sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-05-01 22:50:23 +03:00
Code
76,697 Commits 62 Branches 1,158 Tags
Commit Graph

268 Commits

Author SHA1 Message Date
Andrew Tridgell
c53210bf06 s4-net: added --ipaddress option to net commands 
this allows override of server IP address, bypassing NBT or DNS name
resolution of DCs

Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
 2010-09-25 10:38:45 -07:00
Andrew Tridgell
59d415f43f s4-finddc: use NBT lookup for a 1C name if joining a short domain name 
once we get the 1C lookup reply, use a CLDAP query to find the details
for the server

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-15 15:39:36 +10:00
Andrew Tridgell
4e9f449106 s4-join: give a clear error when using short domain form 
we now require the full domain name, for the DNS/CLDAP lookup

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-15 15:39:36 +10:00
Matthias Dieter Wallnöfer
64af772b38 s4:fsmo.py - fix an obvious typo 2010-09-12 19:23:04 +02:00
Andrew Tridgell
b9c0b59034 s4-rodc: get the domain name from the partitions DN 
don't rely on the netbios domain name being the first part of the
realm

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-09 21:39:24 +10:00
Andrew Tridgell
9f5dcb2235 s4-net: use CommandError() in net rodc 
this integrates better with the net command

Pair-Programmed-With: Jelmer Vernooij <jelmer@samba.org>
 2010-09-02 13:37:07 +10:00
Andrew Tridgell
057a47130d s4-net: fixed docstring on spn command 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-08-26 22:50:20 +10:00
Andrew Tridgell
d8f48c7ffc s4-net: added "net rodc preload" command 
this command will preload the credentials for an account from the full
domain controller

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-08-26 22:50:20 +10:00
Andrew Tridgell
b4a048d763 s4-net: role should be case insensitive for join 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-08-23 15:55:39 +10:00
Andrew Tridgell
bd7f9813de s4-net: added initial implemention of RODC join 
This does the join using python code

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-08-23 15:55:39 +10:00
Andrew Tridgell
a2cb6ef017 s4-net: moved the net join command to python 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-08-23 15:55:39 +10:00
Andrew Tridgell
d7d19fdc84 s4-net: better error message on net setpassword 2010-08-22 14:57:34 +10:00
Andrew Tridgell
82c171aa55 s4-net: use an encrypted ldap session when setting passwords 
this allows for "net setpassword -H ldap://server -Uusername%password USERNAME"
to set a password remotely on a windows DC

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-08-17 21:21:51 +10:00
Matthieu Patou
cad04dabbb s4 net: Add spn module to list/add/remove spn on objects 
Signed-off-by: Stefan Metzmacher <metze@samba.org>
 2010-07-10 11:18:17 +02:00
Matthias Dieter Wallnöfer
c0ee606474 s4:pwsettings net utility - change also here the "minPwdAge" to be the real default 
Which is one day.
 2010-07-03 11:38:54 +02:00
Andrew Tridgell
4cb423f527 s4-python: python is not always in /usr/bin 
Using "#!/usr/bin/env python" is more portable. It still isn't ideal
though, as we should really use the python path found at configure
time. We do that in many places already, but some don't.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-06-24 18:46:57 +10:00
Andrew Bartlett
86ed5eb892 s4:net Remove warnings for 2000 native mode and Samba4. 
We now support 2000 native mode, and so we just need to warn about mixed mode.

Andrew Bartlett
 2010-06-23 20:10:07 +10:00
Andrew Bartlett
c4482bf53e libds:common Remove DS_DC_* domain functionality flags 
These are just a subset of the DS_DOMAIN_ functionality flags, are compared and often confused with each other.  Just make them one set.

Andrew Bartlett
 2010-06-23 20:10:03 +10:00
Lukasz Zalewski
214133fbec Modifications extending functionality of newuser cmd and new net group set of commands for group related operations on ldb 
Signed-off-by: Jelmer Vernooij <jelmer@samba.org>
 2010-06-20 01:29:03 +02:00
Lukasz Zalewski
c58c0c2129 Modifications extending functionality of newuser cmd and new net group set of commands for group related operations on ldb 
Signed-off-by: Jelmer Vernooij <jelmer@samba.org>
 2010-06-20 01:29:03 +02:00
Jelmer Vernooij
ac9341245a pynet: Raise proper exceptions rather than invoking sys.exit. 2010-05-19 19:35:22 +02:00
Matthias Dieter Wallnöfer
8608eaef76 s4:net domainlevel tool - fix up the error handling as Jelmer suggested 
Sorry, I've copied this from the "ldap.py" test and thought it would work.
 2010-05-14 19:03:18 +02:00
Matthias Dieter Wallnöfer
49c8c130a0 s4:domainlevel - handle exceptions more precisely 
LDB_ERR_UNWILLING_TO_PERFORM should be the right error code when the
"msDS-Behavior-Version" was already raised by the first change as it is on
Windows Server.

When s4 itself does implement this trigger then we don't need to do the
second write operation anymore (they're kept in sync).
 2010-05-13 22:42:22 +02:00
Matthias Dieter Wallnöfer
4da42b4e80 s4:domainlevel.py - update the script to handle both domain level occourrences on s4 
The second "modify" is located under a try-catch block to ignore the change
failure against Windows Server (there only the first change is required).
 2010-05-13 15:33:11 +02:00
Matthias Dieter Wallnöfer
ce4c0261f6 s4:net utility - make outprinted description comments more consistent 
I've added a [server connection needed] when commands won't work on the local
SamDB.
 2010-05-09 19:14:47 +02:00
Matthias Dieter Wallnöfer
b703481ef7 s4:net utility - remove unixname parameter of samdb.newuser 
We don't handle the id mapping stuff manually anymore.
 2010-05-09 19:14:47 +02:00
Matthias Dieter Wallnöfer
544dc4465c s4:net utility - add an optional password attribute to "net user add" 
To make it behave similar to "net newuser".
 2010-05-09 19:14:46 +02:00
Andrew Tridgell
ac11b616dd s4-net: don't show a full python exception when you can't open sam.ldb 2010-04-20 20:59:24 +10:00
Andrew Tridgell
046c5824e4 s4-net: nicer error message (and no exception) 
in net newuser and net setpasswd we shouldn't be throwing python
exceptions on normal user errors like unknown user

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-04-16 14:12:44 +10:00
Jelmer Vernooij
47c4e883d6 s4-net: Add definition of outf. 2010-04-12 02:55:27 +02:00
Jelmer Vernooij
0d92dd1074 s4-net: Cope with options without arguments. 2010-04-09 11:53:00 +02:00
Jelmer Vernooij
410527f936 s4-net: 'net user create' -> 'net user add', for backwards compatibility. 2010-04-09 11:53:00 +02:00
Jelmer Vernooij
9af8d02b22 s4-net: Convert machinepw command to python. 2010-04-09 11:53:00 +02:00
Jelmer Vernooij
f83aa13f62 s4-net: Convert vampire command over to Python. 2010-04-09 11:53:00 +02:00
Jelmer Vernooij
ffa73c412e s4-net: Convert user subcommand to Python. 2010-04-09 11:53:00 +02:00
Jelmer Vernooij
26d928e948 s4-net: Convert 'net time' to python. 2010-04-08 23:41:08 +02:00
Jelmer Vernooij
0c6f434b7b net: Convert time command to python. 2010-04-08 23:22:55 +02:00
Jelmer Vernooij
6510b2cdd2 s4-net: Use new Net() object in net export keytab. 2010-04-08 23:22:55 +02:00
Jelmer Vernooij
7a6f1c7842 s4-python: Fix formatting, use standard convention to call instance methods. 2010-04-08 23:20:36 +02:00
Jelmer Vernooij
dd4ef4e106 s4-python: More cleanups. 2010-04-08 23:20:36 +02:00
Jelmer Vernooij
d7a46ee129 s4-python: Simplify code, improve formatting. 2010-04-08 23:20:36 +02:00
Jelmer Vernooij
cf17d48dec Migrate 'net export keytab' to python. 2010-04-08 22:37:35 +02:00
Jelmer Vernooij
479fd9c03f s4-net: Simplify SamDB connect code. 2010-04-08 12:21:35 +02:00
Jelmer Vernooij
c76bd65b60 s4-samdb: Allow skipping global schema. 2010-04-07 17:40:00 +02:00
Jelmer Vernooij
31a517e172 s4-python: Move dsdb constants to a separate python module. 2010-04-04 00:14:23 +02:00
Jelmer Vernooij
13a6aee591 s4-python: Remove duplicate definition of GUID_DRS_* constants. 2010-04-03 23:47:25 +02:00
Nadezhda Ivanova
a212c1dedb Added a net acl ds command for modification of ACLs on directory objects 
At present the command supports only addition of control access rigts, done
so DRS access checks can be tested. It will be expanded to deal with most
ways to modify and view a DS ACL.
Shifted commands a bit. What used to be net acl is now "net acl nt" as apposed
to this, which is "net acl ds"

./bin/net acl ds set --help
Usage: set --objectdn=objectdn --car=control right --action=[deny|allow] --trusteedn=trustee-dn

Options:
  -h, --help            show this help message and exit
  --host=HOST           LDB URL for database or target server
  --car=CAR              The access control right to allow or deny
  --action=ACTION       Deny or allow access
  --objectdn=OBJECTDN   DN of the object whose SD to modify
  --trusteedn=TRUSTEEDN
                        DN of the entity that gets access

  Samba Common Options:
    -s FILE, --configfile=FILE
                        Configuration file

  Credentials Options:
    --simple-bind-dn=DN
                        DN to use for a simple bind
    --password=PASSWORD
                        Password
    -U USERNAME, --username=USERNAME
                        Username
    -W WORKGROUP, --workgroup=WORKGROUP
                        Workgroup
    -N, --no-pass       Don't ask for a password
    -k KERBEROS, --kerberos=KERBEROS
                        Use Kerberos
 2010-03-16 13:37:48 +02:00
Jelmer Vernooij
31a718aa27 General cleanups of python code, hinted by pyflakes. 2010-03-01 04:46:51 +01:00
Jelmer Vernooij
6d9c0724a6 ntacl: Use existing infrastructure. 2010-03-01 04:44:08 +01:00
Matthieu Patou
bcba41c351 python-s4: use secrets.ldb instead of sam.ldb for reading domain SID 
This allow to be able to run net acl set xxx yyy on DC, but also on domain
  member.

Signed-off-by: Matthias Dieter Wallnöfer <mwallnoefer@yahoo.de>
 2010-02-11 11:47:04 +01:00