LDAP: Fall back to functional level of Windows Server 2003

The newest functional level we branch for is currently DS_BEHAVIOR_WIN2003. Therefore (and also because extended support for Windows server 2003 ends in 2015) we can safely set the functional level to 2003 if the attribute is present but not a known value. Reviewed-by: Pavel Březina <pbrezina@redhat.com>
author: Jakub Hrozek <jhrozek@redhat.com> 2014-08-27 17:21:26 +0200
committer: Jakub Hrozek <jhrozek@redhat.com> 2014-09-01 13:41:59 +0200
commit: 0fafb51756913e78dbf523a69fc3a4ef2bac54ec (patch)
tree: fb18e77b753b01a185770e6ced9fa464b9f7d459
parent: 9ea0969f6a9e52b7c57feb5808266b0739ee40a4 (diff)
download: sssd-0fafb51756913e78dbf523a69fc3a4ef2bac54ec.tar.gz
sssd-0fafb51756913e78dbf523a69fc3a4ef2bac54ec.tar.xz
sssd-0fafb51756913e78dbf523a69fc3a4ef2bac54ec.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/src/providers/ldap/sdap.c b/src/providers/ldap/sdap.c
index 56faf5123..f2178dd0a 100644
--- a/src/providers/ldap/sdap.c
+++ b/src/providers/ldap/sdap.c
@@ -1196,7 +1196,8 @@ int sdap_get_server_opts_from_rootdse(TALLOC_CTX *memctx,
             default:
                 DEBUG(SSSDBG_MINOR_FAILURE,
                       "Received invalid value for AD compatibility level. "
-                       "Continuing without AD performance enhancements\n");
+                      "Using the lowest-common compatibility level\n");
+                opts->dc_functional_level = DS_BEHAVIOR_WIN2003;
             }
         } else if (ret != ENOENT) {
             DEBUG(SSSDBG_MINOR_FAILURE,
author	Jakub Hrozek <jhrozek@redhat.com>	2014-08-27 17:21:26 +0200
committer	Jakub Hrozek <jhrozek@redhat.com>	2014-09-01 13:41:59 +0200
commit	0fafb51756913e78dbf523a69fc3a4ef2bac54ec (patch)
tree	fb18e77b753b01a185770e6ced9fa464b9f7d459
parent	9ea0969f6a9e52b7c57feb5808266b0739ee40a4 (diff)
download	sssd-0fafb51756913e78dbf523a69fc3a4ef2bac54ec.tar.gz sssd-0fafb51756913e78dbf523a69fc3a4ef2bac54ec.tar.xz sssd-0fafb51756913e78dbf523a69fc3a4ef2bac54ec.zip