[PATCH] Register bypass control in password hashes ldb module
Samuel Cabrero
scabrero at zentyal.com
Fri Jul 20 04:13:16 MDT 2012
Hi,
let me introduce myself. My name is Samuel and I am a Zentyal developer,
where we have been working to integrate samba4 in our Zentyal Server
product.
I submit a patch for your review and hope to have it included in master.
The patch registers the DSDB_CONTROL_BYPASS_PASSWORD_HASH_OID control in
the password hashes LDB module to allow writing the kerberos keys in the
samba4 LDAP.
This patch is needed when you have your users stored in an external
database and want to import them to samba after the provision. In our
particular case the users are stored in openldap with the heimdal keys,
so after provision we extract the hashes from the krb5Key attributes,
generate the supplementalCredentials blob and the unicodePwd attribute
and write them to the samba user entry registering this control to
execute the LDAP modify request.
Cheers.
--
Samuel Cabrero - Developer
scabrero at zentyal.com
The Linux small business server
www.zentyal.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: register-hash-bypass-control.patch
Type: text/x-patch
Size: 943 bytes
Desc: not available
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20120720/4dfaf715/attachment.bin>
More information about the samba-technical
mailing list