svn commit: samba r4338 - in branches/SAMBA_4_0/source:
libcli/auth librpc/idl
Andrew Bartlett
abartlet at samba.org
Thu Dec 23 03:06:49 GMT 2004
On Thu, 2004-12-23 at 13:23, metze at samba.org wrote:
> Author: metze
> Date: 2004-12-23 02:23:42 +0000 (Thu, 23 Dec 2004)
> New Revision: 4338
>
> WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba&rev=4338
>
> Log:
> reuse netlogon structs in the krb5 PAC
> that simplifies the code a lot...
>
> also add a note: we should fail the krb5 auth if there's no
> PAC present (when heimdal is ready for that:-)
On this point I disagree. We should support logins against an 'MIT'
server (that is, as server not doing PAC stuff), and figure out the
gorups another way. One way might be this kind of local SAM lookup, or
a different plugin for group lookups.
Andrew Bartlett
--
Andrew Bartlett abartlet at samba.org
Authentication Developer, Samba Team http://samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20041223/39820861/attachment.bin
More information about the samba-technical
mailing list