summaryrefslogtreecommitdiffstats
path: root/source4
Commit message (Collapse)AuthorAgeFilesLines
...
* Revert "s4:provision_users.ldif - Remove foreign security principal S-1-5-17 ↵Andrew Tridgell2010-01-111-0/+5
| | | | | | | | | | | for now" This reverts commit 61dfd3dc1dce2c0dd6693de80930af312ad3e39f. This series of commits broke 'make test'. Matthias, please make sure you run a _full_ make test before every push.
* Revert "s4:provision_users.ldif - Fix memberships regarding the denied ↵Andrew Tridgell2010-01-111-8/+0
| | | | | | | | | | | password RODC replication group" This reverts commit 9ee895fcf6327b1c2f5ee09fa565bd62974e9c58. This series of commits broke 'make test'. Matthias, please make sure you run a _full_ make test before every push.
* Revert "s4:provision_users.ldif - Add objects for IIS"Andrew Tridgell2010-01-111-21/+0
| | | | | | | | | This reverts commit 91e210028790397996659116446e6add452707f6. This series of commits broke 'make test'. Matthias, please make sure you run a _full_ make test before every push.
* s4:upgradeprovision - fix up the script regarding linked attributesMatthias Dieter Wallnöfer2010-01-101-12/+46
| | | | | | | | | | | | | | | | We have to try to add new objects until between two iterations we didn't make any progress. Either we are then done (no objects remaining) or we are incapable to do this fully automatically. The latter can happen if important system objects (builtin groups, users...) moved (e.g. consider one of my recent comments). Then the new object can't be added if it contains the same "sAMAccountName" attribute as the old one. We have to let the user delete the old one (also to give him a chance to backup personal changes - if needed) and only then the script is capable to add the new one onto the right place. Make this clear with an exhaustive error output. I personally don't see a good way how to do this better for now so I would leave this as a manual step.
* s4:upgradeprovision - Reformat commentsMatthias Dieter Wallnöfer2010-01-101-28/+44
| | | | Make them break at line 80 (better readability).
* s4:repl_meta_data - Transform a "1" into a "true" on a boolean variableMatthias Dieter Wallnöfer2010-01-101-1/+1
|
* s4:provision_users.ldif - Add objects for IISMatthias Dieter Wallnöfer2010-01-101-0/+21
| | | | Some WSPP locations point out that they're defacto-standards for Windows Server deployments starting with 2008. So we should add them to s4 too.
* s4:provision_self_join_modify.ldif - Point out that account "dns" is s4 specificMatthias Dieter Wallnöfer2010-01-101-0/+1
|
* s4:provision_users.ldif - Fix memberships regarding the denied password RODC ↵Matthias Dieter Wallnöfer2010-01-101-0/+8
| | | | replication group
* s4:provision_users.ldif - Remove foreign security principal S-1-5-17 for nowMatthias Dieter Wallnöfer2010-01-101-5/+0
| | | | This belongs to the AD IIS stuff where I don't know yet if we should import it.
* s4:provision_users.ldif - Import all essential groups for Windows Server ↵Matthias Dieter Wallnöfer2010-01-101-85/+113
| | | | | | | 2008 mode Additionally I had to fix some bugs (especially wrong "groupTypes") and reordered the objects using the SID (this is easier when enhancing the file).
* s4-ldb: display security descriptors with correct SDL for known SIDsAndrew Tridgell2010-01-102-1/+7
| | | | This makes it much easier to compare SDs
* s4-dsdb: added samdb_domain_sid_cache_only()Andrew Tridgell2010-01-101-1/+8
|
* s4-drs: instanceType is always sent, regardless of UDV valuesAndrew Tridgell2010-01-091-4/+6
|
* s4-debug: lower the verbosity of a couple of common log messagesAndrew Tridgell2010-01-092-2/+2
|
* s4-samldb: fixed primaryGroupID when promoting a machine to a DCAndrew Tridgell2010-01-091-17/+30
| | | | | The machine gets a primaryGroupID of DOMAIN_RID_DCS. This is done without changing the member attributes of its groups.
* s4-schema: fixed the SDDL for the schema root security descriptorAndrew Tridgell2010-01-091-10/+14
| | | | | This was preventing a DCPROMO client from allowing outgoing replication
* s4-drs: add a local UDV entry even when no replUpToDateVector present on NCAndrew Tridgell2010-01-091-3/+3
| | | | | This allows us to filter correctly for a NC that we have created but not pulled from anyone.
* s4-drs: give DN of failed replication partitionAndrew Tridgell2010-01-091-4/+5
|
* s4-drs: base is_nc_prefix on instanceTypeAndrew Tridgell2010-01-091-1/+3
| | | | for extended operations comparing to the ncRoot_dn is not correct
* s4-drs: having no SPNs to change is not an errorAndrew Tridgell2010-01-091-0/+7
|
* s4-drs: fixed writespn to ignore add/delete errorsAndrew Tridgell2010-01-091-3/+40
| | | | | When a SPN is added and already exists, it is ignored. Similarly, when a SPN is deleted and doesn't exist, it is ignored.
* s4-dsdb: added samdb_ldb_val_case_cmp()Andrew Tridgell2010-01-091-0/+16
|
* s4-drs: moved the DsWriteAccountSpn call to its own fileAndrew Tridgell2010-01-094-75/+104
|
* s4-libnet: dsdb_wellknown_dn() in vampire codeAndrew Tridgell2010-01-091-60/+17
|
* s4-drs: need to set the getncchanges extended_ret on success tooAndrew Tridgell2010-01-091-0/+3
|
* s4-drs: calculate and send a uptodateness_vector with replication requestsAndrew Tridgell2010-01-092-7/+82
| | | | | This stops us getting objects changes twice if they came via an indirect path.
* s4-drs: be less verbose when we filter objects by UDVAndrew Tridgell2010-01-091-5/+5
|
* s4-drs: added filtering by udv in getncchangesAndrew Tridgell2010-01-092-9/+63
| | | | | | When a client supplied an uptodateness_vector, we can use it to filter what objects we return. This greatly reduces the amount of replication traffic between DCs.
* s4-drs: fixed the NC in the getncchanges RID alloc replyAndrew Tridgell2010-01-091-11/+13
| | | | | the search happens on a different DN to the NC of the request, but the reply is with the original NC
* s4-messaging: remove only usage of debug_ctx()Andrew Tridgell2010-01-091-2/+4
|
* s4-messaging: fixed a memory leak in messaging_path()Andrew Tridgell2010-01-091-2/+9
| | | | | It is a bit convoluted to fix, as cluster_id_string() may return a const string.
* s4-drs: fixed usage of ldb_dn_new()Andrew Tridgell2010-01-091-1/+1
|
* s4-ldb: validate the type of the ldb argument to ldb_dn_new()Andrew Tridgell2010-01-091-1/+7
| | | | | It has been a common bug to get the first two arguments the wrong way around
* Fix commentSimo Sorce2010-01-081-1/+1
|
* s4:provision_self_join.ldif - Adapt comment after implementation of ↵Matthias Dieter Wallnöfer2010-01-081-2/+2
| | | | distributed RIDs
* s4-kdc: Migrate tcp connections to tsocket.Andreas Schneider2010-01-081-89/+188
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s4:kdc: use LIBSAMBA_TSOCKETStefan Metzmacher2010-01-081-1/+1
| | | | metze
* s4:kdc: the ->process function returns "bool"Stefan Metzmacher2010-01-081-9/+9
| | | | metze
* libcli/util: add tstream_read_pdu_blob_send/recvStefan Metzmacher2010-01-081-0/+5
| | | | | | | This will take the some full_request callback function as the Samba4 packet code. metze
* s4-drs: added two more SPNs in addentryAndrew Tridgell2010-01-081-13/+32
| | | | | | w2k8r2 wants these after a DCPROMO Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-schema: fixes for W2K8-R2 schemaAndrew Tridgell2010-01-082-35/+143
| | | | | | | | The schema from WSPP had a number of typos that prevented it from working. These changes allow it to work with Samba, and allow w2k8r2 to run DCPROMO against Samba successfully Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-schema: added msDS-NcType to schema containerAndrew Tridgell2010-01-081-0/+1
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-schema: fixed attributes of aggregate schemaAndrew Tridgell2010-01-081-0/+2
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-schema: switch to W2K8-R2 schemaAndrew Tridgell2010-01-081-2/+2
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-schema: added adminDisplayName and adminDescriptionAndrew Tridgell2010-01-081-0/+2
| | | | | | These are missing from the WSPP schemas Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-schema: added some debug for bad attributesAndrew Tridgell2010-01-081-0/+8
|
* s4-provision: added W2K8-R2 schema as provided by WSPPAndrew Tridgell2010-01-082-0/+19529
|
* s4-samba3samtest: we need to force netbios name as wellAndrew Tridgell2010-01-081-0/+1
| | | | needed for when run in CLIENT context
* s4-samba3sid: fixed error returns when res->count != 1 and oomAndrew Tridgell2010-01-081-3/+3
|
generated by cgit (git 2.34.1) at 2025-09-27 18:00:33 +0000