Patch to make Samba PDC working with RAS servers
Beschorner Daniel
Daniel.Beschorner at facton.com
Fri Jan 14 19:19:45 GMT 2005
Hi!
After trying since 3.0.0 we can finally use our RAS server (W2K) with our
Samba PDC.
The MungedDial attribute gives the right place to store the dialin
permissions per user,
but there was a second problem with the permission of the preceding
SAMR_LOOKUP_DOMAIN call.
0x20 is granted for guest when the RAS server calls but it is checked
against 0x10 without the patch and so denied.
See https://bugzilla.samba.org/show_bug.cgi?id=603
I don't know if this patch is correct ??? but it works for us:
--- samba-3.0.11pre1/source/rpc_server/srv_samr_nt.c.orig 2005-01-14
16:45:48.581842000 +0100
+++ samba-3.0.11pre1/source/rpc_server/srv_samr_nt.c 2005-01-14
19:28:52.004251704 +0100
@@ -2512,7 +2512,7 @@
return NT_STATUS_INVALID_HANDLE;
if (!NT_STATUS_IS_OK(r_u->status =
access_check_samr_function(info->acc_granted,
- SA_RIGHT_SAM_ENUM_DOMAINS, "_samr_lookup_domain")))
+ SA_RIGHT_SAM_OPEN_DOMAIN, "_samr_lookup_domain")))
{
return r_u->status;
}
Daniel
More information about the samba-technical
mailing list