summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJakub Hrozek <jhrozek@redhat.com>2014-08-27 17:21:26 +0200
committerJakub Hrozek <jhrozek@redhat.com>2014-09-01 13:41:59 +0200
commit0fafb51756913e78dbf523a69fc3a4ef2bac54ec (patch)
treefb18e77b753b01a185770e6ced9fa464b9f7d459
parent9ea0969f6a9e52b7c57feb5808266b0739ee40a4 (diff)
downloadsssd-0fafb51756913e78dbf523a69fc3a4ef2bac54ec.tar.gz
sssd-0fafb51756913e78dbf523a69fc3a4ef2bac54ec.tar.xz
sssd-0fafb51756913e78dbf523a69fc3a4ef2bac54ec.zip
LDAP: Fall back to functional level of Windows Server 2003
The newest functional level we branch for is currently DS_BEHAVIOR_WIN2003. Therefore (and also because extended support for Windows server 2003 ends in 2015) we can safely set the functional level to 2003 if the attribute is present but not a known value. Reviewed-by: Pavel Březina <pbrezina@redhat.com>
-rw-r--r--src/providers/ldap/sdap.c3
1 files changed, 2 insertions, 1 deletions
diff --git a/src/providers/ldap/sdap.c b/src/providers/ldap/sdap.c
index 56faf5123..f2178dd0a 100644
--- a/src/providers/ldap/sdap.c
+++ b/src/providers/ldap/sdap.c
@@ -1196,7 +1196,8 @@ int sdap_get_server_opts_from_rootdse(TALLOC_CTX *memctx,
default:
DEBUG(SSSDBG_MINOR_FAILURE,
"Received invalid value for AD compatibility level. "
- "Continuing without AD performance enhancements\n");
+ "Using the lowest-common compatibility level\n");
+ opts->dc_functional_level = DS_BEHAVIOR_WIN2003;
}
} else if (ret != ENOENT) {
DEBUG(SSSDBG_MINOR_FAILURE,