'System' access to LDAPI without a bind in Samba4

Andrew Bartlett abartlet at samba.org
Wed Jun 10 06:45:05 GMT 2009


On Wed, 2009-06-10 at 16:38 +1000, tridge at samba.org wrote:
> Hi Andrew,
> 
>  > I'm pretty sure you just specify a SASL mechanism of EXTERNAL, with no
>  > data exchanged (where you would put the password or ticket) either way. 
> 
> I guess we also need to add some support for this in the s4
> ldap_server code in source4/ldap_server/ldap_bind.c, and then add some
> OS specific code for getting the uid/gid of the process connecting to
> the socket.

No, it belongs in GENSEC as another SASL mechanism.

Andrew Bartlett

-- 
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20090610/b8be9ceb/attachment.bin


More information about the samba-technical mailing list