Age | Commit message (Collapse) | Author | Files | Lines |
|
Previously we didn't support DES-only in a Samba4 domain. This is
important for some legacy systems that have not yet migrated from this
weak crypto.
Andrew Bartlett
|
|
Signed-off-by: Günther Deschner <gd@samba.org>
|
|
|
|
|
|
Guenther
|
|
This test creates
- a user
- a user with BUILTIN\Administrators membership
- a user with BUILTIN\Print Operators membership
- a user with SePrintOperatorPrivilege (if available)
- a user with full access in security descriptor
and checks what access rights are granted in spoolss_OpenPrinterEx.
Guenther
|
|
This is now a child testsuite to RPC-SPOOLSS. You can call simple tests via
RPC-SPOOLSS-{addprinter,addprinterex}-testname.
Guenther
|
|
Guenther
|
|
Guenther
|
|
The reason for this is that some systems include
<rpc/rpc.h> from within system headers. HP-UX 11.00
does so somewhere deep inside of <shadow.h>.
For torture/winbind/struct_based.c <rpc/rpc.h> resolves
to torture/rpc/rpc.h and breaks the build.
metze
|
|
Guenther
|
|
Guenther
|
|
This tests account lockout features.
Windows 2003r2 and Windows 2008r2 survice this test.
Note: Windows does not set the ACB_AUTOLOCK account flag when it
locks out an account.
One thing that could/should be added to this test is a check of
the lockout time property.
Michael
|
|
Signed-off-by: Andrew Tridgell <tridge@samba.org>
|
|
This test checks the behavior (since w2k3 sp1) of the badPwdCount samr attribute
in relation to password history and successfull and unsucessful netlogon
samlogons.
Michael, please check. This should help verifiying Bug #4347.
Guenther
|
|
|
|
Now it should be much more clear why and where a test
in DSSYNC test case has failed.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
|
The LogonControl tests now are split out to a new RPC-NETLOGON-ADMIN test that
tests the behaviour of that call when called by user, dc or workstation.
Guenther
|
|
This reduces compile time somewhat.
|
|
|
|
|
|
Guenther
|
|
Guenther
|
|
Guenther
|
|
Guenther
|
|
This test talks to a DC as a joined workstation member - in the same way
winbindd does, in particular the calls used in this test's query pattern
will all request for SEC_FLAG_MAXIMUM_ALLOWED access_mask
(which pretty much all of samba's client code does as well).
In fact this test verifies that winbind can correctly talk to a samba dc using
samr dcerpc calls.
Guenther
|
|
Unlike torture_suite_add_machine_bdc_rpc_iface_tcase() which joins as a BDC
(ACB_SRVTRUST) this joins as a member workstation (ACB_WSTRUST).
Guenther
|
|
This rather simple test creates 4500 objects on a domain controller and checks
the enum calls for the correct number of results.
Guenther
|
|
This test demonstrates the independence of the lsa and samr accounts while
remove a samr users that still has privileges granted.
Guenther
|
|
Guenther
|
|
Guenther
|
|
SAMR-PASSWORDS-PWDLASTSET test.
Guenther
|
|
metze
|
|
Guenther
|
|
Guenther
|
|
|
|
|
|
This test shows that object uuids should be ignored
if they're present in a dcerpc request.
metze
|
|
However, I have still not figured out this protocol yet, and the docs
are rather unclear... :-(
Andrew Bartlett
(This used to be commit d878643071a1477435a267e2944461d367cdfa79)
|
|
(This used to be commit 3b8eec7ca334528cad3cdcd5e3fc5ee555d8d0e0)
|
|
This tests SamLogonEx() calls on multiple (smb) connections
in parallel. Sadly the smb connect needs to be serialized
because of the reset on zero VC style behavior of windows.
Call it like this:
bin/smbtorture -U administrator%test ncacn_np:w2k3-101 -W W2K3 RPC-BENCH-SCHANNEL
or
bin/smbtorture -U administrator%test ncacn_np:w2k3-101 -W W2K3 -k no RPC-BENCH-SCHANNEL \
--option="torture:nprocs=4" --option="torture:timelimit=1" \
--extra-user SUB1\\sub1user%testsecret --extra-user SUB1\\sub1user%testsecret
or ...
Later we should add more tests, maybe using only one smb connection
and different netlogon pipes.
We should also test using the DCERPC_PFC_FLAG_CONC_MPX flag and just one
rpc connection.
DCERPC_PFC_FLAG_CONC_MPX /* supports concurrent multiplexing of a single connection.*/
metze
(This used to be commit 901426c24c74390f7b1c78bb7a07c020b6ef73eb)
|
|
(This used to be commit 5b44d8121de7735d69e6238a1442aff034a8ebd3)
|
|
the code.
Make sure we pass around the event_context where we need it instead.
All test but a few python ones fail. Jelmer promised to fix them.
(This used to be commit 3045d391626fba169aa26be52174883e18d323e9)
|
|
(This used to be commit 2ccc4d2af58b49ab1319ce87e0f15591b40db06f)
|
|
(This used to be commit eeb2251d22b3d6e0379444a73af69d1014692b07)
|
|
(This used to be commit 7280c1e9415daabb2712db1372e23f9846272ede)
|
|
(This used to be commit 59371e8f2d0abb2e63b0452cd0d3fe49107560a1)
|
|
When trying an reqchal/auth2 for an unknown workstation account, we have
to return NT_STATUS_NO_TRUST_SAM_ACCOUNT to the auth2. v3-2-test right
now returns NT_STATUS_ACCESS_DENIED, which seems to prevent XP from
joining a Samba3 PDC.
(This used to be commit 99cc861238a33d43ccc4e97cb5ab756c0a097e1d)
|
|
Guenther
(This used to be commit ebcbdb5fbdb30005a60431687a738df5f26d3472)
|
|
returned on the
SAMR pipe.
also test which bits in the accessmasks grant which right to perform operations on the returned policy handle
(This used to be commit cb5bc801362a4a81a690e641146c70a7af8e6096)
|