a “I_¬Qã@sÌddlZddlmZddlZddlmZddlmZmZddl m Z ddl Zddl m Z mZmZmZddlmZdd„Zd d „Zd d „ZGd d„de ƒZGdd„de ƒZGdd„de ƒZGdd„deƒZdS)éN)ÚLdbError)ÚdrsuapiÚmisc)Úsystem_session)ÚCommandÚ CommandErrorÚ SuperCommandÚOption)ÚSamDBc Cs”z|j|tjdgd}WnFty^}z.|j\}}|tjkrHtd|ƒ‚‚WYd}~n d}~00d|dvrŒt ||ddd d¡¡}nd}|S)znGets the owner of an FSMO role :param roledn: The DN of the FSMO role :param role: The FSMO role Ú fSMORoleOwner©ÚscopeÚattrsz+The '%s' role is not present in this domainNrÚutf8) ÚsearchÚldbÚ SCOPE_BASErÚargsZERR_NO_SUCH_OBJECTrÚDnÚdecode)ÚsamdbZrolednÚroleÚresZe7ÚnumÚmsgÚ master_owner©rú3/usr/lib/python3/dist-packages/samba/netcmd/fsmo.pyÚget_fsmo_roleowner$sÿ      rc Cs(|dkr| ¡}d|}n|dkr8t | ¡¡}d|}| ¡}|j|dgtjdgd} d| dvr zTtt   t  || ddd  d ¡¡  d ¡¡ƒ} tt  || ddd  d ¡¡ƒ} WnLty} z2| j\} }td | ddd|fƒ‚WYd } ~ n d } ~ 00n| d |¡dS|dkrLd| | ¡f}d| ¡| ¡f}n.|dkrzd| | ¡f}d| ¡| ¡f}| ¡}||kr| ¡}|j|dd}td|tƒ||d}t ¡}t  ||¡|_t | tjd¡|d<t |tjd¡|d<z| |¡Wn@tyD}z&|j\} }td||fƒ‚WYd }~n d }~00ztj  |||¡}Wn4tjj!yŽ}ztd|ƒ‚WYd }~n d }~00z:|d}|d}t"j#}|dd …}tj $||| ||¡Wn4tjj!yþ}ztd|ƒ‚WYd }~n d }~00| d|¡dS| d|¡dSd S)zTransfer dns FSMO role. Ú domaindnsú$CN=Infrastructure,DC=DomainDnsZones,Ú forestdnsú$CN=Infrastructure,DC=ForestDnsZones,r zextended_dn:1:1)rr ZcontrolsrrÚGUIDz+No GUID found in naming master DN %s : %s Nz0* The '%s' role does not have an FSMO roleowner Fz %s._msdcs.%sT©Zfallback_machinez ldap://%s©ZurlZ session_infoZ credentialsÚlpZfSMORoleOwner_DelZfSMORoleOwner_AddzFailed to add role '%s': %szDrsuapi Connect failedéézReplication failedú&FSMO transfer of '%s' role successful ú'This DC already has the '%s' FSMO role )%Ú domain_dnÚsambaÚdn_from_dns_nameÚforest_dns_nameZ host_dns_namerrrÚstrrr#rrZget_extended_componentrrrÚwriteZdomain_dns_nameZ get_ntds_GUIDÚget_dsServiceNameÚ get_loadparmÚget_credentialsr rÚMessageÚdnÚMessageElementZFLAG_MOD_DELETEZ FLAG_MOD_ADDÚmodifyZ drs_utilsZdrsuapi_connectZ drsExceptionrZDRSUAPI_DRS_WRIT_REPZsendDsReplicaSync)ÚoutfÚ sambaoptsÚcredoptsrrr+Z role_objectÚ forest_dnZnew_host_dns_namerZ master_guidrZe3rrZmaster_dns_nameZ new_dns_nameÚ new_ownerr&ÚcredsÚmZe5Z connectionÚeZdrsuapi_connectionZdrsuapi_handleZ req_optionsZNCZestrrrrÚtransfer_dns_role;s¬ ý ÿþ& ÿ ÿÿ ÿÿ þþþ &ÿ  ý r@c Cs| ¡}d|}d| ¡}d|}t| ¡ƒ}t || ¡¡}t ¡} t |d¡| _|dkr€t |||ƒ} t  dtj d¡| d<nê|dkrÞt |||ƒ} |j |tj d gd } t| ƒd ks¸J‚| d d d } t  | tj d ¡| d <nŒ|dkr t |||ƒ} t  dtj d¡| d<n`|dkr6t |||ƒ} t  dtj d¡| d<n4|dkrbt |||ƒ} t  dtj d¡| d<ntdƒ‚| dur†| d|¡dS| |kròz| | ¡Wn@tyÞ} z&| j\}}td||fƒ‚WYd} ~ n d} ~ 00| d|¡dS| d|¡dSdS)zTransfer standard FSMO role. úCN=RID Manager$,CN=System,úCN=Partitions,%súCN=Infrastructure,ÚÚridÚ1ZbecomeRidMasterÚpdcZ objectSidr r'rZ becomePdcÚnamingZbecomeDomainMasterÚinfrastructureZbecomeInfrastructureMasterÚschemaZbecomeSchemaMasterúInvalid FSMO role.NzECannot transfer, no DC assigned to the %s role. Try 'seize' instead Fz Transfer of '%s' role failed: %sr)Tr*)r+Úget_config_basednr/Úget_schema_basednrrr1r4r5rr6ÚFLAG_MOD_REPLACErrÚlenrr0r7rr)r8rrr+Úrid_dnÚ naming_dnÚinfrastructure_dnÚ schema_dnr<r>rrZsidZe6rrrrrÚ transfer_role•sv   þ  ÿþ   þ   þ   þ    ÿrTc@sxeZdZdZdZejejejdœZ e ddde ddd e d d d d e ddgd¢ddgZ gZ dd„Zdd„Zddd„ZdS)Úcmd_fsmo_seizezSeize the role.ú%prog [options]©r9r:Ú versionoptsú-Hú--URLú%LDB URL for database or target serverÚURLÚH©ÚhelpÚtypeÚmetavarÚdestz--forcez5Force seizing of role without attempting to transfer.Ú store_true)r_Úactionú--roleÚchoice©rErGrIrJrHrr!ÚalláIThe FSMO role to seize or transfer. rid=RidAllocationMasterRole schema=SchemaMasterRole pdc=PdcEmulationMasterRole naming=DomainNamingMasterRole infrastructure=InfrastructureMasterRole domaindns=DomainDnsZonesMasterRole forestdns=ForestDnsZonesMasterRole all=all of the above You must provide an Admin user and password.©r`Úchoicesr_c Cs¦| ¡}| ¡}d||_d| ¡|_t| ¡ƒ|_d||_t   ¡}|dkrbt   ||j¡|_ nn|dkrzt   ||¡|_ nV|dkr”t   ||j¡|_ n<|dkr®t   ||j¡|_ n"|dkrÈt   ||j¡|_ nt d ƒ‚d }t||j |ƒ}|d ur^||krH|d ur\| d ¡zt|j||ƒWnd }| d¡Yn0| d¡d Sn|j d|¡d Snd }|d usr|r¢| d|¡t  |t jd¡|d<| ¡z | |¡|dkrº| ¡WnÈty„} z®| j\} } |dkrX| t jkrX| ¡| ¡z| |¡WnHtyT} z.| j\} } | ¡t d|| fƒ‚WYd } ~ n d } ~ 00n| ¡t d|| fƒ‚WYd } ~ n d } ~ 00| ¡|j d|¡d Sd S)zSeize standard fsmo role. rCrBrArErGrHrIrJrKFNúAttempting transfer...Tú!Transfer unsuccessful, seizing...z%Transfer successful, not seizing roler*úSeizing %s FSMO role...r úFailed to seize '%s' role: %sú#FSMO seize of '%s' role successful )r1r+rRrLrQr/rMrSrPrr4rr5rrÚmessagerTr8r0r6rNZtransaction_startr7Zcreate_own_rid_setrrZERR_ENTRY_ALREADY_EXISTSZtransaction_cancelZtransaction_commit) ÚselfrrÚforceÚ serviceNamer+r>ÚseizerZe1rrr?rrrÚ seize_roleõs†       ÿþ     ÿÿzcmd_fsmo_seize.seize_rolec Cs¢| ¡}| ¡}t | ¡¡} d||_d| |_t ¡} |dkrTt  ||j¡| _ n"|dkrnt  ||j¡| _ nt dƒ‚d} t || j |ƒ} | dur| |krî|durì|  d¡zt|j||||ƒWnd } |  d ¡Yn0|  d ¡d Sn|j d |¡dSnd } |dus| rž|  d |¡t |tjd¡| d<z| | ¡Wn@tyˆ} z&| j\}}t d||fƒ‚WYd} ~ n d} ~ 00|j d|¡d SdS)zSeize DNS FSMO role. r r"rr!rKFNrlTrmz&Transfer successful, not seizing role r*rnr rorp)r1r+r,r-r.Ú domaindns_dnÚ forestdns_dnrr4rr5rrrqr@r8r0r6rNr7rr)rrrrr:r9rXrsrtr+r;r>rurZe2rrrrrÚseize_dns_roleNs\     ÿ ÿþ ÿzcmd_fsmo_seize.seize_dns_roleNc CsØ| ¡}|j|dd}t|tƒ||d} |dkr | d| |¡| d| |¡| d| |¡| d| |¡| d | |¡| d | ||||¡| d | ||||¡n4|d ks°|d krÆ| || ||||¡n| || |¡dS© NTr$r%rhrErGrHrIrJrr!)r2r3r rrvry© rrrsr]rr:r9rXr&r=rrrrÚrun‡s,ÿ ÿ ÿ ÿzcmd_fsmo_seize.run)NNNNNN)Ú__name__Ú __module__Ú __qualname__Ú__doc__ÚsynopsisÚoptionsÚ SambaOptionsÚCredentialsOptionsÚVersionOptionsÚtakes_optiongroupsr r/Ú takes_optionsÚ takes_argsrvryr|rrrrrUÔs.ýÿþ þúY9ÿrUc@sJeZdZdZdZejejejdœZ e ddde ddd gZ gZ d d d „Zd S)Ú cmd_fsmo_showzShow the roles.rVrWrYrZr[r\r]r^Nc Cs@| ¡}|j|dd}t|tƒ||d}| ¡}t | ¡¡} d|} d| ¡} |  ¡} d|} d|}d| }| d d f| d d f| d df|ddf| ddf|ddf|ddfg}|D]ˆ}|\}}}z>t |||ƒ}|durî|  d|t |ƒf¡n|  d|¡Wq²t y8}z |  d||j f¡WYd}~q²d}~00q²dS)NTr$r%rCrBrAr r"rJZSchemaMasterRolerIZInfrastructureMasterRolerEZRidAllocationMasterRolerGZPdcEmulationMasterRolerHZDomainNamingMasterRolerZDomainDnsZonesMasterRoler!ZForestDnsZonesMasterRolez %s owner: %sz%s has no current ownerz%s: * %s)r2r3r rr+r,r-r.rLrMrrqr/r)rrr]r:r9rXr&r=rr+r;rRrQrSrPrwrxZmastersZmasterr5Z short_nameZ long_namer?rrrr|´s<ÿ ú   zcmd_fsmo_show.run)NNNN©r}r~rr€rr‚rƒr„r…r†r r/r‡rˆr|rrrrr‰¢sýÿÿr‰c@s\eZdZdZdZejejejdœZ e ddde ddd e d d gd ¢d dgZ gZ ddd„ZdS)Úcmd_fsmo_transferzTransfer the role.rVrWrYrZr[r\r]r^rerfrgrirjNc CsÒ| ¡}|j|dd}t|tƒ||d} |dkrœt|jd| ƒt|jd| ƒt|jd| ƒt|jd| ƒt|jd | ƒt|j||d | ƒt|j||d | ƒn2|d ks¬|d krÀt|j|||| ƒnt|j|| ƒdSrz)r2r3r rrTr8r@r{rrrr|÷s(ÿ ÿ ÿzcmd_fsmo_transfer.run)NNNNNNrŠrrrrr‹Ùs"ýÿ þýÿr‹c@s2eZdZdZiZeƒed<eƒed<eƒed<dS)Úcmd_fsmoz:Flexible Single Master Operations (FSMO) roles management.ruZshowZtransferN)r}r~rr€Z subcommandsrUr‰r‹rrrrrŒs   rŒ)r,Z samba.getoptZgetoptr‚rrZ samba.dcerpcrrZ samba.authrZsamba.drs_utilsZ samba.netcmdrrrr Z samba.samdbr rr@rTrUr‰r‹rŒrrrrÚs     Z?O78