diff options
| author | Volker Lendecke <vl@samba.org> | 2018-02-28 15:09:28 +0000 |
|---|---|---|
| committer | Karolin Seeger <kseeger@samba.org> | 2018-05-07 09:57:25 +0200 |
| commit | bc655b6616875961b39d6a2871dfe48ee146c7aa (patch) | |
| tree | 6db9d36664b3fdbd53107b8f1ebdc484e7cf3ea5 /source3 | |
| parent | 8da9fb5a30ea5c11eb9292fd2a4ac7bc698b4c2e (diff) | |
| download | samba-bc655b6616875961b39d6a2871dfe48ee146c7aa.tar.gz | |
winbind: Keep "force_reauth" in invalidate_cm_connection
Right now I don't see a way to actually force a re-serverauth
from the client side as long as an entry in netlogon_creds_cli.tdb
exists. cm_connect_netlogon goes through invalidate_cm_connection, and
this wipes our wish to force a reauthenticatoin. Keep this intact until
we actually did reauthenticate.
Bug: https://bugzilla.samba.org/show_bug.cgi?id=13332
Signed-off-by: Volker Lendecke <vl@samba.org>
Reviewed-by: Stefan Metzmacher <metze@samba.org>
(cherry picked from commit 4b7a9d560a51b51ac88f30276c87edc097b00d0b)
Diffstat (limited to 'source3')
| -rw-r--r-- | source3/winbindd/winbindd_cm.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/source3/winbindd/winbindd_cm.c b/source3/winbindd/winbindd_cm.c index dbefe72e718..e19fe02ffad 100644 --- a/source3/winbindd/winbindd_cm.c +++ b/source3/winbindd/winbindd_cm.c @@ -2036,7 +2036,6 @@ void invalidate_cm_connection(struct winbindd_domain *domain) } conn->auth_level = DCERPC_AUTH_LEVEL_PRIVACY; - conn->netlogon_force_reauth = false; conn->netlogon_flags = 0; TALLOC_FREE(conn->netlogon_creds); @@ -3347,6 +3346,7 @@ static NTSTATUS cm_connect_netlogon_transport(struct winbindd_domain *domain, creds, conn->netlogon_creds, &conn->netlogon_pipe); + conn->netlogon_force_reauth = false; if (!NT_STATUS_IS_OK(result)) { DEBUG(3, ("Could not open schannel'ed NETLOGON pipe. Error " "was %s\n", nt_errstr(result))); |