diff options
author | Matthieu Patou <mat@matws.net> | 2012-02-10 11:45:21 -0800 |
---|---|---|
committer | Karolin Seeger <kseeger@samba.org> | 2012-03-05 20:55:53 +0100 |
commit | ca113c3ec909eb859806ccaf97bffb2f04ec8c26 (patch) | |
tree | f8585a2119105db694c590da15cb90c58246b583 | |
parent | fc1fae9daf0bbf54ca5f7da36b316cbf123ef8d2 (diff) | |
download | samba-ca113c3ec909eb859806ccaf97bffb2f04ec8c26.tar.gz |
s3-winbindd: set the can_do_validation6 also for trusted domain
The flag can_do_validation6 was only set for the domain to which
winbindd is the member. Setting this flag in other domains (trusted
domain) if it's active directory domain is a good idea as it allow to do
level 6 validation also when winbindd is querying them directly.
(cherry picked from commit 05036fab0a9847219c73c0abd931a39fba0bccfd)
Address bug #8599 (WINBINDD_PAM_AUTH_CRAP returns invalid user session key).
(cherry picked from commit 01747a5554839f21992b8845328c4b08c3dd8ff8)
(cherry picked from commit 6c1501a8efd49efb7b9f5c75963c2f1124e7e258)
-rw-r--r-- | source3/winbindd/winbindd_cm.c | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/source3/winbindd/winbindd_cm.c b/source3/winbindd/winbindd_cm.c index cc3e3edd899..a63c3f553ea 100644 --- a/source3/winbindd/winbindd_cm.c +++ b/source3/winbindd/winbindd_cm.c @@ -1766,6 +1766,8 @@ static bool set_dc_type_and_flags_trustinfo( struct winbindd_domain *domain ) "running active directory.\n", domain->name, domain->active_directory ? "" : "NOT ")); + domain->can_do_ncacn_ip_tcp = domain->active_directory; + domain->can_do_validation6 = domain->active_directory; domain->initialized = True; |