diff options
author | Stefan Metzmacher <metze@samba.org> | 2019-10-22 12:12:32 +0200 |
---|---|---|
committer | Karolin Seeger <kseeger@samba.org> | 2019-11-05 12:37:33 +0000 |
commit | b62705398d13bdad54e5abb65a23fa0d94c3571d (patch) | |
tree | d7ee8503dd8a344ae06ab6f3e1e2f42115fe5e41 /selftest | |
parent | 2958016c30a8d9f80a45b64e91a20d8ebf995d85 (diff) | |
download | samba-b62705398d13bdad54e5abb65a23fa0d94c3571d.tar.gz |
s4:tests/dirsync: add tests for dirsync with extended_dn
This demonstrates a problems that the extended_dn returned
by the dirsync module always uses the SDDL format for GUID/SID
components.
Azure AD connect reports discovery errors:
reference-value-not-ldap-conformant
for attributes member and manager.
The key is that it sends the LDAP_SERVER_EXTENDED_DN_OID without
an ExtendedDNRequestValue blob, which means the flag value should
be treated as 0 and the HEX string format should be used.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14153
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
(cherry picked from commit 6d43d82b49c8cd47da2f1489fe8b52d5a873a19c)
Diffstat (limited to 'selftest')
-rw-r--r-- | selftest/knownfail.d/dirsync_extended_dn | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/selftest/knownfail.d/dirsync_extended_dn b/selftest/knownfail.d/dirsync_extended_dn new file mode 100644 index 00000000000..0ef6ea56391 --- /dev/null +++ b/selftest/knownfail.d/dirsync_extended_dn @@ -0,0 +1 @@ +^samba4.ldap.dirsync.python.*.__main__.ExtendedDirsyncTests.test_dirsync_extended_dn |