SSSD / sssd

Clone

1cdd431 ad: Add support for passing --add-samba-data to adcli

7 files Authored by Andrew Gunnerson 4 years ago, Committed by pbrezina 4 years ago,
raw patch tree parent
7 files changed. 30 lines added. 2 lines removed.
src/config/SSSDConfig/__init__.py.in
file modified
+1 -0
src/config/cfg_rules.ini
file modified
+1 -0
src/config/etc/sssd.api.d/sssd-ad.conf
file modified
+1 -0
src/man/sssd-ad.5.xml
file modified
+16 -0
src/providers/ad/ad_common.h
file modified
+1 -0
src/providers/ad/ad_machine_pw_renewal.c
file modified
+9 -2
src/providers/ad/ad_opts.c
file modified
+1 -0 
    ad: Add support for passing --add-samba-data to adcli
    
    This adds a new option named `ad_update_samba_machine_account_password`,
    which when enabled, will pass `--add-samba-data` to the adcli command
    for updating the machine account password in Samba's secrets.tdb
    database.
    
    This option is necessary when Samba is configured to use AD for
    authentication. For Kerberos auth, Samba can use the system keytab, but
    for NTLM, Samba uses its own copy of the machine account password in its
    secrets.tdb database.
    
    See: https://pagure.io/SSSD/sssd/issue/3920
    
    Signed-off-by: Andrew Gunnerson <andrewgunnerson@gmail.com>
    
    Reviewed-by: Sumit Bose <sbose@redhat.com>
file modified
+1 -0
file modified
+1 -0
file modified
+1 -0
file modified
+16 -0
file modified
+1 -0
file modified
+9 -2
file modified
+1 -0
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.