From cb23a0345f1ef4297f6643c25ebe955b9aaee54c Mon Sep 17 00:00:00 2001
From: Gary Lockyer <gary@catalyst.net.nz>
Date: Thu, 13 Dec 2018 10:17:44 +1300
Subject: idl: Add Windows event code ids

Add idl definitions for Windows Event Code Ids, and Logon Types. This
intial commit adds:

Event Ids
	4264	Successful logon
	4625	Unsuccessful logon

Logon Types
	 2	Interactive
	 3	Network
	 4	Batch
	 5	Service
	 7	Unlock
	 8	NetworkCleartext
	 9	NewCredentials
	10	RemoteInteractive
	11	CachedInteractive

The intention is to add Windows Event Codes to the JSON log messages, to
provide a common event identifier in mixed Windows and Samba networks.
And to assist security personnel with a windows background.

Signed-off-by: Gary Lockyer <gary@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
---
 source4/librpc/wscript_build | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'source4')

diff --git a/source4/librpc/wscript_build b/source4/librpc/wscript_build
index 7eb8516cf1a..da2ce8a2178 100644
--- a/source4/librpc/wscript_build
+++ b/source4/librpc/wscript_build
@@ -452,6 +452,12 @@ for env in bld.gen_python_environments():
                 cflags_end=gen_cflags
 		)
 
+	bld.SAMBA_PYTHON('dcerpc_windows_event_ids',
+		source='../../librpc/gen_ndr/py_windows_event_ids.c',
+		deps='%s %s' % (pytalloc_util, pyrpc_util),
+		realname='samba/dcerpc/windows_event_ids.so',
+                cflags_end=gen_cflags
+		)
 if bld.PYTHON_BUILD_IS_ENABLED():
 	for env in bld.gen_python_environments():
 		bld.SAMBA_SCRIPT('python_dcerpc_init',
-- 
cgit v1.2.1