diff options
| author | Tim Beale <timbeale@catalyst.net.nz> | 2018-05-07 17:33:51 +1200 |
|---|---|---|
| committer | Garming Sam <garming@samba.org> | 2018-05-11 06:01:24 +0200 |
| commit | 823dec9d166b3fbe2caacdb699173601603c1101 (patch) | |
| tree | 0ed94e9581e3bf19dafea3ba0a94a36dbb57dfff /selftest | |
| parent | 17d8d475e5376a3c1a313c99cd988b0d1180c5e2 (diff) | |
| download | samba-823dec9d166b3fbe2caacdb699173601603c1101.tar.gz | |
tests: Add a test case for msDS-PasswordReversibleEncryptionEnabled
Add a test for the 'msDS-PasswordReversibleEncryptionEnabled' attribute
on the PSO. The Effective-PasswordReversibleEncryptionEnabled is
based on the PSO setting (if one applies) or else the
DOMAIN_PASSWORD_STORE_CLEARTEXT bit for the domain's pwdProperties.
This indicates whether the user's cleartext password is to be stored
in the supplementalCredentials attribute (as 'Primary:CLEARTEXT').
The password_hash tests already text the cleartext behaviour, so I've
added an additional test case for PSOs. Note that supplementary-
credential information is not returned over LDAP (the password_hash
test uses a local LDB connection), so it made more sense to extend
the password_hash tests than to check this behaviour as part of the
PSO tests (i.e. rather than in password_settings.py).
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Garming Sam <garming@catalyst.net.nz>
Signed-off-by: Tim Beale <timbeale@catalyst.net.nz>
Diffstat (limited to 'selftest')
| -rw-r--r-- | selftest/knownfail.d/password_hash_gpgme | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/selftest/knownfail.d/password_hash_gpgme b/selftest/knownfail.d/password_hash_gpgme new file mode 100644 index 00000000000..a382714e5a8 --- /dev/null +++ b/selftest/knownfail.d/password_hash_gpgme @@ -0,0 +1,2 @@ +samba.tests.password_hash_gpgme.samba.tests.password_hash_gpgme.PassWordHashGpgmeTests.test_supplementalCredentials_cleartext_pso\(ad_dc:local\) + |