sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-28 17:47:29 +03:00
Code
68,410 Commits 60 Branches 1,146 Tags
Commit Graph

216 Commits

Author SHA1 Message Date
Matthias Dieter Wallnöfer
971ce6c5ed s4:scripting/bin/samba_spnupdate - also support adding all possible "servicePrincipalName"s 2010-10-31 18:44:06 +00:00
Andrew Bartlett
4d9b12ae8f s4-provision Remove serverdn parameter from Schema() 
We don't need to know the server DN here any more, and it
makes no sense for many callers.

Andrew Bartlett
 2010-10-19 18:57:00 +11:00
Matthias Dieter Wallnöfer
dda6c354f6 s4:dsdb python stuff - introduce also here the "show_recycled" control 
But also here beside "show_deleted" to not loose compatibility with older
provisions.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-10-03 15:23:18 +00:00
Andrew Tridgell
694f2876c9 s4-spn: don't try and send an empty SPN list 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-30 20:11:15 -07:00
Andrew Tridgell
92586abac0 s4-dns: send A record updates via TKEY 2010-09-30 00:59:16 +00:00
Andrew Tridgell
31310826e0 s4-spnupdate: when we are a RODC we need to use the WriteSPN DRS call 
we can't do SPN updates via sam writes and replication, as the sam is
read-only
 2010-09-29 03:55:04 +00:00
Andrew Tridgell
06022dad70 s4-kerberos: use TZ=GMT when we are invoking krb5 code in helpers 
Our helper scripts can fail on Fedora with the PDT timezone (Western
USA). This is the same issue we found with Heimdal earlier today, the
24 second difference between GMT and UTC, but this time in MIT
Kerberos as linked into bind9.

By forcing TZ=GMT in these scripts we avoid the problem

Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-29 03:55:04 +00:00
Andrew Tridgell
6237d56027 s4-dns: added --update-list option to samba_dnsupdate 
this allows us to use it for RODC netlogon updates
 2010-09-27 22:55:05 -07:00
Andrew Tridgell
a40dcd161c s4-dns: use the generated krb5.conf in samba_dnsupdate 
this gives one less thing that an admin can get wrong

Autobuild-User: Andrew Tridgell <tridge@samba.org>
Autobuild-Date: Mon Sep 27 02:35:29 UTC 2010 on sn-devel-104
 2010-09-27 02:35:29 +00:00
Andrew Tridgell
f3ceec9b1b s4-spn: don't try to do SPN updates as a RODC 
we don't have the permissions to do it
 2010-09-26 06:29:06 +00:00
Matthieu Patou
c680a42504 upgradeprovision: fix a typo 2010-09-26 06:22:43 +04:00
Matthieu Patou
873bd98904 upgradeprovision: Fix a bug with renamed entries 
The SD was not refetched for renamed entries, resulting with a try to
add an additional SD when there was already one.
 2010-09-26 06:22:43 +04:00
Matthieu Patou
43274c9071 upgradeprovision: fix a bug with not updated links 2010-09-26 06:22:43 +04:00
Matthieu Patou
76d87b7fb5 s4 upgradeprovision: fix a bug with empty reference objects 
Thanks to lukas@eecs.qmul.ac.uk for poiting it to me
 2010-09-26 06:22:43 +04:00
Matthieu Patou
3c95d4d313 s4 upgradeprovision: Copy versionNumber if not present it helps to make gpo valid 2010-09-26 06:22:43 +04:00
Andrew Tridgell
8beed3679d s4-dns: fixed the dns_domain_info_type for netlogon DNS calls 
w2k8r2 does check this field (WSPP docs need an update)
 2010-09-19 13:36:02 -07:00
Andrew Tridgell
6642ae9703 s4-dns: added --all-names option to samba_dnsupdate 
this forces the re-registration of all names
 2010-09-19 13:36:02 -07:00
Andrew Tridgell
f6fa73bbd3 s4-rodc: added RODC DNS update support to samba_dnsupdate 
for DNS updates that have a netlogon equivalent, send via netlogon
 2010-09-19 11:29:32 -07:00
Andrew Tridgell
7e729c4f6a s4-dns: use a non-forwardable ticket in samba_dnsupdate 
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
 2010-09-16 16:08:46 +10:00
Matthieu Patou
49321571ea upgradeprovision: avoid working with None objects ... 2010-09-05 12:29:21 +04:00
Matthieu Patou
b153558210 upgradeprovision: do not try to remove/change attribute before the RID Set object is present 2010-09-05 12:29:21 +04:00
Matthieu Patou
13d575d6e3 upgradeprovision: cleanup 2010-09-05 12:29:20 +04:00
Matthieu Patou
1d0815281e s4 upgradeprovision: add dns_update_list if missing 2010-09-05 12:29:20 +04:00
Matthieu Patou
ed51bf5f68 s4 upgradeprovision: exit with a non null return code so that it can be trapped in blackbox tests 2010-08-19 15:59:05 +04:00
Matthieu Patou
a5653bcf83 s4 upgradeprovision: add more attrbutes the ignore list 
Also format in a pretty way the int64 ranges
 2010-08-19 15:59:05 +04:00
Matthieu Patou
e378d7fd89 s4 upgradeprovision: Deal with bootstrap indexing attribute to avoid useless reindexing 2010-08-19 15:59:05 +04:00
Matthieu Patou
d79a5cc358 s4 upgradeprovision: Add a function for schema reloading 
Full schema reloading is needed when we modify exisiting elements that
have attributes that comes from not from the default schema (ie.
openchange schema, user schema ..)
 2010-08-19 15:59:04 +04:00
Matthieu Patou
3e49b20cf0 s4 upgradeprovision: Fixes for increment_keyversion 
fix
 2010-08-19 15:59:04 +04:00
Matthieu Patou
503824b757 s4 upgradeprovision: fix a typo and pass correct parameter to increment_calculated_keyversion 2010-08-19 15:59:04 +04:00
Matthieu Patou
7b41969603 s4 upgradeprovision, fix a typo preventing the ridset to be correctly identified 2010-08-10 00:57:20 +04:00
Matthieu Patou
5a8c77f97b s4: create a simple version of ktpass 
This script is intended to be a replacement for the ktutil of Windows.
It's use is for exporting keytab that will be used for kerberized
services.
 2010-07-17 17:56:16 +04:00
Matthieu Patou
36b5feceee s4 upgradeprovision: Adapt the list of attribute modified 
* isMemberOfPartialAttributeSet is now allowed to be deleted (on schema
 objects)
* attributeDisplayNames is now allowed to be added and modified (used on
  display specifiers)
* spnMapping is now allowed to be altered on Directory Service objects
* minPwdAge is now modified if the previous value was 0

We issue a clear information about the userControl attribute for
administrator to invite the user to modify himself the value.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-07-15 22:08:21 +10:00
Matthieu Patou
7478224189 s4 upgradeprovision: Synchronize the calculated keyversionnumber with the one previously stored 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-07-15 22:08:21 +10:00
Matthieu Patou
0a1b1121c4 s4 upgradeprovision: do not copy RID Set it's automaticaly created by the RID manager 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-07-15 22:08:21 +10:00
Matthieu Patou
2afc2f20b6 s4 upgradeprovision: add function to backup the provision before updating 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-07-15 22:08:21 +10:00
Matthieu Patou
6c51b3a432 s4 upgradeprovision: fix whitespaces 
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-07-15 22:08:21 +10:00
Matthieu Patou
fd2eb0dfd0 s4 provision: move update_machine_account_password to helpers 
This is to allow reuse of this function and also unit tests

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-07-15 22:08:20 +10:00
Matthieu Patou
61be498adb s4 upgradeprovision: For SID > 1000 do not copy them, let the system regenerated a new one 
This should avoid colliion with newly added objects that use the same
SID as existing users in the upgraded provision.

Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
 2010-07-08 19:28:42 +02:00
Endi S. Dewata
7cb98a0cdc s4/spnupdate: Fixed spnupdate to use secrets credentials when accessing SamDB. 
Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
 2010-06-28 19:33:47 +02:00
Andrew Tridgell
4cb423f527 s4-python: python is not always in /usr/bin 
Using "#!/usr/bin/env python" is more portable. It still isn't ideal
though, as we should really use the python path found at configure
time. We do that in many places already, but some don't.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
 2010-06-24 18:46:57 +10:00
Matthias Dieter Wallnöfer
560620a53d s4:upgradeprovision - fix include order for "ldb" 
Patch originally posted on the list by Matthieu Patou.
 2010-06-24 10:04:52 +02:00
Matthieu Patou
32f82fbec0 s4 upgradeprovision: fix the logging stuff so that it actually log 
Signed-off-by: Jelmer Vernooij <jelmer@samba.org>
 2010-06-21 23:11:50 +02:00
Jelmer Vernooij
7b32f65600 testparm: Check netbios name and workgroup characters and length. 2010-06-20 15:04:42 +02:00
Jelmer Vernooij
237ab66f6c selftest: Use scripted testparm. 2010-06-20 14:14:47 +02:00
Jelmer Vernooij
08a3e8b9f4 testparm: Simplify default option handling. 2010-06-20 13:51:39 +02:00
Jelmer Vernooij
f0ab4503d6 testparm: Fix suppress prompt option. 2010-06-20 13:47:36 +02:00
Jelmer Vernooij
c0e9a41f67 testparm: Fix exit value, install. 2010-06-20 13:41:38 +02:00
Jelmer Vernooij
74c66c9a3f s4-python: Implement LoadParm.dump(). 2010-06-20 13:29:35 +02:00
Jelmer Vernooij
f051a8557f testparm: Split up functions that do multiple things. 2010-06-20 13:22:26 +02:00
Jelmer Vernooij
0a07b8ebfe testparm: Convert to Python. 2010-06-20 13:16:30 +02:00