Andrew Bartlett abartlet at
Tue Jan 21 20:54:01 MST 2014

On Mon, 2014-01-20 at 08:55 +0100, Stefan (metze) Metzmacher wrote:
> Hi Andrew,
> >>> can you review the attached patches from my master4-schannel-ok
> >>> branch.
> >>>
> >>> It seems that the use computer name in ServerAuthenticate must be at most
> >>> 15 characters long.
> Here's an updated patchset from my
> branch.
> We no longer alter the computer name in a cluster, we instead rely on
> ctdb readonly records to keep the performance. It seems that all DCs
> from Windows 2000 and Samba 3.0 (lastest) support netrLogonSamLogonEx.
> Only Windows NT 4.0 needs netrLogonSamLogon() and locking/write per
> authentication,
> which would involve cluster communication. But it would be still better
> than current situation, where each authentication resets the connection
> state
> within winbindd of all other cluster nodes.

This looks really good.  Reviewed-by: Andrew Bartlett
<abartlet at>

Andrew Bartlett

Andrew Bartlett             
Authentication Developer, Samba Team
Samba Developer, Catalyst IT

More information about the samba-technical mailing list