[cifs-protocol] Re: 602144 RE: CDAP netlogon and 'implementation defined' behaviour

Andrew Bartlett abartlet at samba.org
Thu Jul 10 06:28:05 GMT 2008


On Tue, 2008-07-08 at 13:59 -0700, Richard Guthrie wrote:
> Andrew,
> 
> As per our previous conversation regarding NETLOGON_SAM_LOGON_RESPONSE_NT40, I wanted to send you a proposed update to the documentation to see if this resolves the issue.  The current MS-ADTS documentation for section 7.3.3.2 Domain Controller Response to an LDAP Ping reads as follows:
> 
> If the server is configured to respond to ping requests in the form of a NETLOGON_SAM_LOGON_RESPONSE_NT40 structure (the way in which the server is configured is outside the state model and is implementation-dependent), and v does not have the NETLOGON_NT_VERSION_AVOID_NT4EMUL bit set, the response of the dc is documented in "Response to Invalid Filter" (section 7.3.3.3).
> 
> The proposed update to this text is as follows:
> 
> If the server is configured to respond to ping requests in the form of a NETLOGON_SAM_LOGON_RESPONSE_NT40 structure (the way in which the server is configured is outside the state model and is implementation-dependent), and v does not have the NETLOGON_NT_VERSION_AVOID_NT4EMUL bit set, the server uses the NETLOGON_SAM_LOGON_RESPONSE_NT40 structure to send the response back.
> 
> The intended changes highlights that if the server is configured to respond to ping request using the NETLOGON_SAM_LOGON_RESPONSE_NT40 structure, then that is what the client will receive.  It also intends to leave open how this is implemented so that you the implementer can decide how this gets enabled/disabled.  Please let us know if this resolves your issue and we will update the documentation accordingly.

We seem to be going in circles, perhaps because MS-ADTS does not have a
'windows behaviour' section.  Why is it so hard to list the reasons (for
the 'implementation dependent behaviour' we discussed on the phone?  

Andrew Bartlett
-- 
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/cifs-protocol/attachments/20080710/16496e4d/attachment.bin


More information about the cifs-protocol mailing list