diff options
author | Andreas Schneider <asn@samba.org> | 2020-09-03 13:49:33 +0200 |
---|---|---|
committer | Karolin Seeger <kseeger@samba.org> | 2020-09-10 09:42:30 +0000 |
commit | a0c9e2e49079f093baa26621a593d45d10ba69ed (patch) | |
tree | 0f4344aebb16de945cea38ac90660c47365596b4 | |
parent | 41f9aef217fd67c2809b4a660a2bf8d479e55371 (diff) | |
download | samba-a0c9e2e49079f093baa26621a593d45d10ba69ed.tar.gz |
s3:libads: Also add a realm entry for the domain name
This is required if we try to authenticate as Administrator@DOMAIN so it
can find the KDC. This fixes 'net ads join' for ad_member_fips if we
require Kerberos auth.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14479
Signed-off-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Isaac Boukris <iboukris@samba.org>
(cherry picked from commit 6444a743525532c70634e2dd4cacadce54ba2eab)
Autobuild-User(v4-13-test): Karolin Seeger <kseeger@samba.org>
Autobuild-Date(v4-13-test): Thu Sep 10 09:42:31 UTC 2020 on sn-devel-184
-rw-r--r-- | source3/libads/kerberos.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/source3/libads/kerberos.c b/source3/libads/kerberos.c index 15ed9e933d8..03c7f35a44d 100644 --- a/source3/libads/kerberos.c +++ b/source3/libads/kerberos.c @@ -726,11 +726,15 @@ bool create_local_private_krb5_conf_for_domain(const char *realm, "\tdns_lookup_kdc = true\n\n" "[realms]\n\t%s = {\n" "%s\t}\n" + "\t%s = {\n" + "%s\t}\n" "%s\n", realm_upper, enctypes, realm_upper, kdc_ip_string, + domain, + kdc_ip_string, include_system_krb5); if (!file_contents) { |