1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-22 13:34:15 +03:00
samba-mirror/source3/librpc
Stefan Metzmacher a59c9cba31 secrets.idl: add secrets_domain_info that will be used in secrets.tdb for machine account trusts
This blob will be store in secrets.tdb. It makes it possible to store much
more useful details about the workstation trust.

The key feature that that triggered this change is the ability
to store details for the next password change before doing
the remote change. This will allow us to recover from failures.

While being there I also thought about possible new features,
which we may implement in the near future.

We also store the raw UTF16 like cleartext buffer as well as derived
keys like the NTHASH (arcfour-hmac-md5 key) and other kerberos keys.
This will allow us to avoid recalculating the keys for an in memory
keytab in future.

I also added pointer to an optional lsa_ForestTrustInformation structure,
which might be useful to implement multi-tenancy in future.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=12782

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andreas Schneider <asn@samba.org>
2017-06-27 16:57:46 +02:00
..
crypto s3:gse_krb5: simplify fill_keytab_from_password() by using kerberos_fetch_salt_princ() 2017-06-27 16:57:44 +02:00
gen_ndr waf-idl: put the gen_ndr/README file for source3 back 2010-07-19 22:17:17 +10:00
idl secrets.idl: add secrets_domain_info that will be used in secrets.tdb for machine account trusts 2017-06-27 16:57:46 +02:00
rpc rpc: Always supply both the remote and local address to the auth subsystem 2017-03-29 02:37:27 +02:00
wscript_build secrets.idl: add secrets_domain_info that will be used in secrets.tdb for machine account trusts 2017-06-27 16:57:46 +02:00