| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| | |
|
| | |
|
| |
|
|
| |
we can now assign pidl generates structures directly without errors
|
| | |
|
| |
|
|
| |
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
| |
these are useful for tracking down leaks and bugs in python scripts
Pair-Programmed-With: Jelmer Vernooij <jelmer@samba.org>
|
| |
|
|
| |
this also removes some of the magic constants
|
| |
|
|
|
|
|
|
| |
During a RODC join, we need to fetch the secrets for the machine
account and krbtgt account using GetNCChanges
DRSUAPI_EXOP_REPL_SECRET calls
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
|
| |
This can be used to form the partial_attribute_set list for
GetNCChanges
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
|
|
| |
a RODC net join can now replicate the schame, config and base
partitions, by calling the net.replicate*() python hooks, and driving
the GetNCChanges calls from python
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
|
|
|
| |
this allows for command line access to getncchanges
it also provides a good example of calling DRSUAPI interfaces from
python
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
| |
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
| |
This does the join using python code
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
| |
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
| |
This patch changes the behavior of LDAPCmp in a single domain
scenario. No place-holders will be applied during comparison
so replication will be fully tested and even the silightest
difference will pop up.
There is a second smaller fix when we compre hosts in different
domains. This fix disables ${SERVERNAME} paace-holder when there
are more then one serevr (domain controller) in the given domain.
|
| |
|
|
|
|
| |
we need to actually return the SID!
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
|
| | |
|
| | |
|
| |
|
|
| |
trapped in blackbox tests
|
| |
|
|
| |
Also format in a pretty way the int64 ranges
|
| |
|
|
| |
reindexing
|
| |
|
|
|
|
| |
Full schema reloading is needed when we modify exisiting elements that
have attributes that comes from not from the default schema (ie.
openchange schema, user schema ..)
|
| |
|
|
|
| |
This is used by upgradeprovision to readd this delta just before loading
a merged schema
|
| |
|
|
| |
fix
|
| |
|
|
| |
increment_calculated_keyversion
|
| |
|
|
|
|
|
| |
this allows for "net setpassword -H ldap://server -Uusername%password USERNAME"
to set a password remotely on a windows DC
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
| |
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| | |
|
| |
|
|
|
|
| |
This script is intended to be a replacement for the ktutil of Windows.
It's use is for exporting keytab that will be used for kerberized
services.
|
| |
|
|
|
|
|
| |
this converts all callers that use the Samba4 loadparm lp_ calling
convention to use the lpcfg_ prefix.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
|
|
|
| |
The challenge here is to update the existing record if it already
exists, rather than deleting the old record. This ensures that the
secrets.keytab handling code keeps the previous password in the
keytab.
Andrew Bartlett
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
* isMemberOfPartialAttributeSet is now allowed to be deleted (on schema
objects)
* attributeDisplayNames is now allowed to be added and modified (used on
display specifiers)
* spnMapping is now allowed to be altered on Directory Service objects
* minPwdAge is now modified if the previous value was 0
We issue a clear information about the userControl attribute for
administrator to invite the user to modify himself the value.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
| |
one previously stored
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
| |
RID manager
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
| |
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
| |
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
| |
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
|
|
|
|
| |
calculating msds-keyversionnumber
This function change the version field of the unicodePwd in the
replPropertyMetaData so that the version is equal or
superior to the reference value passed.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
|
|
|
|
| |
replPropertyMetaData attribute
This change contains also helpers for attribute id to attribute oid
conversion and from attribute id to attribute name.
It brings also unit tests
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
|
|
| |
This control allow to specify the replPropertyMetaData attribute to
be specified on modify request. It can be used for very specific needs
to tweak the content of the replication data.
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
|
| |
This script will mostly be used by unit test (blackbox type) to test the
change of the dc password
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
| |
This is to allow reuse of this function and also unit tests
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
|
| |
|
|
|
|
| |
domain and domain controllers in tests
metze
|
| |
|
|
|
|
|
|
|
| |
The value of GUID for policy is not random for default policies, it is
described here ("How Core Group Policy Works"):
http://technet.microsoft.com/en-us/library/cc784268%28WS.10%29.aspx
at paragraph System\Policies Container.
Signed-off-by: Stefan Metzmacher <metze@samba.org>
|
| |
|
|
| |
Signed-off-by: Stefan Metzmacher <metze@samba.org>
|
| |
|
|
|
|
|
| |
attribute
This does work per default on each AD-compatible DC. "userPassword" support on
Windows however has to be activated explicitly by the "dSHeuristics".
|
