: Web Application Service Account +sn: Service +givenName: WebApp +mail: svc-webapp-prod@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20001 +gidNumber: 20001 +homeDirectory: /var/lib/webapp +loginShell: /bin/false +description: Production web application service account + +dn: uid=svc-webapp-staging,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-webapp-staging +cn: Web Application Staging Service Account +sn: Service +givenName: WebAppStaging +mail: svc-webapp-staging@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20002 +gidNumber: 20002 +homeDirectory: /var/lib/webapp-staging +loginShell: /bin/false +description: Staging web application service account + +# API Service Accounts +dn: uid=svc-api-prod,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-api-prod +cn: API Service Account +sn: Service +givenName: API +mail: svc-api-prod@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20010 +gidNumber: 20010 +homeDirectory: /var/lib/api +loginShell: /bin/false +description: Production API service account + +dn: uid=svc-api-gateway,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-api-gateway +cn: API Gateway Service Account +sn: Service +givenName: APIGateway +mail: svc-api-gateway@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20011 +gidNumber: 20011 +homeDirectory: /var/lib/api-gateway +loginShell: /bin/false +description: API Gateway service account + +# Database Service Accounts +dn: uid=svc-db-backup,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-db-backup +cn: Database Backup Service Account +sn: Service +givenName: DBBackup +mail: svc-db-backup@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20020 +gidNumber: 20020 +homeDirectory: /var/lib/db-backup +loginShell: /bin/false +description: Database backup service account + +dn: uid=svc-db-replication,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-db-replication +cn: Database Replication Service Account +sn: Service +givenName: DBReplication +mail: svc-db-replication@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20021 +gidNumber: 20021 +homeDirectory: /var/lib/db-replication +loginShell: /bin/false +description: Database replication service account + +dn: uid=svc-db-monitor,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-db-monitor +cn: Database Monitoring Service Account +sn: Service +givenName: DBMonitor +mail: svc-db-monitor@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20022 +gidNumber: 20022 +homeDirectory: /var/lib/db-monitor +loginShell: /bin/false +description: Database monitoring service account + +# CI/CD Service Accounts +dn: uid=svc-jenkins,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-jenkins +cn: Jenkins CI Service Account +sn: Service +givenName: Jenkins +mail: svc-jenkins@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20030 +gidNumber: 20030 +homeDirectory: /var/lib/jenkins +loginShell: /bin/false +description: Jenkins continuous integration service account + +dn: uid=svc-gitlab-runner,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-gitlab-runner +cn: GitLab Runner Service Account +sn: Service +givenName: GitLabRunner +mail: svc-gitlab-runner@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20031 +gidNumber: 20031 +homeDirectory: /var/lib/gitlab-runner +loginShell: /bin/false +description: GitLab CI runner service account + +dn: uid=svc-artifactory,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-artifactory +cn: Artifactory Service Account +sn: Service +givenName: Artifactory +mail: svc-artifactory@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20032 +gidNumber: 20032 +homeDirectory: /var/lib/artifactory +loginShell: /bin/false +description: Artifactory artifact repository service account + +# Monitoring and Logging Service Accounts +dn: uid=svc-prometheus,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-prometheus +cn: Prometheus Monitoring Service Account +sn: Service +givenName: Prometheus +mail: svc-prometheus@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20040 +gidNumber: 20040 +homeDirectory: /var/lib/prometheus +loginShell: /bin/false +description: Prometheus monitoring service account + +dn: uid=svc-grafana,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-grafana +cn: Grafana Service Account +sn: Service +givenName: Grafana +mail: svc-grafana@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20041 +gidNumber: 20041 +homeDirectory: /var/lib/grafana +loginShell: /bin/false +description: Grafana dashboarding service account + +dn: uid=svc-elasticsearch,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-elasticsearch +cn: Elasticsearch Service Account +sn: Service +givenName: Elasticsearch +mail: svc-elasticsearch@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20042 +gidNumber: 20042 +homeDirectory: /var/lib/elasticsearch +loginShell: /bin/false +description: Elasticsearch search engine service account + +dn: uid=svc-logstash,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-logstash +cn: Logstash Service Account +sn: Service +givenName: Logstash +mail: svc-logstash@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20043 +gidNumber: 20043 +homeDirectory: /var/lib/logstash +loginShell: /bin/false +description: Logstash log processing service account + +dn: uid=svc-kibana,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-kibana +cn: Kibana Service Account +sn: Service +givenName: Kibana +mail: svc-kibana@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20044 +gidNumber: 20044 +homeDirectory: /var/lib/kibana +loginShell: /bin/false +description: Kibana log visualization service account + +dn: uid=svc-nagios,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-nagios +cn: Nagios Monitoring Service Account +sn: Service +givenName: Nagios +mail: svc-nagios@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20045 +gidNumber: 20045 +homeDirectory: /var/lib/nagios +loginShell: /bin/false +description: Nagios monitoring service account + +# Container and Orchestration Service Accounts +dn: uid=svc-docker-registry,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-docker-registry +cn: Docker Registry Service Account +sn: Service +givenName: DockerRegistry +mail: svc-docker-registry@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20050 +gidNumber: 20050 +homeDirectory: /var/lib/docker-registry +loginShell: /bin/false +description: Docker registry service account + +dn: uid=svc-kubernetes,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-kubernetes +cn: Kubernetes Service Account +sn: Service +givenName: Kubernetes +mail: svc-kubernetes@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20051 +gidNumber: 20051 +homeDirectory: /var/lib/kubernetes +loginShell: /bin/false +description: Kubernetes orchestration service account + +# Backup and Storage Service Accounts +dn: uid=svc-backup-system,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-backup-system +cn: System Backup Service Account +sn: Service +givenName: SystemBackup +mail: svc-backup-system@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20060 +gidNumber: 20060 +homeDirectory: /var/lib/backup +loginShell: /bin/false +description: System backup service account + +dn: uid=svc-s3-sync,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-s3-sync +cn: S3 Sync Service Account +sn: Service +givenName: S3Sync +mail: svc-s3-sync@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20061 +gidNumber: 20061 +homeDirectory: /var/lib/s3-sync +loginShell: /bin/false +description: S3 synchronization service account + +dn: uid=svc-nfs-mount,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-nfs-mount +cn: NFS Mount Service Account +sn: Service +givenName: NFSMount +mail: svc-nfs-mount@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20062 +gidNumber: 20062 +homeDirectory: /var/lib/nfs +loginShell: /bin/false +description: NFS mount service account + +# Email and Communication Service Accounts +dn: uid=svc-mail-relay,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-mail-relay +cn: Mail Relay Service Account +sn: Service +givenName: MailRelay +mail: svc-mail-relay@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20070 +gidNumber: 20070 +homeDirectory: /var/lib/mail-relay +loginShell: /bin/false +description: Mail relay service account + +dn: uid=svc-smtp-sender,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-smtp-sender +cn: SMTP Sender Service Account +sn: Service +givenName: SMTPSender +mail: svc-smtp-sender@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20071 +gidNumber: 20071 +homeDirectory: /var/lib/smtp +loginShell: /bin/false +description: SMTP sender service account for application emails + +dn: uid=svc-notification,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-notification +cn: Notification Service Account +sn: Service +givenName: Notification +mail: svc-notification@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20072 +gidNumber: 20072 +homeDirectory: /var/lib/notification +loginShell: /bin/false +description: Notification service account for alerts and messages + +# Integration Service Accounts +dn: uid=svc-salesforce-integration,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-salesforce-integration +cn: Salesforce Integration Service Account +sn: Service +givenName: SalesforceIntegration +mail: svc-salesforce-integration@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20080 +gidNumber: 20080 +homeDirectory: /var/lib/integrations/salesforce +loginShell: /bin/false +description: Salesforce integration service account + +dn: uid=svc-slack-bot,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-slack-bot +cn: Slack Bot Service Account +sn: Service +givenName: SlackBot +mail: svc-slack-bot@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20081 +gidNumber: 20081 +homeDirectory: /var/lib/integrations/slack +loginShell: /bin/false +description: Slack bot integration service account + +dn: uid=svc-jira-integration,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-jira-integration +cn: Jira Integration Service Account +sn: Service +givenName: JiraIntegration +mail: svc-jira-integration@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20082 +gidNumber: 20082 +homeDirectory: /var/lib/integrations/jira +loginShell: /bin/false +description: Jira integration service account + +# Security and Authentication Service Accounts +dn: uid=svc-ldap-sync,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-ldap-sync +cn: LDAP Sync Service Account +sn: Service +givenName: LDAPSync +mail: svc-ldap-sync@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20090 +gidNumber: 20090 +homeDirectory: /var/lib/ldap-sync +loginShell: /bin/false +description: LDAP synchronization service account + +dn: uid=svc-vault,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-vault +cn: HashiCorp Vault Service Account +sn: Service +givenName: Vault +mail: svc-vault@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20091 +gidNumber: 20091 +homeDirectory: /var/lib/vault +loginShell: /bin/false +description: HashiCorp Vault secrets management service account + +dn: uid=svc-cert-manager,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-cert-manager +cn: Certificate Manager Service Account +sn: Service +givenName: CertManager +mail: svc-cert-manager@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20092 +gidNumber: 20092 +homeDirectory: /var/lib/cert-manager +loginShell: /bin/false +description: Certificate management service account + +# Automation and Scheduled Tasks Service Accounts +dn: uid=svc-cron-jobs,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-cron-jobs +cn: Cron Jobs Service Account +sn: Service +givenName: CronJobs +mail: svc-cron-jobs@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20100 +gidNumber: 20100 +homeDirectory: /var/lib/cron +loginShell: /bin/false +description: Scheduled cron jobs service account + +dn: uid=svc-ansible,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-ansible +cn: Ansible Automation Service Account +sn: Service +givenName: Ansible +mail: svc-ansible@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20101 +gidNumber: 20101 +homeDirectory: /var/lib/ansible +loginShell: /bin/false +description: Ansible automation service account + +dn: uid=svc-terraform,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-terraform +cn: Terraform Service Account +sn: Service +givenName: Terraform +mail: svc-terraform@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20102 +gidNumber: 20102 +homeDirectory: /var/lib/terraform +loginShell: /bin/false +description: Terraform infrastructure as code service account + +# Data Processing Service Accounts +dn: uid=svc-etl-pipeline,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-etl-pipeline +cn: ETL Pipeline Service Account +sn: Service +givenName: ETLPipeline +mail: svc-etl-pipeline@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20110 +gidNumber: 20110 +homeDirectory: /var/lib/etl +loginShell: /bin/false +description: ETL data pipeline service account + +dn: uid=svc-data-sync,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-data-sync +cn: Data Synchronization Service Account +sn: Service +givenName: DataSync +mail: svc-data-sync@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20111 +gidNumber: 20111 +homeDirectory: /var/lib/data-sync +loginShell: /bin/false +description: Data synchronization service account + +dn: uid=svc-analytics,ou=services,dc=testing,dc=local +objectClass: inetOrgPerson +objectClass: posixAccount +objectClass: shadowAccount +objectClass: top +uid: svc-analytics +cn: Analytics Service Account +sn: Service +givenName: Analytics +mail: svc-analytics@testing.local +userPassword: {SSHA}Vj/QLoVDZbjklfhV/e6JdTo8MUNRy9dN +uidNumber: 20112 +gidNumber: 20112 +homeDirectory: /var/lib/analytics +loginShell: /bin/false +description: Analytics processing service account diff --git a/ldif/06-groups.ldif b/ldif/06-groups.ldif new file mode 100644 index 0000000..9998b7f --- /dev/null +++ b/ldif/06-groups.ldif @@ -0,0 +1,567 @@ +# Groups LDIF +# This file creates comprehensive departmental, functional, and security groups +# Located in ou=groups,dc=testing,dc=local + +# ========================================== +# DEPARTMENT GROUPS +# ========================================== + +# IT Department Groups +dn: cn=it-all,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: it-all +description: All IT Department Members +member: uid=bwilson,ou=people,dc=testing,dc=local +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=sdavis,ou=people,dc=testing,dc=local +member: uid=tmartinez,ou=people,dc=testing,dc=local + +dn: cn=it-infrastructure,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: it-infrastructure +description: IT Infrastructure Team +member: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=it-security,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: it-security +description: IT Security Team +member: uid=sdavis,ou=people,dc=testing,dc=local + +dn: cn=it-support,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: it-support +description: IT Support and Help Desk Team +member: uid=tmartinez,ou=people,dc=testing,dc=local + +# Engineering Department Groups +dn: cn=engineering-all,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: engineering-all +description: All Engineering Department Members +member: uid=aanderson,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=ejackson,ou=people,dc=testing,dc=local +member: uid=rwhite,ou=people,dc=testing,dc=local +member: uid=kharris,ou=people,dc=testing,dc=local +member: uid=jdoe,ou=people,dc=testing,dc=local +member: uid=jsmith,ou=people,dc=testing,dc=local + +dn: cn=engineering-software,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: engineering-software +description: Software Engineering Team +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=ejackson,ou=people,dc=testing,dc=local +member: uid=jdoe,ou=people,dc=testing,dc=local +member: uid=jsmith,ou=people,dc=testing,dc=local + +dn: cn=engineering-qa,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: engineering-qa +description: Quality Assurance Team +member: uid=rwhite,ou=people,dc=testing,dc=local + +dn: cn=engineering-devops,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: engineering-devops +description: DevOps and Platform Engineering Team +member: uid=kharris,ou=people,dc=testing,dc=local + +# HR Department Groups +dn: cn=hr-all,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: hr-all +description: All Human Resources Department Members +member: uid=lmartin,ou=people,dc=testing,dc=local +member: uid=jthompson,ou=people,dc=testing,dc=local + +# Finance Department Groups +dn: cn=finance-all,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: finance-all +description: All Finance Department Members +member: uid=pgarcia,ou=people,dc=testing,dc=local +member: uid=cmiller,ou=people,dc=testing,dc=local +member: uid=swilson,ou=people,dc=testing,dc=local + +# Sales Department Groups +dn: cn=sales-all,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: sales-all +description: All Sales Department Members +member: uid=rmoore,ou=people,dc=testing,dc=local +member: uid=ntaylor,ou=people,dc=testing,dc=local +member: uid=banderson,ou=people,dc=testing,dc=local +member: uid=amartin,ou=people,dc=testing,dc=local + +dn: cn=sales-enterprise,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: sales-enterprise +description: Enterprise Sales Team +member: uid=ntaylor,ou=people,dc=testing,dc=local + +dn: cn=sales-smb,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: sales-smb +description: Small and Medium Business Sales Team +member: uid=banderson,ou=people,dc=testing,dc=local + +# Marketing Department Groups +dn: cn=marketing-all,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: marketing-all +description: All Marketing Department Members +member: uid=jlee,ou=people,dc=testing,dc=local +member: uid=mperez,ou=people,dc=testing,dc=local +member: uid=drobinson,ou=people,dc=testing,dc=local + +dn: cn=marketing-digital,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: marketing-digital +description: Digital Marketing Team +member: uid=mperez,ou=people,dc=testing,dc=local + +dn: cn=marketing-content,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: marketing-content +description: Content and Communications Team +member: uid=drobinson,ou=people,dc=testing,dc=local + +# Operations Department Groups +dn: cn=operations-all,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: operations-all +description: All Operations Department Members +member: uid=jclark,ou=people,dc=testing,dc=local +member: uid=erodriguez,ou=people,dc=testing,dc=local + +# Customer Success Department Groups +dn: cn=customer-success-all,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: customer-success-all +description: All Customer Success Department Members +member: uid=slewis,ou=people,dc=testing,dc=local +member: uid=kwalker,ou=people,dc=testing,dc=local + +# Legal Department Groups +dn: cn=legal-all,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: legal-all +description: All Legal Department Members +member: uid=dhall,ou=people,dc=testing,dc=local +member: uid=tyoung,ou=people,dc=testing,dc=local + +# Executive Groups +dn: cn=executive,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: executive +description: Executive Leadership Team +member: uid=cking,ou=people,dc=testing,dc=local +member: uid=gwright,ou=people,dc=testing,dc=local +member: uid=llopez,ou=people,dc=testing,dc=local +member: uid=pgarcia,ou=people,dc=testing,dc=local +member: uid=aanderson,ou=people,dc=testing,dc=local +member: uid=rmoore,ou=people,dc=testing,dc=local + +# ========================================== +# FUNCTIONAL/ROLE-BASED GROUPS +# ========================================== + +dn: cn=managers,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: managers +description: All Managers and Directors +member: uid=bwilson,ou=people,dc=testing,dc=local +member: uid=aanderson,ou=people,dc=testing,dc=local +member: uid=lmartin,ou=people,dc=testing,dc=local +member: uid=rmoore,ou=people,dc=testing,dc=local +member: uid=jlee,ou=people,dc=testing,dc=local +member: uid=jclark,ou=people,dc=testing,dc=local +member: uid=slewis,ou=people,dc=testing,dc=local + +dn: cn=senior-staff,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: senior-staff +description: Senior Staff Members +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=cmiller,ou=people,dc=testing,dc=local +member: uid=mperez,ou=people,dc=testing,dc=local + +# ========================================== +# SECURITY AND ACCESS GROUPS +# ========================================== + +dn: cn=system-administrators,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: system-administrators +description: System Administrators with elevated privileges +member: uid=admin,ou=people,dc=testing,dc=local +member: uid=bwilson,ou=people,dc=testing,dc=local +member: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=security-team,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: security-team +description: Security Team Members +member: uid=sdavis,ou=people,dc=testing,dc=local +member: uid=bwilson,ou=people,dc=testing,dc=local + +dn: cn=database-admins,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: database-admins +description: Database Administrators +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local + +dn: cn=network-admins,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: network-admins +description: Network Administrators +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=sdavis,ou=people,dc=testing,dc=local + +dn: cn=vpn-users,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: vpn-users +description: Users with VPN access +member: uid=bwilson,ou=people,dc=testing,dc=local +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=sdavis,ou=people,dc=testing,dc=local +member: uid=aanderson,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=kharris,ou=people,dc=testing,dc=local +member: uid=cking,ou=people,dc=testing,dc=local +member: uid=gwright,ou=people,dc=testing,dc=local + +dn: cn=ssh-access,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: ssh-access +description: Users with SSH server access +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=sdavis,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=ejackson,ou=people,dc=testing,dc=local +member: uid=kharris,ou=people,dc=testing,dc=local + +dn: cn=production-access,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: production-access +description: Users with production environment access +member: uid=bwilson,ou=people,dc=testing,dc=local +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=aanderson,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=kharris,ou=people,dc=testing,dc=local +member: uid=gwright,ou=people,dc=testing,dc=local + +dn: cn=sudo-users,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: sudo-users +description: Users with sudo privileges +member: uid=admin,ou=people,dc=testing,dc=local +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=sdavis,ou=people,dc=testing,dc=local + +# ========================================== +# APPLICATION ACCESS GROUPS +# ========================================== + +dn: cn=gitlab-users,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: gitlab-users +description: GitLab Users +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=ejackson,ou=people,dc=testing,dc=local +member: uid=rwhite,ou=people,dc=testing,dc=local +member: uid=kharris,ou=people,dc=testing,dc=local +member: uid=jdoe,ou=people,dc=testing,dc=local +member: uid=jsmith,ou=people,dc=testing,dc=local + +dn: cn=jira-users,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: jira-users +description: Jira Users +member: uid=aanderson,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=ejackson,ou=people,dc=testing,dc=local +member: uid=rwhite,ou=people,dc=testing,dc=local +member: uid=kharris,ou=people,dc=testing,dc=local +member: uid=jdoe,ou=people,dc=testing,dc=local +member: uid=jsmith,ou=people,dc=testing,dc=local +member: uid=jclark,ou=people,dc=testing,dc=local + +dn: cn=confluence-users,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: confluence-users +description: Confluence Wiki Users +member: uid=aanderson,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=ejackson,ou=people,dc=testing,dc=local +member: uid=jdoe,ou=people,dc=testing,dc=local +member: uid=jsmith,ou=people,dc=testing,dc=local +member: uid=jlee,ou=people,dc=testing,dc=local +member: uid=drobinson,ou=people,dc=testing,dc=local + +dn: cn=monitoring-access,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: monitoring-access +description: Monitoring System Access (Grafana, Prometheus) +member: uid=bwilson,ou=people,dc=testing,dc=local +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=sdavis,ou=people,dc=testing,dc=local +member: uid=kharris,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local + +dn: cn=elk-access,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: elk-access +description: ELK Stack Access (Elasticsearch, Logstash, Kibana) +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=sdavis,ou=people,dc=testing,dc=local +member: uid=kharris,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local + +dn: cn=salesforce-users,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: salesforce-users +description: Salesforce CRM Users +member: uid=rmoore,ou=people,dc=testing,dc=local +member: uid=ntaylor,ou=people,dc=testing,dc=local +member: uid=banderson,ou=people,dc=testing,dc=local +member: uid=amartin,ou=people,dc=testing,dc=local +member: uid=slewis,ou=people,dc=testing,dc=local + +dn: cn=crm-admins,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: crm-admins +description: CRM Administrators +member: uid=rmoore,ou=people,dc=testing,dc=local + +# ========================================== +# PROJECT GROUPS +# ========================================== + +dn: cn=project-phoenix,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: project-phoenix +description: Project Phoenix Team Members +member: uid=aanderson,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=ejackson,ou=people,dc=testing,dc=local +member: uid=rwhite,ou=people,dc=testing,dc=local +member: uid=jdoe,ou=people,dc=testing,dc=local + +dn: cn=project-atlas,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: project-atlas +description: Project Atlas Team Members +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=jsmith,ou=people,dc=testing,dc=local +member: uid=kharris,ou=people,dc=testing,dc=local + +dn: cn=project-nimbus,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: project-nimbus +description: Project Nimbus Team Members +member: uid=kharris,ou=people,dc=testing,dc=local +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=sdavis,ou=people,dc=testing,dc=local + +# ========================================== +# LOCATION-BASED GROUPS +# ========================================== + +dn: cn=location-newyork,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: location-newyork +description: New York Office Employees +member: uid=bwilson,ou=people,dc=testing,dc=local +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=tmartinez,ou=people,dc=testing,dc=local +member: uid=kharris,ou=people,dc=testing,dc=local +member: uid=cking,ou=people,dc=testing,dc=local +member: uid=rmoore,ou=people,dc=testing,dc=local + +dn: cn=location-sanfrancisco,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: location-sanfrancisco +description: San Francisco Office Employees +member: uid=sdavis,ou=people,dc=testing,dc=local +member: uid=aanderson,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=rwhite,ou=people,dc=testing,dc=local +member: uid=gwright,ou=people,dc=testing,dc=local +member: uid=ntaylor,ou=people,dc=testing,dc=local + +dn: cn=location-remote,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: location-remote +description: Remote Employees +member: uid=ejackson,ou=people,dc=testing,dc=local +member: uid=banderson,ou=people,dc=testing,dc=local +member: uid=amartin,ou=people,dc=testing,dc=local + +# ========================================== +# SERVICE ACCOUNT GROUPS +# ========================================== + +dn: cn=service-accounts,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: service-accounts +description: All Service Accounts +member: uid=svc-webapp-prod,ou=services,dc=testing,dc=local +member: uid=svc-api-prod,ou=services,dc=testing,dc=local +member: uid=svc-db-backup,ou=services,dc=testing,dc=local +member: uid=svc-jenkins,ou=services,dc=testing,dc=local +member: uid=svc-prometheus,ou=services,dc=testing,dc=local +member: uid=svc-grafana,ou=services,dc=testing,dc=local +member: uid=svc-ldap-sync,ou=services,dc=testing,dc=local + +dn: cn=service-production,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: service-production +description: Production Service Accounts +member: uid=svc-webapp-prod,ou=services,dc=testing,dc=local +member: uid=svc-api-prod,ou=services,dc=testing,dc=local +member: uid=svc-db-backup,ou=services,dc=testing,dc=local + +dn: cn=service-monitoring,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: service-monitoring +description: Monitoring Service Accounts +member: uid=svc-prometheus,ou=services,dc=testing,dc=local +member: uid=svc-grafana,ou=services,dc=testing,dc=local +member: uid=svc-nagios,ou=services,dc=testing,dc=local +member: uid=svc-db-monitor,ou=services,dc=testing,dc=local + +dn: cn=service-cicd,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: service-cicd +description: CI/CD Service Accounts +member: uid=svc-jenkins,ou=services,dc=testing,dc=local +member: uid=svc-gitlab-runner,ou=services,dc=testing,dc=local +member: uid=svc-artifactory,ou=services,dc=testing,dc=local + +dn: cn=service-automation,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: service-automation +description: Automation Service Accounts +member: uid=svc-ansible,ou=services,dc=testing,dc=local +member: uid=svc-terraform,ou=services,dc=testing,dc=local +member: uid=svc-cron-jobs,ou=services,dc=testing,dc=local + +# ========================================== +# SPECIAL PURPOSE GROUPS +# ========================================== + +dn: cn=all-employees,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: all-employees +description: All Company Employees +member: uid=jdoe,ou=people,dc=testing,dc=local +member: uid=jsmith,ou=people,dc=testing,dc=local +member: uid=admin,ou=people,dc=testing,dc=local +member: uid=testuser,ou=people,dc=testing,dc=local +member: uid=bwilson,ou=people,dc=testing,dc=local +member: uid=mjohnson,ou=people,dc=testing,dc=local +member: uid=sdavis,ou=people,dc=testing,dc=local +member: uid=tmartinez,ou=people,dc=testing,dc=local +member: uid=aanderson,ou=people,dc=testing,dc=local +member: uid=dthomas,ou=people,dc=testing,dc=local +member: uid=ejackson,ou=people,dc=testing,dc=local +member: uid=rwhite,ou=people,dc=testing,dc=local +member: uid=kharris,ou=people,dc=testing,dc=local +member: uid=lmartin,ou=people,dc=testing,dc=local +member: uid=jthompson,ou=people,dc=testing,dc=local +member: uid=pgarcia,ou=people,dc=testing,dc=local +member: uid=cmiller,ou=people,dc=testing,dc=local +member: uid=swilson,ou=people,dc=testing,dc=local +member: uid=rmoore,ou=people,dc=testing,dc=local +member: uid=ntaylor,ou=people,dc=testing,dc=local +member: uid=banderson,ou=people,dc=testing,dc=local +member: uid=amartin,ou=people,dc=testing,dc=local +member: uid=jlee,ou=people,dc=testing,dc=local +member: uid=mperez,ou=people,dc=testing,dc=local +member: uid=drobinson,ou=people,dc=testing,dc=local +member: uid=jclark,ou=people,dc=testing,dc=local +member: uid=erodriguez,ou=people,dc=testing,dc=local +member: uid=slewis,ou=people,dc=testing,dc=local +member: uid=kwalker,ou=people,dc=testing,dc=local +member: uid=dhall,ou=people,dc=testing,dc=local +member: uid=tyoung,ou=people,dc=testing,dc=local +member: uid=cking,ou=people,dc=testing,dc=local +member: uid=gwright,ou=people,dc=testing,dc=local +member: uid=llopez,ou=people,dc=testing,dc=local + +dn: cn=remote-workers,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: remote-workers +description: Remote Workers Group +member: uid=ejackson,ou=people,dc=testing,dc=local +member: uid=banderson,ou=people,dc=testing,dc=local +member: uid=amartin,ou=people,dc=testing,dc=local + +dn: cn=onboarding,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: onboarding +description: New Employees in Onboarding +member: uid=testuser,ou=people,dc=testing,dc=local + +dn: cn=alumni,ou=groups,dc=testing,dc=local +objectClass: groupOfNames +objectClass: top +cn: alumni +description: Former Employees (Alumni) +member: uid=testuser,ou=people,dc=testing,dc=local diff --git a/ldif/07-resources.ldif b/ldif/07-resources.ldif new file mode 100644 index 0000000..925b77b --- /dev/null +++ b/ldif/07-resources.ldif @@ -0,0 +1,561 @@ +# Shared Resources LDIF +# This file creates shared resources such as conference rooms, printers, and equipment +# Located in ou=resources,dc=testing,dc=local + +# ========================================== +# CONFERENCE ROOMS - NEW YORK OFFICE +# ========================================== + +dn: cn=NY-CR-101,ou=resources,dc=testing,dc=local +objectClass: room +objectClass: device +objectClass: top +cn: NY-CR-101 +roomNumber: 101 +description: Small Conference Room - 4 person capacity +l: New York +telephoneNumber: +1-555-8101 +seeAlso: Building A, Floor 1 +ou: Conference Rooms + +dn: cn=NY-CR-201,ou=resources,dc=testing,dc=local +objectClass: room +objectClass: device +objectClass: top +cn: NY-CR-201 +roomNumber: 201 +description: Medium Conference Room - 8 person capacity, Video Conference Enabled +l: New York +telephoneNumber: +1-555-8201 +seeAlso: Building A, Floor 2 +ou: Conference Rooms + +dn: cn=NY-CR-301-Boardroom,ou=resources,dc=testing,dc=local +objectClass: room +objectClass: device +objectClass: top +cn: NY-CR-301-Boardroom +roomNumber: 301 +description: Executive Boardroom - 20 person capacity, Video Conference, Whiteboard +l: New York +telephoneNumber: +1-555-8301 +seeAlso: Building A, Floor 3 +ou: Conference Rooms + +dn: cn=NY-CR-202-Innovation,ou=resources,dc=testing,dc=local +objectClass: room +objectClass: device +objectClass: top +cn: NY-CR-202-Innovation +roomNumber: 202 +description: Innovation Lab - 12 person capacity, Collaborative Space +l: New York +telephoneNumber: +1-555-8202 +seeAlso: Building A, Floor 2 +ou: Conference Rooms + +dn: cn=NY-CR-Huddle-A,ou=resources,dc=testing,dc=local +objectClass: room +objectClass: device +objectClass: top +cn: NY-CR-Huddle-A +roomNumber: Huddle-A +description: Huddle Room A - 2 person capacity, Phone Booth Style +l: New York +seeAlso: Building A, Floor 1 +ou: Conference Rooms + +# ========================================== +# CONFERENCE ROOMS - SAN FRANCISCO OFFICE +# ========================================== + +dn: cn=SF-CR-101,ou=resources,dc=testing,dc=local +objectClass: room +objectClass: device +objectClass: top +cn: SF-CR-101 +roomNumber: 101 +description: Small Conference Room - 4 person capacity +l: San Francisco +telephoneNumber: +1-555-7101 +seeAlso: Building B, Floor 1 +ou: Conference Rooms + +dn: cn=SF-CR-201,ou=resources,dc=testing,dc=local +objectClass: room +objectClass: device +objectClass: top +cn: SF-CR-201 +roomNumber: 201 +description: Medium Conference Room - 10 person capacity, Video Conference Enabled +l: San Francisco +telephoneNumber: +1-555-7201 +seeAlso: Building B, Floor 2 +ou: Conference Rooms + +dn: cn=SF-CR-301-Skyline,ou=resources,dc=testing,dc=local +objectClass: room +objectClass: device +objectClass: top +cn: SF-CR-301-Skyline +roomNumber: 301 +description: Skyline Conference Room - 16 person capacity, Video Conference, Smart Board +l: San Francisco +telephoneNumber: +1-555-7301 +seeAlso: Building B, Floor 3 +ou: Conference Rooms + +dn: cn=SF-CR-AllHands,ou=resources,dc=testing,dc=local +objectClass: room +objectClass: device +objectClass: top +cn: SF-CR-AllHands +roomNumber: All-Hands +description: All Hands Meeting Room - 100 person capacity, Theater Style +l: San Francisco +telephoneNumber: +1-555-7401 +seeAlso: Building B, Floor 1 +ou: Conference Rooms + +# ========================================== +# CONFERENCE ROOMS - LONDON OFFICE +# ========================================== + +dn: cn=LON-CR-Thames,ou=resources,dc=testing,dc=local +objectClass: room +objectClass: device +objectClass: top +cn: LON-CR-Thames +roomNumber: Thames +description: Thames Conference Room - 8 person capacity, Video Conference +l: London +telephoneNumber: +44-20-5551-0101 +seeAlso: London Office, Floor 1 +ou: Conference Rooms + +dn: cn=LON-CR-Westminster,ou=resources,dc=testing,dc=local +objectClass: room +objectClass: device +objectClass: top +cn: LON-CR-Westminster +roomNumber: Westminster +description: Westminster Conference Room - 12 person capacity, Video Conference +l: London +telephoneNumber: +44-20-5551-0102 +seeAlso: London Office, Floor 2 +ou: Conference Rooms + +# ========================================== +# PRINTERS - NEW YORK OFFICE +# ========================================== + +dn: cn=NY-PRINTER-FL1-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-PRINTER-FL1-01 +ipHostNumber: 10.0.1.210 +description: Color Laser Printer - HP LaserJet Enterprise, Floor 1 +l: New York +serialNumber: HP-LJ-2023-NY-001 +ou: Printers +physicalDeliveryOfficeName: Building A, Floor 1, Copy Room + +dn: cn=NY-PRINTER-FL2-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-PRINTER-FL2-01 +ipHostNumber: 10.0.1.211 +description: B&W Laser Printer - HP LaserJet Pro, Floor 2 +l: New York +serialNumber: HP-LJ-2023-NY-002 +ou: Printers +physicalDeliveryOfficeName: Building A, Floor 2, Near IT + +dn: cn=NY-MFP-FL1-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-MFP-FL1-01 +ipHostNumber: 10.0.1.220 +description: Multi-Function Printer - Xerox WorkCentre, Print/Copy/Scan/Fax +l: New York +serialNumber: XEROX-WC-2023-NY-001 +ou: Printers +physicalDeliveryOfficeName: Building A, Floor 1, Main Copy Room + +dn: cn=NY-MFP-FL3-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-MFP-FL3-01 +ipHostNumber: 10.0.1.221 +description: Multi-Function Printer - Xerox WorkCentre, Executive Floor +l: New York +serialNumber: XEROX-WC-2023-NY-002 +ou: Printers +physicalDeliveryOfficeName: Building A, Floor 3, Executive Area + +dn: cn=NY-PLOTTER-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-PLOTTER-01 +ipHostNumber: 10.0.1.230 +description: Large Format Plotter - HP DesignJet, Engineering Plots +l: New York +serialNumber: HP-DJ-2023-NY-001 +ou: Printers +physicalDeliveryOfficeName: Building A, Floor 2, Engineering + +# ========================================== +# PRINTERS - SAN FRANCISCO OFFICE +# ========================================== + +dn: cn=SF-PRINTER-FL1-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: SF-PRINTER-FL1-01 +ipHostNumber: 10.0.2.210 +description: Color Laser Printer - HP LaserJet Enterprise, Floor 1 +l: San Francisco +serialNumber: HP-LJ-2023-SF-001 +ou: Printers +physicalDeliveryOfficeName: Building B, Floor 1, Copy Room + +dn: cn=SF-MFP-FL2-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: SF-MFP-FL2-01 +ipHostNumber: 10.0.2.220 +description: Multi-Function Printer - Xerox WorkCentre, Print/Copy/Scan +l: San Francisco +serialNumber: XEROX-WC-2023-SF-001 +ou: Printers +physicalDeliveryOfficeName: Building B, Floor 2, Main Area + +dn: cn=SF-MFP-FL3-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: SF-MFP-FL3-01 +ipHostNumber: 10.0.2.221 +description: Multi-Function Printer - Canon imageRUNNER, Engineering Area +l: San Francisco +serialNumber: CANON-IR-2023-SF-001 +ou: Printers +physicalDeliveryOfficeName: Building B, Floor 3, Engineering + +# ========================================== +# PROJECTORS AND DISPLAYS +# ========================================== + +dn: cn=NY-PROJ-CR201,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: NY-PROJ-CR201 +description: Conference Room Projector - Epson PowerLite, Conference Room 201 +l: New York +serialNumber: EPSON-PL-2022-001 +ou: Projectors +physicalDeliveryOfficeName: Building A, Floor 2, Room 201 + +dn: cn=NY-PROJ-CR301,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: NY-PROJ-CR301 +description: Conference Room Projector - Sony VPL, Boardroom +l: New York +serialNumber: SONY-VPL-2022-001 +ou: Projectors +physicalDeliveryOfficeName: Building A, Floor 3, Boardroom + +dn: cn=SF-PROJ-CR201,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: SF-PROJ-CR201 +description: Conference Room Projector - Epson PowerLite, Conference Room 201 +l: San Francisco +serialNumber: EPSON-PL-2022-002 +ou: Projectors +physicalDeliveryOfficeName: Building B, Floor 2, Room 201 + +dn: cn=NY-DISPLAY-Lobby,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: NY-DISPLAY-Lobby +description: Digital Signage Display - Samsung 75 inch, Lobby +l: New York +serialNumber: SAMSUNG-DS-2023-001 +ou: Displays +physicalDeliveryOfficeName: Building A, Floor 1, Main Lobby + +dn: cn=SF-DISPLAY-Lobby,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: SF-DISPLAY-Lobby +description: Digital Signage Display - LG 65 inch, Lobby +l: San Francisco +serialNumber: LG-DS-2023-001 +ou: Displays +physicalDeliveryOfficeName: Building B, Floor 1, Main Lobby + +# ========================================== +# VIDEO CONFERENCE EQUIPMENT +# ========================================== + +dn: cn=NY-VC-CR201,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-VC-CR201 +ipHostNumber: 10.0.1.240 +description: Video Conference System - Zoom Room, Conference Room 201 +l: New York +serialNumber: ZOOM-RM-2023-NY-001 +ou: Video Conference +physicalDeliveryOfficeName: Building A, Floor 2, Room 201 + +dn: cn=NY-VC-CR301,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-VC-CR301 +ipHostNumber: 10.0.1.241 +description: Video Conference System - Cisco Webex Room Kit, Boardroom +l: New York +serialNumber: CISCO-WX-2023-NY-001 +ou: Video Conference +physicalDeliveryOfficeName: Building A, Floor 3, Boardroom + +dn: cn=SF-VC-CR201,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: SF-VC-CR201 +ipHostNumber: 10.0.2.240 +description: Video Conference System - Zoom Room, Conference Room 201 +l: San Francisco +serialNumber: ZOOM-RM-2023-SF-001 +ou: Video Conference +physicalDeliveryOfficeName: Building B, Floor 2, Room 201 + +dn: cn=SF-VC-CR301,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: SF-VC-CR301 +ipHostNumber: 10.0.2.241 +description: Video Conference System - Poly Studio X, Skyline Room +l: San Francisco +serialNumber: POLY-SX-2023-SF-001 +ou: Video Conference +physicalDeliveryOfficeName: Building B, Floor 3, Skyline Room + +# ========================================== +# SHARED WORKSTATIONS AND KIOSKS +# ========================================== + +dn: cn=NY-KIOSK-Lobby,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-KIOSK-Lobby +ipHostNumber: 10.0.1.250 +description: Visitor Check-in Kiosk - Lobby +l: New York +serialNumber: KIOSK-2023-NY-001 +ou: Kiosks +physicalDeliveryOfficeName: Building A, Floor 1, Main Lobby + +dn: cn=NY-HOTDESK-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: NY-HOTDESK-01 +description: Hot Desk Workstation 01 - Available for temporary use +l: New York +serialNumber: DESK-2023-NY-001 +ou: Hot Desks +physicalDeliveryOfficeName: Building A, Floor 2, Open Area + +dn: cn=SF-HOTDESK-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: SF-HOTDESK-01 +description: Hot Desk Workstation 01 - Available for temporary use +l: San Francisco +serialNumber: DESK-2023-SF-001 +ou: Hot Desks +physicalDeliveryOfficeName: Building B, Floor 2, Open Area + +# ========================================== +# NETWORK STORAGE AND FILE SERVERS +# ========================================== + +dn: cn=NY-NAS-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-NAS-01 +ipHostNumber: 10.0.1.30 +description: Network Attached Storage - Synology NAS, Department Shares +l: New York +serialNumber: SYNOLOGY-2023-NY-001 +ou: Storage +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +dn: cn=SF-NAS-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: SF-NAS-01 +ipHostNumber: 10.0.2.30 +description: Network Attached Storage - QNAP NAS, Department Shares +l: San Francisco +serialNumber: QNAP-2023-SF-001 +ou: Storage +owner: uid=mjohnson,ou=people,dc=testing,dc=local + +# ========================================== +# PHONES AND COMMUNICATION EQUIPMENT +# ========================================== + +dn: cn=NY-PHONE-Reception,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-PHONE-Reception +ipHostNumber: 10.0.1.100 +telephoneNumber: +1-555-0100 +description: Reception Desk Phone - Cisco IP Phone +l: New York +serialNumber: CISCO-IP-2023-NY-001 +ou: Phones + +dn: cn=SF-PHONE-Reception,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: SF-PHONE-Reception +ipHostNumber: 10.0.2.100 +telephoneNumber: +1-415-555-0100 +description: Reception Desk Phone - Cisco IP Phone +l: San Francisco +serialNumber: CISCO-IP-2023-SF-001 +ou: Phones + +dn: cn=NY-PHONE-CR301,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-PHONE-CR301 +ipHostNumber: 10.0.1.101 +telephoneNumber: +1-555-8301 +description: Boardroom Conference Phone - Polycom SoundStation +l: New York +serialNumber: POLY-SS-2022-NY-001 +ou: Phones + +# ========================================== +# SPECIALIZED EQUIPMENT +# ========================================== + +dn: cn=NY-SCANNER-FL1,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-SCANNER-FL1 +ipHostNumber: 10.0.1.260 +description: Document Scanner - Fujitsu ScanSnap, High-speed scanner +l: New York +serialNumber: FUJITSU-SS-2023-NY-001 +ou: Scanners +physicalDeliveryOfficeName: Building A, Floor 1, Copy Room + +dn: cn=NY-SHREDDER-FL1,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: NY-SHREDDER-FL1 +description: Document Shredder - Industrial grade, Cross-cut +l: New York +serialNumber: SHRED-2022-NY-001 +ou: Shredders +physicalDeliveryOfficeName: Building A, Floor 1, Copy Room + +dn: cn=SF-SCANNER-FL2,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: SF-SCANNER-FL2 +ipHostNumber: 10.0.2.260 +description: Document Scanner - Epson WorkForce +l: San Francisco +serialNumber: EPSON-WF-2023-SF-001 +ou: Scanners +physicalDeliveryOfficeName: Building B, Floor 2, Copy Room + +dn: cn=NY-LABEL-PRINTER-01,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: NY-LABEL-PRINTER-01 +description: Label Printer - Brother P-Touch, Shipping/Mailroom +l: New York +serialNumber: BROTHER-PT-2023-NY-001 +ou: Label Printers +physicalDeliveryOfficeName: Building A, Floor 1, Mailroom + +# ========================================== +# PARKING AND ACCESS CONTROL +# ========================================== + +dn: cn=NY-PARKING-Garage-A,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: NY-PARKING-Garage-A +description: Parking Garage A - 50 spaces +l: New York +ou: Parking +physicalDeliveryOfficeName: Building A, Underground Garage + +dn: cn=NY-PARKING-Garage-B,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: NY-PARKING-Garage-B +description: Parking Garage B - 30 spaces +l: New York +ou: Parking +physicalDeliveryOfficeName: Building A, Street Level + +dn: cn=SF-PARKING-Lot-Main,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: top +cn: SF-PARKING-Lot-Main +description: Main Parking Lot - 75 spaces +l: San Francisco +ou: Parking +physicalDeliveryOfficeName: Building B, Adjacent Lot + +dn: cn=NY-BADGE-READER-MainEntry,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: NY-BADGE-READER-MainEntry +ipHostNumber: 10.0.1.150 +description: Badge Reader - Main Entry Door, HID ProxCard Reader +l: New York +serialNumber: HID-PR-2022-NY-001 +ou: Access Control + +dn: cn=SF-BADGE-READER-MainEntry,ou=resources,dc=testing,dc=local +objectClass: device +objectClass: ipHost +objectClass: top +cn: SF-BADGE-READER-MainEntry +ipHostNumber: 10.0.2.150 +description: Badge Reader - Main Entry Door, HID ProxCard Reader +l: San Francisco +serialNumber: HID-PR-2022-SF-001 +ou: Access Control