Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
|
|
We didn't handle the mode where we can't load the main sam.ldb due to
the modules being 'wrong', and when we did remove the file, we didn't
wipe the partitions.
|
|
depending on the backend
This just changes the existing stratagy of loading different modules
for the OpenLDAP backend to also include extended_dn_out_*
When we provision the OpenLDAP backend, we make sure to include the
'deref' overlay (which must be made available by the OpenLDAP build)
Signed-off-by: Stefan Metzmacher <metze@samba.org>
|
|
extended_dn_store.
By splitting the module, the extended_dn_in and extended_dn_store
moudles can use extended_dn_out to actually get the extended DN. This
avoids code duplication.
The extended_dn_out module also contains a client implementation of
the OpenLDAP dereference control (draft-masarati-ldap-deref-00).
This also introduces a new control
'DSDB_CONTROL_DN_STORAGE_FORMAT_OID' to ask the extended_dn_out module
to return whatever the 'storage format' is. This allows us to work
with both OpenLDAP (which performs a dereference at run time) and LDB
(which stores the GUID and SID on disk).
Signed-off-by: Stefan Metzmacher <metze@samba.org>
|
|
|
|
|
|
|
|
|
|
remove some unused functions.
|
|
|
|
This makes it operate in all partitions (minor), but more importantly
places it above some other modules that implement some extra schema
checks. (The linked_attributes module objects to unknown attributes,
which inclues clearTextPassword, which we need internally but is not
in the schema).
Andrew Bartlett
|
|
executed from other m4 files.
|
|
|
|
|
|
|
|
|
|
metze
|
|
|
|
|
|
|
|
(This used to be commit 62d76356c10b4223236425c4db32c2fc5105d155)
|
|
(This used to be commit 59b62280d27a9e0a72241e4b60022be07e4cbce2)
|
|
In the future, we might simply randomly generate this, or allow the
admin to specify it seperate to the admin password. However, both are
highly sensitive, as they imply read access to the krbtgt.
Andrew Bartlett
(This used to be commit 57d19ad002c523fb9a09694e6710ab7f588d44ec)
|
|
This avoids passing rootdn passwords or replicated data in cleartext
across the network.
Signed-of-by: Andrew Bartlett <abartlet@samba.org>
(This used to be commit 67373c143a1d8a9f310fd116dbf81c1dd123b75f)
|
|
(This used to be commit c273d63f94c430a4f553085efb0d6e31a99e5853)
|
|
(This used to be commit e8ba65c4db986fcedf7008d05d8f8846f78a98f1)
|
|
(This used to be commit 1897cef508c8bea817c510bd9023d794cb983864)
|
|
This makes it easy to set the expiry (or no expiry) for a samdb user
(This used to be commit 25171f18a4b242b5a731f4ac1eefc51cc82efd74)
|
|
template.
Andrew Bartlett
(This used to be commit b36c6a21ad12fdc1b53efdc3f29cde7614b4fa9e)
|
|
<oliver@itc.li>
This changes the RIDs to be <serverID><DBID>, to ease later debugging.
The need to specify the port on the MMR URLs is now included in the
help.
Andrew Bartlett
(This used to be commit a5cbe8c09c6f14f95ff9ba9b8782e2100fc55695)
|
|
(This used to be commit fc6b4f03ebba015a13a6ab93221b0bc3ef8ef2ed)
|
|
This changes the MMR password from hard-coded value of 'linux',
adds tests and fixes the Fedora DS backend.
Currently the MMR password matches the admin password, but we can
change this to be another random value if required.
Also require the port to be specified on the command line, so we don't
hard-code a port of 9000.
Andrew Bartlett
(This used to be commit 08257c6d6ce809fcd53f9b2b4d558fef616b74ce)
|
|
This patches provision-backend and the related scripts to generate the
correct configuration blobs for N-way multi-master replication using
OpenLDAP.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
(This used to be commit 6ed0b3f2475022288f636605492ca27fde97cd52)
|
|
This sets the attributes in a seperate transaction, and allows a
forced delete of the whole file.
Andrew Bartlett
(This used to be commit 423db2468ba3dac89cebc59c8498c0b08c5f3d7b)
|
|
SAM database.
(This used to be commit be75b2a36ee49f66ada3ec3ababa82d74085d559)
|
|
(This used to be commit 2a39aae0cef310a79427feb1b85f6794ea36849a)
|
|
(This used to be commit cbac27e6faa99ebaa3e6d653017c968db836560a)
|
|
(This used to be commit 783412ecb27d646b171993da0ac2f11a821901d3)
|
|
(This used to be commit c87a8ba1fef1ba508ad6527d0bae4bcdd5b3cb69)
|
|
this sort of regression in the future.
(This used to be commit a461118f3b668779f907c4d77cebe1e76fa4e39f)
|
|
(This used to be commit 4b137085c8b89773d4639372bbffd516a41dfc8f)
|
|
(This used to be commit bace931ad674b5071d53bf9c99c383f1d8957e1b)
|
|
(This used to be commit b1d05e7d14c65133e8ab0ff9d41a26fa7e3d41d3)
|
|
(This used to be commit e23333d16397606d38e90684d2d916b5b967cde4)
|
|
(This used to be commit b12dd8ee5443ebfc204d1684f541d68ffb351197)
|
|
(This used to be commit e9c3c9ad8289ee48efa998ab6b486250dcd40b52)
|
|
This document is much more use when subbed with all the right things.
Andrew Bartlett
(This used to be commit 136a85599815670c807f212d7d4003ec53a13729)
|
|
- fixes bug #4813 (simplify DNS setup)
- This reworks the named.conf to be a fully fledged include
- This also moves the documentation into named.txt
- improves bug #4900 (Group policy support in Samba)
- by creating an empty GPT.INI
- fixes bug #5582 (DNS: Enhanced zone file)
- This is now closer to the zone file AD creates
committed by Andrew Bartlett
(This used to be commit 74d684f6b329d7dd573cdc55e16bb8e629474b02)
|
|
(This used to be commit d2a527acc5ee6fe9b943657dc9c3ace920b2d619)
|