sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-13 13:18:06 +03:00
Code
e6bb55c3d5
samba-mirror/source3/libnet
History
Dan Sledz d96248a9b4 Add two new parameters to control how we verify kerberos tickets. Removes lp_use_kerberos_keytab parameter. 
The first is "kerberos method" and replaces the "use kerberos keytab"
with an enum.  Valid options are:
secrets only - use only the secrets for ticket verification (default)
system keytab - use only the system keytab for ticket verification
dedicated keytab - use a dedicated keytab for ticket verification.
secrets and keytab - use the secrets.tdb first, then the system keytab

For existing installs:
"use kerberos keytab = yes" corresponds to secrets and keytab
"use kerberos keytab = no" corresponds to secrets only

The major difference between "system keytab" and "dedicated keytab" is
that the latter method relies on kerberos to find the correct keytab
entry instead of filtering based on expected principals.

The second parameter is "dedicated keytab file", which is the keytab
to use when in "dedicated keytab" mode.  This keytab is only used in
ads_verify_ticket.
2009-02-01 20:23:31 -08:00
..
libnet_dssync_keytab.c s3-libnet: move add_to_keytab_entries to libnet_keytab. 2008-11-18 16:03:49 +01:00
libnet_dssync.c s3: fix s3 drsuapi callers. 2008-10-17 10:54:01 +02:00
libnet_dssync.h libnet dssync: add my C after dssync keytab changes. 2008-08-01 16:08:00 +02:00
libnet_join.c Add two new parameters to control how we verify kerberos tickets. Removes lp_use_kerberos_keytab parameter. 2009-02-01 20:23:31 -08:00
libnet_keytab.c s3-libnet: fix DEBUG statement in libnet_keytab. 2008-12-11 15:21:54 +01:00
libnet_keytab.h libnet keytab: add flag clean_old_entries to libnet_keytab_context. 2008-08-01 16:07:59 +02:00
libnet_proto.h s3-libnet: move add_to_keytab_entries to libnet_keytab. 2008-11-18 16:03:49 +01:00
libnet_samsync_display.c s3-libnet-samsync: pass sequence number pointer to process routine. 2008-11-18 16:05:03 +01:00
libnet_samsync_keytab.c s3-libnet-samsync: store samsync sequence number state in keytab. 2008-11-18 16:05:37 +01:00
libnet_samsync_ldif.c Fix coverity CID#117 - resource leak in error path. 2009-01-29 17:56:40 -08:00
libnet_samsync_passdb.c s3-libnet-samsync: pass sequence number pointer to process routine. 2008-11-18 16:05:03 +01:00
libnet_samsync.c s3-libnet: fix build warning (missing prototype). 2008-12-09 15:07:47 +01:00
libnet_samsync.h s3-libnet-samsync: pass sequence number pointer to process routine. 2008-11-18 16:05:03 +01:00
libnet.h net_vampire: separate keytab code from samsync code. 2008-06-27 01:58:39 +02:00