summaryrefslogtreecommitdiffstats
path: root/source4
Commit message (Collapse)AuthorAgeFilesLines
* build: build wbinfo only once in the waf buildAndrew Bartlett2011-10-081-4/+0
| | | | | Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sat Oct 8 04:52:03 CEST 2011 on sn-devel-104
* selftest: run dfs tests on plugin_s4_dcStefan Metzmacher2011-10-081-0/+1
| | | | | | | metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Sat Oct 8 03:18:54 CEST 2011 on sn-devel-104
* s4:smb_server: implement dfs referral handing on top of ↵Stefan Metzmacher2011-10-082-812/+54
| | | | | | dfs_server_ad_get_referrals() metze
* s4:dsdb/password_hash: add DSDB_CONTROL_PASSWORD_BYPASS_LAST_SET_OIDStefan Metzmacher2011-10-073-1/+42
| | | | | | | | | | Which allows the caller to pass a given 'pwdLastSet' value (every useful for migrations). metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Fri Oct 7 15:28:13 CEST 2011 on sn-devel-104
* s4:dbchecker: make use of local_oid controls for dsdb.DSDB_CONTROL_DBCHECKStefan Metzmacher2011-10-071-1/+1
| | | | metze
* s4:dsdb: fix the order of DSDB_CONTROL_* defines in samdb.hStefan Metzmacher2011-10-071-10/+10
| | | | | | | This makes clear that struct dsdb_control_password_change belongs to DSDB_CONTROL_PASSWORD_CHANGE_OID. metze
* s4-param copy print_parameter and equal_parameter in from source3Andrew Bartlett2011-10-071-10/+24
| | | | | | | | | This will allow these functions to be put into lib/param shortly. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Fri Oct 7 10:17:01 CEST 2011 on sn-devel-104
* param: Use a bool to hold boolean parametersAndrew Bartlett2011-10-071-7/+7
| | | | | | | All three-state parameters invoking Auto (2) are already declared as integers, not booleans. Andrew Bartlett
* s4-dsdb: special case for deleted objects one way linkAndrew Tridgell2011-10-071-4/+17
| | | | | | | | | we show wellknown links to the deleted objects container Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Fri Oct 7 07:58:08 CEST 2011 on sn-devel-104
* s4-dsdb: don't display links to deleted objectsAndrew Tridgell2011-10-071-9/+42
| | | | | | | unless the user asks for the display of deactivated links, we should not display DNs that link to deleted objects Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: fixed one_way_link calculationAndrew Tridgell2011-10-071-1/+2
| | | | | | we need to check for the other end of the link, not the current linkID Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: fixed behaviour of show_deleted and show_recycled controlAndrew Tridgell2011-10-071-38/+71
| | | | | | | | to correctly implement the show_deleted and show_recycled control we need to know if the recyclebin is enabled. When not enabled, the isRecycled attribute is ignored, and only isDeleted is used. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: fixed the check_optional_feature() callAndrew Tridgell2011-10-071-19/+24
| | | | | | | | the dsdb_check_optional_feature() call should look on our own NTDS DN for the enabled feature. This should work for all features, not just for forest wide fetaures. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* lib/util: consolidate module loadingAndrew Bartlett2011-10-061-1/+1
| | | | | Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Thu Oct 6 08:52:30 CEST 2011 on sn-devel-104
* lib/util: consolidate module loading into common codeAndrew Bartlett2011-10-0621-142/+19
| | | | | | This creates a samba-modules private libary that handles the details. Andrew Bartlett
* samba-tool: add support for fixing broken backlinks in dbcheckAndrew Tridgell2011-10-061-20/+32
| | | | | | | | | this allows dangling backlinks to be removed Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Thu Oct 6 07:08:35 CEST 2011 on sn-devel-104
* s4-dsdb: allow deletion of backlinks if DSDB_CONTROL_DBCHECK givenAndrew Tridgell2011-10-062-1/+5
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: added DSDB_CONTROL_DBCHECKAndrew Tridgell2011-10-063-0/+5
| | | | | | this will be used for overrides by the dbcheck validator Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: allow groupType update on deleted objectsAndrew Tridgell2011-10-061-1/+2
| | | | | | this allows dbcheck to fix groupType on objects that have been deleted Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-rodc: use the rodc_replica flag on the partitionAndrew Tridgell2011-10-061-2/+2
| | | | | | | | this sets DSDB_REPL_FLAG_PARTIAL_REPLICA when replicating a RODC partition, which tells the replication code to map instanceType to remove the INSTANCE_TYPE_WRITE bit Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-rodc: ensure we load replicated partitions for RODCsAndrew Tridgell2011-10-062-46/+35
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: Do not assume that all deleted objects have an objectCategory and ↵Andrew Bartlett2011-10-061-2/+2
| | | | | | | sAMAccountType Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Thu Oct 6 03:43:13 CEST 2011 on sn-devel-104
* dsdb: Do not attempt to resolve conflicts on an RODCAndrew Bartlett2011-10-061-2/+26
|
* dsdb: fix double-free in replication failure case on RODCAndrew Bartlett2011-10-061-1/+1
|
* s4-dsdb Allow repl server to start even when no master NCs are presentAndrew Bartlett2011-10-061-7/+1
|
* s4-auth: fixed formatting of some DEBUG() linesAndrew Tridgell2011-10-051-3/+3
| | | | | Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Wed Oct 5 09:45:15 CEST 2011 on sn-devel-104
* s4-subdomain: create trust record with forest root DCAndrew Tridgell2011-10-041-7/+33
| | | | | | | | | | when we create a sub-subdomain we need to use the forest naming master to setup the partition changes for the new subdomain. We also need to setup the trust with the forest root, as that allows us to create the needed _msdcs DNS entries in the forest Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Tue Oct 4 07:40:59 CEST 2011 on sn-devel-104
* s4-dsdb: fixed re-join of subdomainAndrew Tridgell2011-10-041-3/+4
| | | | | | if we repeat the join of a subdomain then we try to re-create the NC for the subdomain during a DsAddEntry(). This allows that re-creation to succeed if the NC already exists
* s4-lsa: fixed set of trust password with old passwordAndrew Tridgell2011-10-041-14/+13
| | | | | | | the calculation of add_incoming and add_outgoing was not correct when a trust was already in place Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dns: add all forest DCs to named.conf.updateAndrew Tridgell2011-10-041-12/+54
| | | | this allows all DCs to update DNS entries
* s4-ldap: added DSDB_CONTROL_NO_GLOBAL_CATALOG to ldap encoding listAndrew Tridgell2011-10-041-18/+7
| | | | | | also remove all the duplicated comments Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-kdc: fixed handling of previous vs current trust passwordAndrew Tridgell2011-10-041-36/+77
| | | | | | | | | | | This sorts out the correct handling for the 'kvno=255' problem. Windows will use the previous trust password for 1 hour after a password set, and indicates that the previous password is being used by sending current_kvno-1. That maps to 255 if the trust password has not actually been changed, so the initial trust password is being used. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-auth: rework map_user_info() to use cracknamesAndrew Tridgell2011-10-042-13/+215
| | | | | | | | | | | | | to properly support multi-domain forests we need to determine if an incoming username is part of a known forest domain or not. To do this for all possible SPN forms, we need to use CrackNames. This changes map_user_info() to use CrackNames if a SAM context is available, and asks the CrackNames services to parse the incoming username and domain into a NT4 form, which can then be used in the SAM. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-sam: don't look in GC NCs for user accountsAndrew Tridgell2011-10-041-2/+6
| | | | | | We need to exclude GC partial replica naming contexts from SAM lookups Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-kdc: don't look at global catalog NCs in the kdcAndrew Tridgell2011-10-042-16/+23
| | | | | | | | the kdc should not be looking for users in GC partial replicas, as these users do not have all of the attributes needed for the KDC to operate Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-kdc: treat a kvno of 255 as unspecifiedAndrew Tridgell2011-10-041-1/+4
| | | | | | | | windows sometimes sends us a kvno of 255 for inter-domain trusts. We don't yet know why it does this, but it seems that we need to treat this as an unspecified kvno Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-kcc: if we are a GC, auto-add partial replicasAndrew Tridgell2011-10-041-3/+147
| | | | | when we are a global catalog server, the KCC needs to add partial replicas for all domain partitions that we don't have copies of
* s4-dsdb: simplify samdb_is_gc()Andrew Tridgell2011-10-041-28/+2
| | | | we already have a function for returning the NTDS options
* s4-dsdb: add the DSDB_CONTROL_PARTIAL_REPLICA when neededAndrew Tridgell2011-10-041-0/+9
| | | | | | | when we are adding an object via DRS, we need to add the DSDB_CONTROL_PARTIAL_REPLICA control if we are replicating a partial replica, so ensure the partition module creates new NCs as partial replicas
* heimdal: handle referrals for 3 part DRSUAPI SPNsAndrew Tridgell2011-10-041-1/+18
| | | | | | | | | | | | | This handles referrals for SPNs of the form E3514235-4B06-11D1-AB04-00C04FC2DCD2/NTDSGUID/REALM, which are used during DRS replication when we don't know the dnsHostName of the target DC (which we don't know until the first replication from that DC completes). We use the 3rd part of the SPN directly as the realm name in the referral. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-repl: try harder to find the right SPN in replication serverAndrew Tridgell2011-10-041-23/+72
| | | | | | | | | | | | when doing DRS between domains, using the right SPN is essential so the KDC can generate referrals to point us at the right DC. We prefer the GC/hostname/DNSDOMAIN form if possible, but if we can't find the hostname then this changes the code that generates the target principal name to use either the msDS-HasDomainNCs or hasMasterNCs attributes to try to find the target DC domainname so we can use the E3514235-4B06-11D1-AB04-00C04FC2DCD2/GUID/DNSDOMAIN SPN form. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: added new control DSDB_MODIFY_PARTIAL_REPLICAAndrew Tridgell2011-10-047-60/+98
| | | | | | | | this control tells the partition module that the DN being created is a partial replica, so it should modify the @PARTITION object to add the partialReplica attribute Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-join: enable cleanup on failed joinAndrew Tridgell2011-10-041-1/+1
| | | | if a join fails, then cleanup the old records
* s4-drs: added DSDB_REPL_FLAG_ADD_NCNAME to DsAddEntry callAndrew Tridgell2011-10-041-0/+1
| | | | we want new NCs to be created
* s4-dsdb: added DSDB_REPL_FLAG_ADD_NCNAME flagAndrew Tridgell2011-10-041-0/+1
|
* s4-dsdb: fixed formatting of a debug messageAndrew Tridgell2011-10-041-1/+1
| | | | another missing newline
* s4-partition: allow creation of uninstantiated partitionsAndrew Tridgell2011-10-041-6/+0
| | | | | this is needed for a subdomain join by a new NC. The NC is initially uninstantiated
* s4-dsdb: allow uninstantiated NC headsAndrew Tridgell2011-10-041-2/+4
| | | | | this allows INSTANCE_TYPE_WRITE to be not set if INSTANCE_TYPE_UNINSTANT is set
* s4-repl: support creation of new NCs via DsAddEntryAndrew Tridgell2011-10-041-0/+84
| | | | | this adds a flag to dsdb_origin_objects_commit that tells it to create a new NC based on the nCName in a crossRef object
* s4-repl: fixed formatting of some debug messagesAndrew Tridgell2011-10-041-5/+5
|
generated by cgit (git 2.34.1) at 2025-09-25 23:25:57 +0000