diff options
| author | Andrew Bartlett <abartlet@samba.org> | 2008-07-15 15:15:12 +1000 |
|---|---|---|
| committer | Andrew Bartlett <abartlet@samba.org> | 2008-07-15 15:15:12 +1000 |
| commit | a6b842f9634cbeb4075c2bbaf7e49c19104602be (patch) | |
| tree | 17fae6772e9d44ab32835ab7ddc454c9a075bafa /source4/setup/provision | |
| parent | 403f4f94ffec28d1c1dc910e1960531f4c14534b (diff) | |
| download | samba-a6b842f9634cbeb4075c2bbaf7e49c19104602be.tar.gz samba-a6b842f9634cbeb4075c2bbaf7e49c19104602be.tar.bz2 samba-a6b842f9634cbeb4075c2bbaf7e49c19104602be.zip | |
Connect to the LDAP backend with SASL credentials.
This reworks our LDAP backend code to move from anonymous access to a
shared-secret SASL-protected connection. (SASL selects NTLM or
DIGEST-MD5 on my system).
To get this working, we must pre-populate the LDAP backend with a DN
to store ths SASL secret on, and we use back-ldif for this.
This gives us a reasonable basis to deploy a replicated OpenLDAP
backend solution.
Andrew Bartlett
(This used to be commit cd0745253c4a9ec59a035e830e54d74a05b71aaa)
Diffstat (limited to 'source4/setup/provision')
| -rwxr-xr-x | source4/setup/provision | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/source4/setup/provision b/source4/setup/provision index c1d6cd157a..7bd61fc1d8 100755 --- a/source4/setup/provision +++ b/source4/setup/provision @@ -30,7 +30,7 @@ import os, sys sys.path.insert(0, "bin/python") import samba - +from samba.credentials import DONT_USE_KERBEROS from samba.auth import system_session import samba.getopt as options from samba import param @@ -131,6 +131,8 @@ else: creds = credopts.get_credentials(lp) +creds.set_kerberos_state(DONT_USE_KERBEROS) + setup_dir = opts.setupdir if setup_dir is None: setup_dir = "setup" |