[cifs-protocol] Status: CAR: DS_FLAG Option bits (SRX091002600036 [MS-ADTS] 7.3.3.2 DS_FLAG option bits)
Bill Wesse
billwe at microsoft.com
Wed Dec 2 08:58:13 MST 2009
Hello Tridge - just checking in to see how things are going.
Regards,
Bill Wesse
MCSE, MCTS / Senior Escalation Engineer, US-CSS DSC PROTOCOL TEAM
8055 Microsoft Way
Charlotte, NC 28273
TEL: +1(980) 776-8200
CELL: +1(704) 661-5438
FAX: +1(704) 665-9606
-----Original Message-----
From: Bill Wesse
Sent: Friday, November 13, 2009 1:14 PM
To: 'tridge at samba.org'
Cc: 'cifs-protocol at samba.org'
Subject: RE: Status: CAR: DS_FLAG Option bits (SRX091002600036 [MS-ADTS] 7.3.3.2 DS_FLAG option bits)
Hello again - glad to see you're back. Resending the below, FYI... Please let me know if this answers your question satisfactorily; if so, I will consider the case resolved. Thanks for helping us improve our documentation.
Regards,
Bill Wesse
MCSE, MCTS / Senior Escalation Engineer, US-CSS DSC PROTOCOL TEAM
8055 Microsoft Way
Charlotte, NC 28273
TEL: +1(980) 776-8200
CELL: +1(704) 661-5438
FAX: +1(704) 665-9606
-----Original Message-----
From: Bill Wesse
Sent: Monday, October 26, 2009 1:35 PM
To: 'tridge at samba.org'
Cc: 'cifs-protocol at samba.org'
Subject: RE: Status: CAR: DS_FLAG Option bits (SRX091002600036 [MS-ADTS] 7.3.3.2 DS_FLAG option bits)
Good morning Tridge! As I previously noted, Domain Controller LDAP Ping handling will ignore anything in the filter other than the documented elements ([MS-ADTS] 7.3.3 LDAP Ping): DnsDomain, Host, User, AAC, DomainSid, DomainGuid and NtVer.
Concerning [MS-ADTS] 7.3.3.2 (Domain Controller Response to an LDAP Ping), the statements about the DS_DNS_CONTROLLER_FLAG, DS_DNS_DOMAIN_FLAG & DS_DNS_FOREST_FLAG bits have been removed, since they are not (and have never been) set in our implementation.
Please see the attached '[MS-ADTS]_Changes.pdf'; there are several other changes pending in 7.3.3.2.
We have no plans to change LDAP Ping response behavior; this is not unexpected, since there is no guarantee that a given server deployment would have any applicable hotfix or service pack installed. So the flag bits would be undependable.
Of course, the 'complete' DOMAIN_CONTROLLER_INFO can be obtained via DsGetDcName as well as the IDL_DRSDomainControllerInfo method (links are included below for the sake of completeness).
Please let me know if this answers your question satisfactorily; if so, I will consider the case resolved. Thanks for helping us improve our documentation.
==============================================================================
References:
http://msdn.microsoft.com/en-us/library/ms675983.aspx
DsGetDcName Function
http://msdn.microsoft.com/en-us/library/ms675912.aspx
DOMAIN_CONTROLLER_INFO Structure
[MS-DRSR]: Directory Replication Service (DRS) Remote Protocol Specification
4.1.5.3 Examples of the IDL_DRSDomainControllerInfo Method
4.1.5.3.3 Server Response
http://msdn.microsoft.com/en-us/library/cc228357.aspx
4.1.5.1.11 DS_DOMAIN_CONTROLLER_INFO_FFFFFFFFW
http://msdn.microsoft.com/en-us/library/cc228351.aspx
Regards,
Bill Wesse
MCSE, MCTS / Senior Escalation Engineer, US-CSS DSC PROTOCOL TEAM
8055 Microsoft Way
Charlotte, NC 28273
TEL: +1(980) 776-8200
CELL: +1(704) 661-5438
FAX: +1(704) 665-9606
-----Original Message-----
From: Bill Wesse
Sent: Monday, October 19, 2009 10:44 AM
To: 'tridge at samba.org'
Subject: RE: Status: CAR: DS_FLAG Option bits (SRX091002600036 [MS-ADTS] 7.3.3.2 DS_FLAG option bits)
Good morning Tridge - just an FYI - LDAP Ping handling will ignore anything other than the documented elements (([MS-ADTS] 7.3.3: elements: DnsDomain, Host, User, AAC, DomainSid, DomainGuid and NtVer).
The response to the TDI is still pending. I will advise you as details are available.
Regards,
Bill Wesse
MCSE, MCTS / Senior Escalation Engineer, US-CSS DSC PROTOCOL TEAM
8055 Microsoft Way
Charlotte, NC 28273
TEL: +1(980) 776-8200
CELL: +1(704) 661-5438
FAX: +1(704) 665-9606
-----Original Message-----
From: Bill Wesse
Sent: Tuesday, October 13, 2009 10:15 AM
To: 'tridge at samba.org'
Subject: Status: CAR: DS_FLAG Option bits (SRX091002600036 [MS-ADTS] 7.3.3.2 DS_FLAG option bits)
Good morning Tridge. My findings indicate that LDAP Ping handling on the DC will consider only the documented elements ([MS-ADTS] 7.3.3: elements: DnsDomain, Host, User, AAC, DomainSid, DomainGuid and NtVer).
I am still waiting for a response on the TDI.
Please note I am out of the office for the next several days, due to illness. I will keep current on any incoming email from you, as well as developments on the TDI. If needed, we can temporarily reassign the case to someone else on my team.
Regards,
Bill Wesse
MCSE, MCTS / Senior Escalation Engineer, US-CSS DSC PROTOCOL TEAM
8055 Microsoft Way
Charlotte, NC 28273
TEL: +1(980) 776-8200
CELL: +1(704) 661-5438
FAX: +1(704) 665-9606
-----Original Message-----
From: Bill Wesse
Sent: Monday, October 05, 2009 10:11 AM
To: 'tridge at samba.org'
Subject: RE: Status: CAR: DS_FLAG Option bits (SRX091002600036 [MS-ADTS] 7.3.3.2 DS_FLAG option bits)
You're welcome - I expect to begin a debug on 2008 R2 concerning this later today, or tomorrow; I can't predict whether or not modifying the search filter to would influence the result (I will look into a modified test to check this). Certainly, one would expect the DS_DNS_FOREST_FLAG to be set in the response, since DnsForestName is present (and so on).
Regards,
Bill Wesse
MCSE, MCTS / Senior Escalation Engineer, US-CSS DSC PROTOCOL TEAM
8055 Microsoft Way
Charlotte, NC 28273
TEL: +1(980) 776-8200
CELL: +1(704) 661-5438
FAX: +1(704) 665-9606
-----Original Message-----
From: tridge at samba.org [mailto:tridge at samba.org]
Sent: Friday, October 02, 2009 5:05 PM
To: Bill Wesse
Subject: Re: Status: CAR: DS_FLAG Option bits (SRX091002600036 [MS-ADTS] 7.3.3.2 DS_FLAG option bits)
> Regardless, we definitely have something missing in the LDAP Ping > documentation concerning these flag values. I will keep you advised > as information is available.
Thanks Bill!
More information about the cifs-protocol
mailing list