wbinfo -i output domain realm vs. ntdomain before login
Stefan Metzmacher
metze at samba.org
Fri Apr 20 04:52:58 UTC 2018
Hi Samuel,
> I had a look to the attached patches in bugzilla. The LSA LookupNames
> is called when the winbind cache is cold and it returns all the
> necessary information (the referenced domain name and domain SID to
> which the looked up names belongs), so why can't we pass this up to the
> caller and use it instead checking the given name format to lookup the
> domain name after obtaining the SID?
>
> What do you think about this patch?
It guess it doesn't handle a case the following:
userPrincipalName: some.one at example.com
sAMAccountName: some
REALM: AD.EXAMPLE.PRIVATE
DOMAIN: ADDOM
If you ask for 'some.one at example.com' you should get
back 'ADDOM\some' instead of 'ADDOM\some.one'.
We may need to avoid using wcache_save_sid_to_name()
within wb_cache_name_to_sid().
metze
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: OpenPGP digital signature
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20180420/5457197b/signature.sig>
More information about the samba-technical
mailing list