[cifs-protocol] [REG:110120936517934] RE: Please describe MS-LSAD AuthenticationOptions

Hongwei Sun hongweis at microsoft.com
Thu Dec 9 15:40:26 MST 2010


  There is only one bit defined for this value.  That is bit POLICY_KERBEROS_VALIDATE_CLIENT (0x00000080).  All other bits SHOULD be set to 0 and ignored upon receipt.  I will file a request to add the actual hex value to POLICY_KERBEROS_VALIDATE_CLIENT.



-----Original Message-----
From: Andrew Bartlett [mailto:abartlet at samba.org] 
Sent: Wednesday, December 08, 2010 8:38 PM
To: Interoperability Documentation Help
Cc: cifs-protocol at samba.org
Subject: Re: [cifs-protocol] Please describe MS-LSAD AuthenticationOptions

On Thu, 2010-12-09 at 13:35 +1100, Andrew Bartlett wrote:
> On Thu, 2010-12-09 at 12:09 +1100, Andrew Bartlett wrote:
> > MS-LSAD states:
> > 
> > AuthenticationOptions: Optional flags that affect validations 
> > performed during authentication.
> > 
> > What are these optional flags, where and how are they stored, and 
> > what do they do?
> I was put off by the document formatting.  All the information I need 
> is there and in MS-KILE.

...almost all.  I need the actual value for the bitfield.  Can you please include the constant value in hexadecimal for POLICY_KERBEROS_VALIDATE_CLIENT I presume it is 0x00000080.


Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Cisco Inc.

More information about the cifs-protocol mailing list