diff options
author | Andrew Bartlett <abartlet@samba.org> | 2010-03-25 16:30:54 +1100 |
---|---|---|
committer | Andrew Bartlett <abartlet@samba.org> | 2010-03-25 16:32:04 +1100 |
commit | 0a65bb57a18176a4aaa6972c025062577b124ee7 (patch) | |
tree | 825e8fb1973b567c50686075d3b2bfbc450d8dca | |
parent | 5f6f7a2e518b53783df60e497e1b12fdaee307a7 (diff) | |
download | samba-0a65bb57a18176a4aaa6972c025062577b124ee7.tar.gz samba-0a65bb57a18176a4aaa6972c025062577b124ee7.tar.bz2 samba-0a65bb57a18176a4aaa6972c025062577b124ee7.zip |
s4:selftest Add testing of kpasswd password set on servicePrincipalName
-rwxr-xr-x | testprogs/blackbox/test_kinit.sh | 31 |
1 files changed, 31 insertions, 0 deletions
diff --git a/testprogs/blackbox/test_kinit.sh b/testprogs/blackbox/test_kinit.sh index 1ee4e1c9b6..034b85057d 100755 --- a/testprogs/blackbox/test_kinit.sh +++ b/testprogs/blackbox/test_kinit.sh @@ -23,6 +23,8 @@ samba4bindir="$BUILDDIR/bin" smbclient="$samba4bindir/smbclient$EXEEXT" samba4kinit="$samba4bindir/samba4kinit$EXEEXT" net="$samba4bindir/net$EXEEXT" +ldbmodify="$samba4bindir/ldbmodify$EXEEXT" +ldbsearch="$samba4bindir/ldbsearch$EXEEXT" rkpty="$samba4bindir/rkpty$EXEEXT" samba4kpasswd="$samba4bindir/samba4kpasswd$EXEEXT" enableaccount="$samba4bindir/net enableaccount" @@ -68,6 +70,18 @@ testit "add user with kerberos ccache" $VALGRIND $net user add nettestuser $CONF USERPASS=testPass@12% echo $USERPASS > ./tmpuserpassfile +echo "Getting defaultNamingContext" +BASEDN=`$ldbsearch $options --basedn='' -H ldap://$SERVER -s base DUMMY=x defaultNamingContext | grep defaultNamingContext | awk '{print $2}'` + +cat > ./tmpldbmodify <<EOF +dn: cn=nettestuser,cn=users,$BASEDN +changetype: modify +add: servicePrincipalName +servicePrincipalName: host/nettestuser +EOF + +testit "modify servicePrincipalName" $VALGRIND $ldbmodify -H ldap://$SERVER ./tmpldbmodify -k yes $@ || failed=`expr $failed + 1` + testit "set user password with kerberos ccache" $VALGRIND $net password set $DOMAIN\\nettestuser $USERPASS $CONFIGURATION -k yes $@ || failed=`expr $failed + 1` testit "enable user with kerberos cache" $VALGRIND $enableaccount nettestuser -H ldap://$SERVER -k yes $@ || failed=`expr $failed + 1` @@ -125,6 +139,23 @@ testit "kinit with user password" $samba4kinit --password-file=./tmpuserpassfile test_smbclient "Test login with user kerberos ccache" 'ls' -k yes || failed=`expr $failed + 1` +NEWUSERPASS=testPaSS@910% +echo $NEWUSERPASS > ./tmpuserpassfile + +cat > ./tmpkpasswdscript <<EOF +expect New password +send ${NEWUSERPASS}\n +expect New password +send ${NEWUSERPASS}\n +expect Success +EOF + +testit "set user password with kpasswd and servicePrincipalName" $rkpty ./tmpkpasswdscript $samba4kpasswd --cache=$PREFIX/tmpccache host/nettestuser@$REALM || failed=`expr $failed + 1` + +testit "kinit with user password" $samba4kinit --password-file=./tmpuserpassfile --request-pac nettestuser@$REALM || failed=`expr $failed + 1` + +test_smbclient "Test login with user kerberos ccache" 'ls' -k yes || failed=`expr $failed + 1` + KRB5CCNAME="$PREFIX/tmpccache" export KRB5CCNAME |