s4:kdc Allow a password change when the password is expired

This requires a rework on Heimdal's windc plugin layer, as we want full control over what tickets Heimdal will issue. (In particular, in case our requirements become more complex in future). The original problem was that Heimdal's check would permit the ticket, but Samba would then deny it, not knowing it was for kadmin/changepw Also (in hdb-samba4) be a bit more careful on what entries we will make the 'change_pw' service mark that this depends on. Andrew Bartlett
author: Andrew Bartlett <abartlet@samba.org> 2009-06-18 11:08:46 +1000
committer: Andrew Bartlett <abartlet@samba.org> 2009-06-18 13:49:30 +1000
commit: 19413c52495877d54c90c60229568d0077fda30b (patch)
tree: c148e96ba2ff28933f2d5f3714b8fc7e60957dec /source4/auth/ntlm
parent: 2afc6df9b49a246129acdd7c8c24448c8cf3b6ef (diff)
download: samba-19413c52495877d54c90c60229568d0077fda30b.tar.gz
samba-19413c52495877d54c90c60229568d0077fda30b.tar.bz2
samba-19413c52495877d54c90c60229568d0077fda30b.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/source4/auth/ntlm/auth_sam.c b/source4/auth/ntlm/auth_sam.c
index 0bb79e234c..253ddf2286 100644
--- a/source4/auth/ntlm/auth_sam.c
+++ b/source4/auth/ntlm/auth_sam.c
@@ -175,7 +175,7 @@ static NTSTATUS authsam_authenticate(struct auth_context *auth_context,
 				       msg,
 				       user_info->workstation_name,
 				       user_info->mapped.account_name,
-				       false);
+				       false, false);
 
 	return nt_status;
 }
author	Andrew Bartlett <abartlet@samba.org>	2009-06-18 11:08:46 +1000
committer	Andrew Bartlett <abartlet@samba.org>	2009-06-18 13:49:30 +1000
commit	19413c52495877d54c90c60229568d0077fda30b (patch)
tree	c148e96ba2ff28933f2d5f3714b8fc7e60957dec /source4/auth/ntlm
parent	2afc6df9b49a246129acdd7c8c24448c8cf3b6ef (diff)
download	samba-19413c52495877d54c90c60229568d0077fda30b.tar.gz samba-19413c52495877d54c90c60229568d0077fda30b.tar.bz2 samba-19413c52495877d54c90c60229568d0077fda30b.zip