[SCM] Samba Shared Repository - branch master updated

Andrew Bartlett abartlet at samba.org
Thu Apr 29 03:48:44 MDT 2010 

The branch, master has been updated
       via  084c806... s4:libnet Make 'net vampire' more robust to command line arguments
       via  716ae7b... s4:howto Improve OpenLDAP backend instructions
      from  dbbbc7d... s4/rodc: RODC FAS initial implementation

http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master


- Log -----------------------------------------------------------------
commit 084c8065f871c1aa31f5d157f1843437db449603
Author: Andrew Bartlett <abartlet at samba.org>
Date:   Thu Apr 29 08:51:01 2010 +1000

    s4:libnet Make 'net vampire' more robust to command line arguments
    
    When we have just joined a domain, we know a bit about that domain.
    Use these to override previous guesses as to what domain and realm to
    use for the rest of the join.
    
    Andrew Bartlett

commit 716ae7b4c829c811eb8a7fe03b702afd51d448b4
Author: Andrew Bartlett <abartlet at samba.org>
Date:   Thu Apr 29 07:58:48 2010 +1000

    s4:howto Improve OpenLDAP backend instructions

-----------------------------------------------------------------------

Summary of changes:
 howto-ol-backend-s4.txt         |   10 ++++++----
 source4/libnet/libnet_vampire.c |   20 ++++++++++++++++++++
 2 files changed, 26 insertions(+), 4 deletions(-)


Changeset truncated at 500 lines:

diff --git a/howto-ol-backend-s4.txt b/howto-ol-backend-s4.txt
index ef3aad6..04b8ab6 100644
--- a/howto-ol-backend-s4.txt
+++ b/howto-ol-backend-s4.txt
@@ -5,10 +5,13 @@ oliver at itc.li  -  August 2009
 
 
 This Mini-Howto describes in a very simplified way 
-how to setup Samba 4 (S4) (pre)Alpha 9 with the
+how to setup Samba 4 (S4) (pre)Alpha 13 with the
 OpenLDAP (OL) -Backend.
-Use of OpenLDAP >= 2.4.17 is strongly recommended.
+Use of OpenLDAP from CVS after 2010-04-22 is required
 
+The current instructions are at:
+
+http://wiki.samba.org/index.php/Samba4/LDAP_Backend/OpenLDAP
 
 1.) Download and compile OpenLDAP. 
 
@@ -32,7 +35,7 @@ cn=Administrator,cn=users,<Your Base-DN>):
 
 #> setup/provision \
    --ldap-backend-type=openldap \
-   --ol-slapd="/usr/local/libexec/slapd"
+   --slapd-path="/usr/local/libexec/slapd"
    --username=samba-admin --realm=ldap.local.site \
    --domain=LDAP --server-role='domain controller'\
    --adminpass=linux
@@ -92,7 +95,6 @@ Attention: You _should_not_ edit the olc-Sections
 
 
 b) MultiMaster-Configuration (MMR):
-At this time (S4 (pre)Alpha9) the only possible Replication setup.
 Use the provision Parameter:
 
  --ol-mmr-urls=<list of whitespace separated ldap-urls (and Ports <> 389!).
diff --git a/source4/libnet/libnet_vampire.c b/source4/libnet/libnet_vampire.c
index 8d2393f..a5c8a8f 100644
--- a/source4/libnet/libnet_vampire.c
+++ b/source4/libnet/libnet_vampire.c
@@ -36,6 +36,7 @@
 #include "system/time.h"
 #include "lib/ldb_wrap.h"
 #include "auth/auth.h"
+#include "auth/credentials/credentials.h"
 #include "param/param.h"
 #include "param/provision.h"
 #include "libcli/security/dom_sid.h"
@@ -655,6 +656,11 @@ NTSTATUS libnet_Vampire(struct libnet_context *ctx, TALLOC_CTX *mem_ctx,
 		return NT_STATUS_NO_MEMORY;
 	}
 	
+	/* Re-use the domain we are joining as the domain for the user
+	 * to be authenticated with, unless they specified
+	 * otherwise */
+	cli_credentials_set_domain(ctx->cred, r->in.domain_name, CRED_GUESS_ENV);
+
 	join->in.domain_name	= r->in.domain_name;
 	join->in.account_name	= account_name;
 	join->in.netbios_name	= netbios_name;
@@ -673,6 +679,20 @@ NTSTATUS libnet_Vampire(struct libnet_context *ctx, TALLOC_CTX *mem_ctx,
 	s->targetdir = r->in.targetdir;
 
 	ZERO_STRUCT(b);
+
+	/* Be more robust:
+	 * We now know the domain and realm for sure - if they didn't
+	 * put one on the command line, use this for the rest of the
+	 * join */
+	cli_credentials_set_realm(ctx->cred, join->out.realm, CRED_GUESS_ENV);
+	cli_credentials_set_domain(ctx->cred, join->out.domain_name, CRED_GUESS_ENV);
+
+	/* Now set these values into the smb.conf - we probably had
+	 * empty or useless defaults here from whatever smb.conf we
+	 * started with */
+	lp_set_cmdline(s->lp_ctx, "realm", join->out.realm);
+	lp_set_cmdline(s->lp_ctx, "workgroup", join->out.domain_name);
+
 	b.in.domain_dns_name		= join->out.realm;
 	b.in.domain_netbios_name	= join->out.domain_name;
 	b.in.domain_sid			= join->out.domain_sid;


-- 
Samba Shared Repository

More information about the samba-cvs mailing list