lsa_query_info(): definitive matrix
Jean Francois Micouleau
Jean-Francois.Micouleau at dalalu.fr
Tue Dec 18 06:05:02 GMT 2001
Here are the definitive lsa_query_info() info level 3 and 5 cases. Jeremy
and I got feed up of fixing that code, so I did an extensive real test
against a bunch of NT4 and W2K machines in all configurations (including
the BDC case). Summary: Samba CVS is correct.
level 3:PolicyPrimaryDomainInformation
case ROLE_DOMAIN_PDC
case ROLE_DOMAIN_BDC
name=name of the domain/workgroup
sid=SID of the computer (S-1-5-21-x-y-z)
case ROLE_DOMAIN_MEMBER
name=name of the domain/workgroup
sid=SID of the DOMAIN=SID of the PDC/BDC
case ROLE_STANDALONE
name=name of the domain/workgroup
sid=non existant SID: S-0-0 (1)
level 5:PolicyAccountDomainInformation
case ROLE_DOMAIN_PDC
case ROLE_DOMAIN_BDC
name=name of the domain/workgroup
sid=SID of the computer (S-1-5-21-x-y-z)
case ROLE_DOMAIN_MEMBER
name=name of the computer
sid=SID of the computer (S-1-5-21-x-y-z)
case ROLE_STANDALONE
name=name of the computer
sid=SID of the computer (S-1-5-21-x-y-z)
(1) that's not a typo, the SID is S-0-0. It's not documented. I called it
the non existant SID or the backhole SID. Not to confuse with the NULL
Authority SID: S-1-0
J.F.
More information about the samba-technical
mailing list