summaryrefslogtreecommitdiffstats
path: root/source4
Commit message (Collapse)AuthorAgeFilesLines
...
| * s4:provision Make us Windows 2008 level by defualt againAndrew Bartlett2009-09-201-4/+5
| | | | | | | | | | | | | | | | | | Also add a note to clarify that this should not be changed without discussion and consensus. We don't want this bouncing around. Paramater support to allow optional selection of Win2003 mode welcomed. Andrew Bartlett
| * s4:dsdb/resolve_oids: add fast pathes for the common operations without oidsStefan Metzmacher2009-09-211-0/+217
| | | | | | | | metze
| * s4:dsdb/resolve_oids: check return values in recursionStefan Metzmacher2009-09-211-3/+6
| | | | | | | | metze
| * s4:py_security Add missing headerAndrew Bartlett2009-09-201-0/+23
| |
| * s4:provision Use code to store domain join in 'net join' as wellAndrew Bartlett2009-09-207-309/+283
| | | | | | | | | | | | | | | | This ensures we only have one codepath to store the secret, and therefore that we have a single choke point for setting the saltPrincipal, which we were previously skipping. Andrew Bartlett
| * s4:ldb print out which LDB the transaction is still active on.Andrew Bartlett2009-09-201-2/+2
| |
| * s4:provision split provision of DNS zone and self join keytabAndrew Bartlett2009-09-204-28/+34
| |
* | Merge branch 'master' of git://git.samba.org/sambaNadezhda Ivanova2009-09-209-52/+92
|\|
| * s4-selftest: disable RAP-SCAN testAndrew Tridgell2009-09-201-0/+1
| | | | | | | | also pointless now we have docs
| * s4-selftest: disable RPC-COUNTCALLS Andrew Tridgell2009-09-201-0/+1
| | | | | | | | The RPC-COUNTCALLS was useful when we were working out IDL by hand
| * Merge branch 'master' of git://git.samba.org/sambaMatthias Dieter Wallnöfer2009-09-211-0/+29
| |\
| * | s4:python tools - try to fix some test problemsMatthias Dieter Wallnöfer2009-09-203-14/+16
| | |
| * | s4:samba3sam.py test - remove the primary group ID attribute hereMatthias Dieter Wallnöfer2009-09-201-7/+2
| | | | | | | | | | | | | | | This shouldn't be specified on creation time (Windows Server doesn't allow that). Hope this also fixes the test (see buildfarm).
| * | s4:sec_descriptor - fix constantMatthias Dieter Wallnöfer2009-09-201-4/+4
| | |
| * | s4:dsdb/common/util - Check for the right forest/domain function levelMatthias Dieter Wallnöfer2009-09-201-0/+57
| | | | | | | | | | | | | | | | | | | | | This adds a function which performs the check for the supported forest and domain function levels. On an unsuccessful result a textual error message can be created (parameter "errmsg" != NULL) which gives hints for the user to help him fixing the issue.
| * | s4:server.c - add linespace (only cosmetic)Matthias Dieter Wallnöfer2009-09-201-1/+2
| | |
| * | s4:domainlevel - fixed another errorMatthias Dieter Wallnöfer2009-09-201-26/+9
| | | | | | | | | | | | | | | | | | The second "nTMixedDomain" attribute (under Partitions/Domain-DN) is only a copy of the one under the directory root object. Therefore there doesn't exist the "Windows 2000 Mixed" forest level.
* | | Initial implementation of security descriptor creation in DSNadezhda Ivanova2009-09-206-14/+405
| |/ |/| | | | | | | TODO's: ACE sorting and clarifying the inheritance of object specific ace's.
* | Disable descriptor module unless enabled in smb.confNadezhda Ivanova2009-09-201-0/+29
|/ | | | | | | Since this code may still have some problems, it is not executed by default. To enable descriptor inheritance add: acl:inheritance = true in your smb.conf
* Fixed a difference in domain sid type when SID is provided by user.Nadezhda Ivanova2009-09-201-1/+4
|
* s4:ldb_parse - Fix the type of an array entryMatthias Dieter Wallnöfer2009-09-201-1/+1
| | | | I found this through a compile warning. Hope that I got this right.
* s4:provision_configuration - fix "sPNMappings"Matthias Dieter Wallnöfer2009-09-201-2/+1
| | | | | | | I reread some docs about this attributes and it seems that this as mapping attribute isn't host specific but in common for the whole domain. To allow Windows DCs to join our s4 domain sooner or later we have to provide the full attribute.
* s4:domainlevel - further improvementsMatthias Dieter Wallnöfer2009-09-201-9/+50
| | | | | | | | - The tool displays now also mixed/interim domain levels and warns about them (s4 isn't capable to run on them) - But it allows now also to raise/step-up from them - It displays now also levels higher than 2008 R2 (altough we don't support them yet) but to be able to get a correct output
* s4:provision: add the 'resolve_oids' on the top of the module stackStefan Metzmacher2009-09-201-1/+2
| | | | metze
* dsdb/samdb: add resolve_oids moduleStefan Metzmacher2009-09-202-0/+438
| | | | | | | | | | Windows Servers allow OID strings to be used instead of attribute/class names. For now we only resolve the OIDs in the search expressions, the rest will follow. metze
* s4:build: require ldb 0.9.7Stefan Metzmacher2009-09-201-1/+1
| | | | metze
* s4:ldb: add ldb_parse_tree_copy_shallow() and change version to 0.9.7Stefan Metzmacher2009-09-203-1/+65
| | | | metze
* s4-auth: add SID_NT_ENTERPRISE_DCS is a server trust accountAndrew Tridgell2009-09-191-1/+13
|
* s4-drs: security checking on DRS needs to default to onAndrew Tridgell2009-09-191-1/+2
|
* s4-ldb: display an error if we can't decode a NDR blobAndrew Tridgell2009-09-191-1/+3
|
* s4-repl: need param.h for lp_parm_boolAndrew Tridgell2009-09-191-0/+1
|
* Handle dsdb_class_by_lDAPDisplayName returned values in schema_inferiors.cAnatoliy Atanasov2009-09-191-0/+8
|
* Move replmd_drsuapi_DsReplicaCursor2_compare to a common place.Anatoliy Atanasov2009-09-193-14/+8
|
* Add drs_security_level_check for dcesrv calls security checksAnatoliy Atanasov2009-09-196-20/+36
| | | | | | There is also an option to disable the security check by specifying in the smb.conf file: drs:disable_sec_check = true
* s4:provision_basedn_modify - fix the "auditPolicy" attributeMatthias Dieter Wallnöfer2009-09-201-1/+2
| | | | | | I had to think about how to encode the string 0x0001 (taken from Windows Server). The problem is due to the "0" byte at the beginning of it. BASE64 encoding seems a good method to do it.
* s4:utils Remove typo...Andrew Bartlett2009-09-191-1/+0
|
* s4:dsdb Print the partition we failed to suggest replication forAndrew Bartlett2009-09-191-1/+2
|
* s4:utils Explian fix for testparm -vAndrew Bartlett2009-09-191-2/+6
| | | | | | | The problem here was that we take an address of a bool, and then (via a void*) cast it to a int *, so put this in a comment. Andrew Bartlett
* s4-ldb: bump minimum version in ldb tooAndrew Tridgell2009-09-191-1/+1
|
* more include minimisationAndrew Tridgell2009-09-1912-41/+0
|
* tdb: increase minor versionAndrew Tridgell2009-09-191-1/+1
| | | | we depend on reads in transactions for s4 replication
* s4-smbd: removed unnecessary includesAndrew Tridgell2009-09-195-11/+0
|
* s4-scripts: make minimal_includes handle our -I overridesAndrew Tridgell2009-09-191-10/+20
|
* s4-smbd: minimise includes in smbd/ and smb_serverAndrew Tridgell2009-09-1921-40/+0
|
* s4-testparm: fixed -v optionAndrew Tridgell2009-09-191-1/+1
| | | | never pass a bool pointer to popt
* s4-rpc_server: removed remaining unnecessary #includesAndrew Tridgell2009-09-194-5/+2
|
* s4-rpc: remove some unnecessary #include linesAndrew Tridgell2009-09-194-8/+0
| | | | I should remember to run script/minimal_includes.pl more often
* s4:samdb.py - further reworkMatthias Dieter Wallnöfer2009-09-191-12/+9
| | | | | | | | | - I added a comment to the "new user" operation to point out that this works only on s4, since we add also ID mapping entries for winbind there - The "new user" operation adds now the password through the "set password" operation which I find better due to the re-use principle - Remove the word "DC" after "SAMBA 4" in the comment over the "set password" operation since this note and operation applies also to s4 in standalone mode
* s4-netlogon: implement dcesrv_netr_DsRAddressToSitenamesExWAndrew Tridgell2009-09-191-2/+24
| | | | | We don't implement sites properly at the moment so we just return Default-First-Site-Name
* s4-resolve: fixed a crash bug on timeoutAndrew Tridgell2009-09-199-11/+13
| | | | | | | We were creating the name resolution context as a child of lp_ctx, which meant when we gave up on a connection the timer on name resolution kept running, and when it timed out the callback crashed as the socket was already removed.
generated by cgit (git 2.34.1) at 2025-09-26 19:49:52 +0000