s4:samldb - Major rework
Andrew Bartlett
abartlet at samba.org
Mon Sep 7 17:48:16 MDT 2009
On Mon, 2009-09-07 at 01:44 -0500, Matthias Dieter Wallnöfer wrote:
>
> s4:samldb - Major rework
>
> This fixes up the change of the primary group of a user when using
> the ADUC
> console:
> - When the "primaryGroupId" attribute changes, we have to delete
> the
> "member"/"memberOf" attribute reference of the new primary group
> and add one
> for the old primary group.
> - Deny deletion of primary groups according to Windows Server (so
> we cannot
> have invalid "primaryGroupID" attributes in our AD).
> - We cannot add a primary group directly before it isn't a
> secondary one of a
> user account.
> - We cannot add a secondary reference ("member" attribute) when
> the group has
> been chosen as primary one.
>
> This also removes the LDB templates which are basically overhead
> now.
>
> This should also fix bug #6599.
This seems to have broken the LSA-SECRETS test.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Red Hat Inc. http://redhat.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20090908/fbe97f69/attachment.pgp>
More information about the samba-technical
mailing list