Age | Commit message (Collapse) | Author | Files | Lines |
|
Make 'lsar_CreateTrustedDomain' consistant with
lsar_CreateTrustedDomainEx{,2} by renaming handle -> policy_handle
Implement LSA server logic to create the cn=users trust account for
incoming trusts.
Andrew Bartlett
(This used to be commit d87b655e20b7c38756774cec2e5898af38c46786)
|
|
We still don't get the format inside the encrypted blob correct
however.
Andrew Bartlett
(This used to be commit 99a3abda09716c064b3e9a37c4a79a8f62444eca)
|
|
(This used to be commit 9590805bcbdd1924eda5a69978ffac7ec7603451)
|
|
(This used to be commit 50502b3b8faf89cf5ad396102f4fe80eaa213908)
|
|
Andrew Bartlett
(This used to be commit 91ae8dca254aa8c032daf0c87fa2a47760d32586)
|
|
Also check we get the defaults correct with a query in the torture
suite.
Andrew Bartlett
(This used to be commit b55a1b63cc2f7de889f046e975e3414bc5000613)
|
|
This test now passes against Win2k3, and a implementation in the
Samba4 server should follow shortly.
Andrew Bartlett
(This used to be commit c6b8ba893dd3ed90bca32c0ae89fd33be729c238)
|
|
This would seem to match the documentation requirements for the PAC
verfication over NETLOGON, but I can't get Win2k3 to accept it so far.
Andrew Bartlett
(This used to be commit acfa87f3411a61bdd9066fbbba2bcfbe2a60cbbe)
|
|
This uses Heimdal's PAC parsing code in the:
- LOCAL-PAC test
- gensec_gssapi server
- KDC (where is was already used, the support code refactored from here)
In addition, the service and KDC checksums are recorded in the struct
auth_serversupplied_info, allowing them to be extracted for validation
across NETLOGON.
Andrew Bartlett
(This used to be commit 418b440a7b8cdb53035045f3981d47b078be6c1e)
|
|
This file allows the remote_pac.c code to call into netlogon.c's setup
credentials code.
Andrew Bartlett
(This used to be commit 0343987cf18c1287d98ae542d397ab1fab0a04b7)
|
|
However, I have still not figured out this protocol yet, and the docs
are rather unclear... :-(
Andrew Bartlett
(This used to be commit d878643071a1477435a267e2944461d367cdfa79)
|
|
(This used to be commit d7db5fe161429163a19d18c7e3045939897b9b2a)
|
|
(This used to be commit 8e1285a1ee60e3d3b7352ab7269d535c41916b46)
|
|
- Implement QueryDomainInformationPolicy in Samba4
- Allow RPC-LSA to pass against Windows 2008 (which does not allow
the Audit privilage to be removed)
Andrew Bartlett
(This used to be commit d94c7bbcd6eee6d975eac32a1d172f4164c97137)
|
|
(This used to be commit 914e1865aa9fba417f74a3abdd8b4b2659feb001)
|
|
(This used to be commit a17cb558c23142e522de3ed56d65c7694477395f)
|
|
(This used to be commit a555334db67527b57bc6172e3d08f65caf1e6760)
|
|
(This used to be commit 3441ea5df5b750442d17b90de73d392d2d802ab1)
|
|
also show the worst case latencies so far, matching tsm_torture
(This used to be commit 5859bb337ce2ec5091425ebd02cad14c4da40457)
|
|
the most likely bugs in HSM involve zero data, due to the
dm_punch_hole() request
(This used to be commit 330ab956ea7e0b344450eee60b1357d854fbef28)
|
|
(This used to be commit 469fac2669991b130dec219e1a109a8b2ce224be)
|
|
metze
(This used to be commit 4b054cee51c39c5430bcadd5c06a94dc3e6b0d8f)
|
|
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
(This used to be commit a484334fb4dafd1df514d1bf88f7e0c4f07dff86)
|
|
(This used to be commit 3731f7eaea6e5ed89d24e383dae0531cb58d77dc)
|
|
(This used to be commit b4b14b748e6babc93faee23fe8f5c03ec2d25cbb)
|
|
(This used to be commit e711f7d26a632ec93c1e2a3db52c37e1c0de4214)
|
|
(This used to be commit b337369d5c86b37d93ee1c62880068e14d6c09f6)
|
|
metze
(This used to be commit d548f5dee5980eae0aea25f1314238eb4f963568)
|
|
Some standalone server (and samba4) doesn't support this.
metze
(This used to be commit 6d8fd4c0089d7e632ec91027a77321aca8c6acc7)
|
|
metze
(This used to be commit ba9d0f6b3c60346df757e7c4c3f5704c0bf26d11)
|
|
metze
(This used to be commit d7d4df78c1de19d0cd7a63daaa2fa0863a243a12)
|
|
Also reenable disabled tests.
metze
(This used to be commit 76878a9c798e0acb0387b8352972d66db989c09a)
|
|
create options fields are supposed to work
(This used to be commit 0576875eccaa21ad529c9db41db91781ad400d0f)
|
|
(This used to be commit 7e48dad4c7724f3f11236171a777603574224c42)
|
|
(This used to be commit 0a8080d0f245ddf0177195dd8e7fb3e1cdc0785f)
|
|
(This used to be commit d0a128f35b259d4891edc68fc24aa04a6da7aab7)
|
|
metze
(This used to be commit 7dee6fb62d5adbd2eaaaf4d8ba9e87a72ef9f94b)
|
|
(This used to be commit 6673a6e62399c4956a44a06685aa91ce8145b92a)
|
|
Also don't fail the test if the server does not implement the NT4
changelog.
Andrew Bartlett
(This used to be commit 514d88580bee3bb17f1032262f5518e3ab2a349a)
|
|
Andrew Bartlett
(This used to be commit c2df7ffa6d67dd9381d10397c679746547cd5e17)
|
|
smb2_logoff_recv() on the invalid session
metze
(This used to be commit 93203e8e318dd10b9e7096e586187eb271d42134)
|
|
This can we used to pass additional credentials to torture tests
(it can be used multiple times.
metze
(This used to be commit 4d80dbfac27659046e0986a2af3d06999e2cb2f2)
|
|
This is for debugging and informational purposes only.
The assignment is implementation specific.
(WSPP docs, sec. 5.35).
Michael
(This used to be commit 1f5704e2dee5900e8d1d87699b76f67c0e12854e)
|
|
metze
(This used to be commit 6a7637b12e4a34915a53e81a0f47571da21fdc5a)
|
|
Michael
(This used to be commit 7ee99105ea3a50d8ee2c83ecd39e834ed9efb98c)
|
|
Michael
(This used to be commit 67a99e445871861945fd0a45784cffb358bdccf3)
|
|
Michael
(This used to be commit b91bbc5fe4a47e5823be6be5f2f203f1f14105de)
|
|
The 'comment' element in a number of domain structures is called
oem_information. This was picked up actually because with OpenLDAP
doing the schema checking, it noticed that 'comment' was not a valid
attribute.
The rename tries to keep this consistant in both the LDB mappings and
IDL, so we don't make the same mistake in future.
This has no real schema impact, as this value isn't actually used for
anything, as 'comment' was not used in the provision.
Andrew Bartlett
(This used to be commit 65dc0d536590d055a5ee775606ac90ee5fcaee9a)
|
|
The change to the RPC-LSA test proves that when the remote server has
0 trusted domains, it will return NT_STATUS_NO_MORE_ENTRIES, not
NT_STATUS_OK.
Andrew Bartlett
(This used to be commit 40a55b34c2ce75267cf004dc4cfb8153c061e66b)
|
|
This test assumed that fnums are recycled immediately after a close. This is
not true on Samba 3.
Andrew B., I assume this is just a bug in the test. Assuming recycled fnums
might be true on Windows and Samba 4, but I don't think we should assume this
everywhere.
Volker
(This used to be commit a4c3a59d47b2b1c794eda556d252c61907be1b3c)
|