s4:samldb - Major rework

Andrew Bartlett abartlet at samba.org
Mon Sep 7 17:48:16 MDT 2009

On Mon, 2009-09-07 at 01:44 -0500, Matthias Dieter Wallnöfer wrote:
>     s4:samldb - Major rework
>     This fixes up the change of the primary group of a user when using
> the ADUC
>     console:
>     - When the "primaryGroupId" attribute changes, we have to delete
> the
>       "member"/"memberOf" attribute reference of the new primary group
> and add one
>       for the old primary group.
>     - Deny deletion of primary groups according to Windows Server (so
> we cannot
>       have invalid "primaryGroupID" attributes in our AD).
>     - We cannot add a primary group directly before it isn't a
> secondary one of a
>       user account.
>     - We cannot add a secondary reference ("member" attribute) when
> the group has
>       been chosen as primary one.
>     This also removes the LDB templates which are basically overhead
> now.
>     This should also fix bug #6599.

This seems to have broken the LSA-SECRETS test.

Andrew Bartlett
Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.                  http://redhat.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20090908/fbe97f69/attachment.pgp>

More information about the samba-technical mailing list