question about netsamlogon_cache_get
Gerald (Jerry) Carter
jerry at samba.org
Mon Apr 30 22:35:35 GMT 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Herb,
> we have the following code in this function ifdef'ed out.
> I don't know if it is this or something else causing my
> problem. If you login as a user that is a member of several
> groups and then have a file that is accessable through
> only one of those groups, access is granted as
> expected. If you now remove the user from that group
> and logout and log back in, access is still granted
> because of the entry in netsamlogon_cache.tdb. It seems
> that access will get denied about 20 minutes later
> so something else is refreshing the group membership
> but I'm not sure what. Any ideas where we need to fix this?
The netsamlogon_cache entry is updated from the PAC
or NET_USER_INFO_3 structure in the samlogon() reply
so it should be updated every time the user logs on
or connects.
cheers, jerry
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFGNm83IR7qMdg1EfYRAhFnAKCKjysWbMKnmbj61o0LCoxyKrTdowCfUm4I
NejW8Ekpq/ZuQBaC0MD8f3g=
=dsBR
-----END PGP SIGNATURE-----
More information about the samba-technical
mailing list