summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2011-10-08s4:smb_server: implement dfs referral handing on top of ↵Stefan Metzmacher2-812/+54
dfs_server_ad_get_referrals() metze
2011-10-07s4:dsdb/password_hash: add DSDB_CONTROL_PASSWORD_BYPASS_LAST_SET_OIDStefan Metzmacher3-1/+42
Which allows the caller to pass a given 'pwdLastSet' value (every useful for migrations). metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Fri Oct 7 15:28:13 CEST 2011 on sn-devel-104
2011-10-07s4:dbchecker: make use of local_oid controls for dsdb.DSDB_CONTROL_DBCHECKStefan Metzmacher1-1/+1
metze
2011-10-07s4:dsdb: fix the order of DSDB_CONTROL_* defines in samdb.hStefan Metzmacher1-10/+10
This makes clear that struct dsdb_control_password_change belongs to DSDB_CONTROL_PASSWORD_CHANGE_OID. metze
2011-10-07s4-param copy print_parameter and equal_parameter in from source3Andrew Bartlett1-10/+24
This will allow these functions to be put into lib/param shortly. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Fri Oct 7 10:17:01 CEST 2011 on sn-devel-104
2011-10-07param: Use a bool to hold boolean parametersAndrew Bartlett1-7/+7
All three-state parameters invoking Auto (2) are already declared as integers, not booleans. Andrew Bartlett
2011-10-07s4-dsdb: special case for deleted objects one way linkAndrew Tridgell1-4/+17
we show wellknown links to the deleted objects container Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Fri Oct 7 07:58:08 CEST 2011 on sn-devel-104
2011-10-07s4-dsdb: don't display links to deleted objectsAndrew Tridgell1-9/+42
unless the user asks for the display of deactivated links, we should not display DNs that link to deleted objects Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-07s4-dsdb: fixed one_way_link calculationAndrew Tridgell1-1/+2
we need to check for the other end of the link, not the current linkID Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-07s4-dsdb: fixed behaviour of show_deleted and show_recycled controlAndrew Tridgell1-38/+71
to correctly implement the show_deleted and show_recycled control we need to know if the recyclebin is enabled. When not enabled, the isRecycled attribute is ignored, and only isDeleted is used. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-07s4-dsdb: fixed the check_optional_feature() callAndrew Tridgell1-19/+24
the dsdb_check_optional_feature() call should look on our own NTDS DN for the enabled feature. This should work for all features, not just for forest wide fetaures. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-06lib/util: consolidate module loadingAndrew Bartlett1-1/+1
Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Thu Oct 6 08:52:30 CEST 2011 on sn-devel-104
2011-10-06lib/util: consolidate module loading into common codeAndrew Bartlett21-142/+19
This creates a samba-modules private libary that handles the details. Andrew Bartlett
2011-10-06samba-tool: add support for fixing broken backlinks in dbcheckAndrew Tridgell1-20/+32
this allows dangling backlinks to be removed Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Thu Oct 6 07:08:35 CEST 2011 on sn-devel-104
2011-10-06s4-dsdb: allow deletion of backlinks if DSDB_CONTROL_DBCHECK givenAndrew Tridgell2-1/+5
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-06s4-dsdb: added DSDB_CONTROL_DBCHECKAndrew Tridgell3-0/+5
this will be used for overrides by the dbcheck validator Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-06s4-dsdb: allow groupType update on deleted objectsAndrew Tridgell1-1/+2
this allows dbcheck to fix groupType on objects that have been deleted Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-06s4-rodc: use the rodc_replica flag on the partitionAndrew Tridgell1-2/+2
this sets DSDB_REPL_FLAG_PARTIAL_REPLICA when replicating a RODC partition, which tells the replication code to map instanceType to remove the INSTANCE_TYPE_WRITE bit Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-06s4-rodc: ensure we load replicated partitions for RODCsAndrew Tridgell2-46/+35
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-06s4-dsdb: Do not assume that all deleted objects have an objectCategory and ↵Andrew Bartlett1-2/+2
sAMAccountType Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Thu Oct 6 03:43:13 CEST 2011 on sn-devel-104
2011-10-06dsdb: Do not attempt to resolve conflicts on an RODCAndrew Bartlett1-2/+26
2011-10-06dsdb: fix double-free in replication failure case on RODCAndrew Bartlett1-1/+1
2011-10-06s4-dsdb Allow repl server to start even when no master NCs are presentAndrew Bartlett1-7/+1
2011-10-05s4-auth: fixed formatting of some DEBUG() linesAndrew Tridgell1-3/+3
Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Wed Oct 5 09:45:15 CEST 2011 on sn-devel-104
2011-10-04s4-subdomain: create trust record with forest root DCAndrew Tridgell1-7/+33
when we create a sub-subdomain we need to use the forest naming master to setup the partition changes for the new subdomain. We also need to setup the trust with the forest root, as that allows us to create the needed _msdcs DNS entries in the forest Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Tue Oct 4 07:40:59 CEST 2011 on sn-devel-104
2011-10-04s4-dsdb: fixed re-join of subdomainAndrew Tridgell1-3/+4
if we repeat the join of a subdomain then we try to re-create the NC for the subdomain during a DsAddEntry(). This allows that re-creation to succeed if the NC already exists
2011-10-04s4-lsa: fixed set of trust password with old passwordAndrew Tridgell1-14/+13
the calculation of add_incoming and add_outgoing was not correct when a trust was already in place Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-04s4-dns: add all forest DCs to named.conf.updateAndrew Tridgell1-12/+54
this allows all DCs to update DNS entries
2011-10-04s4-ldap: added DSDB_CONTROL_NO_GLOBAL_CATALOG to ldap encoding listAndrew Tridgell1-18/+7
also remove all the duplicated comments Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-04s4-kdc: fixed handling of previous vs current trust passwordAndrew Tridgell1-36/+77
This sorts out the correct handling for the 'kvno=255' problem. Windows will use the previous trust password for 1 hour after a password set, and indicates that the previous password is being used by sending current_kvno-1. That maps to 255 if the trust password has not actually been changed, so the initial trust password is being used. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-04s4-auth: rework map_user_info() to use cracknamesAndrew Tridgell2-13/+215
to properly support multi-domain forests we need to determine if an incoming username is part of a known forest domain or not. To do this for all possible SPN forms, we need to use CrackNames. This changes map_user_info() to use CrackNames if a SAM context is available, and asks the CrackNames services to parse the incoming username and domain into a NT4 form, which can then be used in the SAM. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-04s4-sam: don't look in GC NCs for user accountsAndrew Tridgell1-2/+6
We need to exclude GC partial replica naming contexts from SAM lookups Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-04s4-kdc: don't look at global catalog NCs in the kdcAndrew Tridgell2-16/+23
the kdc should not be looking for users in GC partial replicas, as these users do not have all of the attributes needed for the KDC to operate Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-04s4-kdc: treat a kvno of 255 as unspecifiedAndrew Tridgell1-1/+4
windows sometimes sends us a kvno of 255 for inter-domain trusts. We don't yet know why it does this, but it seems that we need to treat this as an unspecified kvno Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-04s4-kcc: if we are a GC, auto-add partial replicasAndrew Tridgell1-3/+147
when we are a global catalog server, the KCC needs to add partial replicas for all domain partitions that we don't have copies of
2011-10-04s4-dsdb: simplify samdb_is_gc()Andrew Tridgell1-28/+2
we already have a function for returning the NTDS options
2011-10-04s4-dsdb: add the DSDB_CONTROL_PARTIAL_REPLICA when neededAndrew Tridgell1-0/+9
when we are adding an object via DRS, we need to add the DSDB_CONTROL_PARTIAL_REPLICA control if we are replicating a partial replica, so ensure the partition module creates new NCs as partial replicas
2011-10-04heimdal: handle referrals for 3 part DRSUAPI SPNsAndrew Tridgell1-1/+18
This handles referrals for SPNs of the form E3514235-4B06-11D1-AB04-00C04FC2DCD2/NTDSGUID/REALM, which are used during DRS replication when we don't know the dnsHostName of the target DC (which we don't know until the first replication from that DC completes). We use the 3rd part of the SPN directly as the realm name in the referral. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-04s4-repl: try harder to find the right SPN in replication serverAndrew Tridgell1-23/+72
when doing DRS between domains, using the right SPN is essential so the KDC can generate referrals to point us at the right DC. We prefer the GC/hostname/DNSDOMAIN form if possible, but if we can't find the hostname then this changes the code that generates the target principal name to use either the msDS-HasDomainNCs or hasMasterNCs attributes to try to find the target DC domainname so we can use the E3514235-4B06-11D1-AB04-00C04FC2DCD2/GUID/DNSDOMAIN SPN form. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-04s4-dsdb: added new control DSDB_MODIFY_PARTIAL_REPLICAAndrew Tridgell7-60/+98
this control tells the partition module that the DN being created is a partial replica, so it should modify the @PARTITION object to add the partialReplica attribute Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-10-04s4-join: enable cleanup on failed joinAndrew Tridgell1-1/+1
if a join fails, then cleanup the old records
2011-10-04s4-drs: added DSDB_REPL_FLAG_ADD_NCNAME to DsAddEntry callAndrew Tridgell1-0/+1
we want new NCs to be created
2011-10-04s4-dsdb: added DSDB_REPL_FLAG_ADD_NCNAME flagAndrew Tridgell1-0/+1
2011-10-04s4-dsdb: fixed formatting of a debug messageAndrew Tridgell1-1/+1
another missing newline
2011-10-04s4-partition: allow creation of uninstantiated partitionsAndrew Tridgell1-6/+0
this is needed for a subdomain join by a new NC. The NC is initially uninstantiated
2011-10-04s4-dsdb: allow uninstantiated NC headsAndrew Tridgell1-2/+4
this allows INSTANCE_TYPE_WRITE to be not set if INSTANCE_TYPE_UNINSTANT is set
2011-10-04s4-repl: support creation of new NCs via DsAddEntryAndrew Tridgell1-0/+84
this adds a flag to dsdb_origin_objects_commit that tells it to create a new NC based on the nCName in a crossRef object
2011-10-04s4-repl: fixed formatting of some debug messagesAndrew Tridgell1-5/+5
2011-10-04dns: added example python script for dnsserver protocolAndrew Tridgell1-0/+89
2011-10-04dns: build python bindings for dnsserver RPC protocolAndrew Tridgell1-0/+6
generated by cgit (git 2.34.1) at 2024-11-05 13:37:06 +0000