[PATCH v3] fixes account locked when using winbind refresh tickets
Stefan Metzmacher
metze at samba.org
Mon Jan 15 15:48:39 UTC 2018
Hi,
> + at_ptr = strchr(entry->principal_name, '@');
> + if (at_ptr != NULL) {
> + int strlen = at_ptr - entry->principal_name;
> + sam = talloc_strndup(ctx, entry->principal_name, strlen);
> + } else {
> + DBG_DEBUG("Could not determine samAccountName from %s\n",
> + entry->principal_name);
> + goto fail;
> + }
Please notice that it's not granted that the part before the @ is the
sAMAccountName!
userPrincipalName: upn at UPSSUFFIX.EXAMPLE.COM
sAMAccountName: san
In a Domain withe DNS name: ad.example.com
and Netbios name: ADDOM is not unlikely.
metze
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: OpenPGP digital signature
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20180115/83e83d8b/signature.sig>
More information about the samba-technical
mailing list