Age | Commit message (Collapse) | Author | Files | Lines |
|
Andrew Bartlett
(This used to be commit c6d416541be5349254a63e30fa29b022516b094e)
|
|
Andrew Bartlett
(This used to be commit 5b5e167bb1a760a4f9c603feea886ce1dab52e19)
|
|
Andrew Bartlett
(This used to be commit 33189b4be0ac79d5e7bc2606f40187118ee506a4)
|
|
etc, move the SAMR create_user code back to using the 'pdb_init_sam_pw' method
to fill out the attributes.
This is basicly the same code, but we really didn't need the duplication.
Also, take advantage of the fact that RIDs will always be returned back into
the SAM_ACCOUNT on ADD, so we don't need to duplicate the 'get'.
This should also help in sites with replicated LDAP - the second fetch might
occour before the first is replicated back.
Andrew Bartlett
(This used to be commit 39714c24fd9da4701d4fe69ddd3d61a25254409f)
|
|
- change update behaviour for new RIDs:
- store the new RID into the SAM_ACCOUNT, so that the caller get's it back
automaticly
- use this to make the code paths simpiler for the normal 'need_update' code.
We must always store a RID if we intend to use the sambaAccount objectClass
Andrew Bartlett
(This used to be commit 5edeee5116b9c775a1bded1d53cb2b22c7a2765f)
|
|
unix_strlower semantics.
Andrew Bartlett
(This used to be commit 93bdd1a2925edb9dea3e85d8b025a65460896c05)
|
|
right now but should be ok with tdb's
(This used to be commit fdacad185c4f78958d56bccbd69a0f2628f1b792)
|
|
1000.
Jeremy.
(This used to be commit 2e5e4c10d2377493913554e7dab79d97a4d16d87)
|
|
and Stop All deamons button.
(This used to be commit 57cfcb3108935f46cb3938b403a3eaba2888fb55)
|
|
sambaAccount requires the rid to be present, and doing this fallback is quite
dangerous, becouse it assumes that alorithmic RIDs are in use - which is quite
often not the case.
Also finish of vl's work on 'use a function pointer, not embedded logic' to
tell lower levels that they should/should not attempt to set the user's password
into LDAP with the extended operation.
Andrew Bartlett
(This used to be commit 715d0bd804b6bff4c0b365f98ca196d41ed9c5c4)
|
|
(This used to be commit 541f40a144461ca139ac53837d3f31ce6972d18c)
|
|
(This used to be commit 6735a9889f6629f4f77006c59c011570031e044f)
|
|
error on Linux.
Jeremy.
(This used to be commit 546d1a941b63a538702f2fb668019d2b89f63bdc)
|
|
(This used to be commit ce016df1ecbb8a083c9a37b7d61b4356dfbc77a7)
|
|
It can itself determine the length of the string it has to
transfer. Andrew B., could you take a look at the length calculation?
Is that safe?
Thanks,
Volker
(This used to be commit 0ef69b586a8f1fa11a41a3900180ea2090b60bfd)
|
|
(This used to be commit ca489db7d3d4713401da3627b563af3cbef82c58)
|
|
ldap_initialze function exists, not just if we are on a particular OpenLDAP.
Andrew Bartlett
(This used to be commit 8a20162db6a8b3fa7eb0e829663b9b4ced1218c0)
|
|
This might help avoid killing the ldap server when all 100 smbd processes
reconnect in pulses...
Also, reduces the maximum wait time, as SMB clients will time out after 30
seconds anyway...
Andrew Bartlett
(This used to be commit 08c5aaae6a92d6ee14f9bf8e3330191718e84edf)
|
|
which can restrict things like unix_strupper() to 512 byte strings.
Andrew Bartlett
(This used to be commit 341d6affa474262654f83c075f186d985cbcb9a0)
|
|
leak fixes. (secrets.c portion)
Andrew Bartlett
(This used to be commit 3ea8fdd0361623b38f30f0b815dc4935e2e17447)
|
|
(This used to be commit 8f8d819d5814c2a538b5b906014ff0c354625450)
|
|
NT).
(This used to be commit 76cd4a8901a8ac1c3691bc89e496bbb493e5c234)
|
|
samlogon call certainly breaks the credential chain. Do it once during
the bind response.
Volker
(This used to be commit d4262c37f13642e034d3e207bfbb563c17a8a176)
|
|
Andrew Bartlett
(This used to be commit 898ff89632a394ff32fd38f1c4e94412388fa8bd)
|
|
include a domain portion, do a gethostbyname() lookup on that name.
Use this name in our PolicyPrimaryDomainInformation reply (_lsa_query_info2)
that Win2k uses when trying to trust us as a trusted domain.
(We need to do a better mapping between our Netbios and Win2k domain names,
but this will do for now - particularly annoying is the way this possibly needs
to map with our kerberos realm).
Andrew Bartlett
(This used to be commit 3be03271030208a69da29c6e2a7b92cdbaa8c6aa)
|
|
(This used to be commit 665d21b8656bf85f9b372b44ff1f4af414551e5a)
|
|
as a BDC.
Andrew Bartlett
(This used to be commit f35674e7552dcfece342e7bece10bbfb0e81cbf8)
|
|
changed
(This used to be commit b6ccdb8f7b72eed4c4248db43fefa09b6f084852)
|
|
the credentials from secrets.tdb
(This used to be commit bb8b63b865b941abecc0d821e710702dd12866fe)
|
|
(This used to be commit 43942398af7e7589fcf8534099eccf277f6e4295)
|
|
strange oplock related issue on the PSA.
Jeremy.
(This used to be commit 1dd274bf61aaaad3c475de93f53aac176678bc7c)
|
|
Jeremy.
(This used to be commit 1e5fe87d75ef4bb9d6af787abc501dcf105c9c6c)
|
|
* add "sid=..." to 'net groupmap add'
(This used to be commit e5f6676639b5552f7dec90091c53cf14e78088ee)
|
|
(This used to be commit 4c7efe25c3f2336938050086ffe5f4cfe462e6f6)
|
|
This allows us to join as a BDC, without appearing on the network as one
until we have the database replicated, and the admin changes the configuration.
This also change the SID retreval order from secrets.tdb, so we no longer
require a 'net rpc getsid' - the sid fetch during the domain join is sufficient.
Also minor fixes to 'net'.
Andrew Bartlett
(This used to be commit 876e00fd112e4aaf7519eec27f382eb99ec7562a)
|
|
(This used to be commit 9ba88c7314168b87b72a7e9dc3c7588dcce86893)
|
|
(This used to be commit 88fdc36f9373c63706907e48be317007aeba06d6)
|
|
(This used to be commit 2e4b45cd2efe46477c2849faffe0e8401132ef88)
|
|
(This used to be commit c6c4f69b8ddc500890a65829e1b9fb7a3e9839e9)
|
|
(This used to be commit dfbd2a2e7a5f0f2713bc48daa24d43b07f187d14)
|
|
- Fix typo in script/installswat.sh
(This used to be commit 8d2aec7a73d41a9d32c10abd1c8833ebfd41dd77)
|
|
(This used to be commit 9c9d969c93400d91a12e78635d54e1c5f90efab8)
|
|
would work now...
Volker
(This used to be commit 8c70f657cfb2f2b32fbaa31112d7953a3a6dc775)
|
|
I could not fix the "passing arg 5 of `ldap_search_s'" completely with
gcc -Wall. A non-developer compile does not complain though.
Volker
(This used to be commit cf923d713305620278e3759599247d3cf7aa0e2f)
|
|
(This used to be commit bed69decea61881ab7071be3e34be71df9b178a1)
|
|
(This used to be commit a369c2ff2637dc808035217eaada4cf923c5cf6d)
|
|
Need to check on where the privilege code is sitting
and update the docs.
Examples:
root# bin/net help groupmap
net groupmap add
Create a new group mapping
net groupmap modify
Update a group mapping
net groupmap delete
Remove a group mapping
net groupmap list
List current group map
# bin/net groupmap add
Usage: net groupmap add rid=<int> name=<string> type=<domain|local|builtin> [comment=<string>]
# bin/net groupmap delete
Usage: net groupmap delete name=<string|SID>
# bin/net groupmap modify
Usage: net groupmap modify name=<string|SID> [comment=<string>] [type=<domain|local>
(This used to be commit f2fd0ab41ffbc0355db95529b6bda1b21aa4860a)
|
|
well now)
(This used to be commit 6220068d48f1fc5c85ff68a791e4e34e92cb4a0a)
|
|
Eloy Paris
(This used to be commit 6155144b9f6a8d41675ff8f0564f86420431c142)
|
|
Volker
(This used to be commit 5af417a6ba24e6bb09979488511f482efa4894b8)
|