W_ERROR_HAVE_NO_MEMORY(j->in.account_ou);
}
- if (r->in.account) {
- j->in.admin_account = talloc_strdup(mem_ctx, r->in.account);
- W_ERROR_HAVE_NO_MEMORY(j->in.admin_account);
- }
+ if (r->in.account != NULL) {
+ NTSTATUS status;
- if (r->in.password) {
- j->in.admin_password = talloc_strdup(mem_ctx, r->in.password);
- W_ERROR_HAVE_NO_MEMORY(j->in.admin_password);
+ status = ads_simple_creds(j,
+ r->in.domain,
+ r->in.account,
+ r->in.password,
+ &j->in.admin_credentials);
+ if (!NT_STATUS_IS_OK(status)) {
+ TALLOC_FREE(j);
+ return WERR_NERR_BADUSERNAME;
+ }
+ } else {
+ libnetapi_get_creds(mem_ctx, &j->in.admin_credentials);
+ if (j->in.admin_credentials == NULL) {
+ TALLOC_FREE(j);
+ return WERR_NERR_BADUSERNAME;
+ }
}
j->in.join_flags = r->in.join_flags;
u->in.domain_name = domain;
}
- if (r->in.account) {
- u->in.admin_account = talloc_strdup(mem_ctx, r->in.account);
- W_ERROR_HAVE_NO_MEMORY(u->in.admin_account);
- }
+ if (r->in.account != NULL) {
+ NTSTATUS status;
- if (r->in.password) {
- u->in.admin_password = talloc_strdup(mem_ctx, r->in.password);
- W_ERROR_HAVE_NO_MEMORY(u->in.admin_password);
+ status = ads_simple_creds(u,
+ domain,
+ r->in.account,
+ r->in.password,
+ &u->in.admin_credentials);
+ if (!NT_STATUS_IS_OK(status)) {
+ TALLOC_FREE(u);
+ return WERR_NERR_BADUSERNAME;
+ }
+ } else {
+ libnetapi_get_creds(mem_ctx, &u->in.admin_credentials);
+ if (u->in.admin_credentials == NULL) {
+ TALLOC_FREE(u);
+ return WERR_NERR_BADUSERNAME;
+ }
}
u->in.domain_name = domain;
{
WERROR werr;
struct libnet_JoinCtx *j = NULL;
- int use_kerberos = 0;
- const char *username = NULL;
werr = libnet_init_JoinCtx(mem_ctx, &j);
if (!W_ERROR_IS_OK(werr)) {
}
}
- libnetapi_get_username(ctx, &username);
- if (username == NULL) {
+ libnetapi_get_creds(ctx, &j->in.admin_credentials);
+ if (j->in.admin_credentials == NULL) {
talloc_free(j);
return WERR_NERR_BADUSERNAME;
}
- j->in.admin_account = talloc_strdup(j, username);
- if (j->in.admin_account == NULL) {
- talloc_free(j);
- return WERR_NOT_ENOUGH_MEMORY;
- }
-
- libnetapi_get_use_kerberos(ctx, &use_kerberos);
- if (!use_kerberos) {
- const char *password = NULL;
-
- libnetapi_get_password(ctx, &password);
- if (password == NULL) {
- talloc_free(j);
- return WERR_NERR_BADPASSWORD;
- }
- j->in.admin_password = talloc_strdup(j, password);
- if (j->in.admin_password == NULL) {
- talloc_free(j);
- return WERR_NOT_ENOUGH_MEMORY;
- }
- }
-
- j->in.use_kerberos = use_kerberos;
j->in.debug = true;
j->in.join_flags = WKSSVC_JOIN_FLAGS_JOIN_TYPE |
WKSSVC_JOIN_FLAGS_ACCOUNT_CREATE;
static ADS_STATUS libnet_connect_ads(const char *dns_domain_name,
const char *netbios_domain_name,
const char *dc_name,
- const char *user_name,
- const char *password,
- const char *ccname,
+ struct cli_credentials *creds,
TALLOC_CTX *mem_ctx,
ADS_STRUCT **ads)
{
TALLOC_CTX *tmp_ctx = talloc_stackframe();
ADS_STATUS status;
ADS_STRUCT *my_ads = NULL;
- char *cp;
- enum credentials_use_kerberos krb5_state;
my_ads = ads_init(tmp_ctx,
dns_domain_name,
goto out;
}
- /* In FIPS mode, client use kerberos is forced to required. */
- krb5_state = lp_client_use_kerberos();
- switch (krb5_state) {
- case CRED_USE_KERBEROS_REQUIRED:
- my_ads->auth.flags &= ~ADS_AUTH_DISABLE_KERBEROS;
- my_ads->auth.flags &= ~ADS_AUTH_ALLOW_NTLMSSP;
- break;
- case CRED_USE_KERBEROS_DESIRED:
- my_ads->auth.flags &= ~ADS_AUTH_DISABLE_KERBEROS;
- my_ads->auth.flags |= ADS_AUTH_ALLOW_NTLMSSP;
- break;
- case CRED_USE_KERBEROS_DISABLED:
- my_ads->auth.flags |= ADS_AUTH_DISABLE_KERBEROS;
- my_ads->auth.flags |= ADS_AUTH_ALLOW_NTLMSSP;
- break;
- }
-
- if (user_name) {
- ADS_TALLOC_CONST_FREE(my_ads->auth.user_name);
- my_ads->auth.user_name = talloc_strdup(my_ads, user_name);
- if (my_ads->auth.user_name == NULL) {
- status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
- goto out;
- }
- if ((cp = strchr_m(my_ads->auth.user_name, '@'))!=0) {
- *cp++ = '\0';
- ADS_TALLOC_CONST_FREE(my_ads->auth.realm);
- my_ads->auth.realm = talloc_asprintf_strupper_m(my_ads, "%s", cp);
- if (my_ads->auth.realm == NULL) {
- status = ADS_ERROR_LDAP(LDAP_NO_MEMORY);
- goto out;
- }
- }
- }
-
- if (password) {
- ADS_TALLOC_CONST_FREE(my_ads->auth.password);
- my_ads->auth.password = talloc_strdup(my_ads, password);
- if (my_ads->auth.password == NULL) {
- status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
- goto out;
- }
- }
-
- if (ccname != NULL) {
- ADS_TALLOC_CONST_FREE(my_ads->auth.ccache_name);
- my_ads->auth.ccache_name = talloc_strdup(my_ads, ccname);
- if (my_ads->auth.ccache_name == NULL) {
- status = ADS_ERROR_NT(NT_STATUS_NO_MEMORY);
- goto out;
- }
- setenv(KRB5_ENV_CCNAME, my_ads->auth.ccache_name, 1);
- }
-
- status = ads_connect_user_creds(my_ads);
+ status = ads_connect_creds(my_ads, creds);
if (!ADS_ERR_OK(status)) {
goto out;
}
bool use_machine_creds)
{
ADS_STATUS status;
- const char *username;
- const char *password;
- const char *ccname = NULL;
+ struct cli_credentials *creds = NULL;
if (use_machine_creds) {
+ const char *username = NULL;
+ NTSTATUS ntstatus;
+
if (r->in.machine_name == NULL ||
r->in.machine_password == NULL) {
return ADS_ERROR_NT(NT_STATUS_INVALID_PARAMETER);
}
- username = talloc_asprintf(mem_ctx, "%s$",
- r->in.machine_name);
- if (username == NULL) {
- return ADS_ERROR(LDAP_NO_MEMORY);
- }
- password = r->in.machine_password;
- ccname = "MEMORY:libnet_join_machine_creds";
- } else {
- char *p = NULL;
-
- username = r->in.admin_account;
-
- p = strchr(r->in.admin_account, '@');
- if (p == NULL) {
- username = talloc_asprintf(mem_ctx, "%s@%s",
- r->in.admin_account,
- r->in.admin_domain);
- }
- if (username == NULL) {
- return ADS_ERROR(LDAP_NO_MEMORY);
+ if (r->out.dns_domain_name != NULL) {
+ username = talloc_asprintf(mem_ctx, "%s$@%s",
+ r->in.machine_name,
+ r->out.dns_domain_name);
+ if (username == NULL) {
+ return ADS_ERROR(LDAP_NO_MEMORY);
+ }
+ } else {
+ username = talloc_asprintf(mem_ctx, "%s$",
+ r->in.machine_name);
+ if (username == NULL) {
+ return ADS_ERROR(LDAP_NO_MEMORY);
+ }
}
- password = r->in.admin_password;
-
- /*
- * when r->in.use_kerberos is set to allow "net ads join -k" we
- * may not override the provided credential cache - gd
- */
- if (!r->in.use_kerberos) {
- ccname = "MEMORY:libnet_join_user_creds";
+ ntstatus = ads_simple_creds(mem_ctx,
+ r->out.netbios_domain_name,
+ username,
+ r->in.machine_password,
+ &creds);
+ if (!NT_STATUS_IS_OK(ntstatus)) {
+ return ADS_ERROR_NT(ntstatus);
}
+ } else {
+ creds = r->in.admin_credentials;
}
status = libnet_connect_ads(r->out.dns_domain_name,
r->out.netbios_domain_name,
r->in.dc_name,
- username,
- password,
- ccname,
+ creds,
r,
&r->in.ads);
if (!ADS_ERR_OK(status)) {
status = libnet_connect_ads(r->in.domain_name,
r->in.domain_name,
r->in.dc_name,
- r->in.admin_account,
- r->in.admin_password,
- NULL,
+ r->in.admin_credentials,
r,
&r->in.ads);
if (!ADS_ERR_OK(status)) {
* to update msDS-SupportedEncryptionTypes reliable
*/
- if (r->in.ads->auth.ccache_name != NULL) {
- ads_kdestroy(r->in.ads->auth.ccache_name);
- ADS_TALLOC_CONST_FREE(r->in.ads->auth.ccache_name);
- }
-
TALLOC_FREE(r->in.ads);
status = libnet_join_connect_ads_machine(mem_ctx, r);
static NTSTATUS libnet_join_connect_dc_ipc(TALLOC_CTX *mem_ctx,
const char *dc,
- const char *user,
- const char *domain,
- const char *pass,
- bool use_kerberos,
+ struct cli_credentials *creds,
struct cli_state **cli)
{
- TALLOC_CTX *frame = talloc_stackframe();
- bool fallback_after_kerberos = false;
- bool use_ccache = false;
- bool pw_nt_hash = false;
- struct cli_credentials *creds = NULL;
int flags = CLI_FULL_CONNECTION_IPC;
NTSTATUS status;
- if (use_kerberos && pass) {
- fallback_after_kerberos = true;
- }
-
- creds = cli_session_creds_init(frame,
- user,
- domain,
- NULL, /* realm (use default) */
- pass,
- use_kerberos,
- fallback_after_kerberos,
- use_ccache,
- pw_nt_hash);
- if (creds == NULL) {
- TALLOC_FREE(frame);
- return NT_STATUS_NO_MEMORY;
- }
-
status = cli_full_connection_creds(mem_ctx,
cli,
NULL,
creds,
flags);
if (!NT_STATUS_IS_OK(status)) {
- TALLOC_FREE(frame);
return status;
}
- TALLOC_FREE(frame);
return NT_STATUS_OK;
}
struct libnet_JoinCtx *r,
struct cli_state **cli)
{
+ TALLOC_CTX *frame = talloc_stackframe();
struct rpc_pipe_client *pipe_hnd = NULL;
struct policy_handle lsa_pol;
NTSTATUS status, result;
union lsa_PolicyInformation *info = NULL;
+ struct cli_credentials *creds = NULL;
struct dcerpc_binding_handle *b;
- const char *account = r->in.admin_account;
- const char *domain = r->in.admin_domain;
- const char *password = r->in.admin_password;
- bool use_kerberos = r->in.use_kerberos;
if (r->in.join_flags & WKSSVC_JOIN_FLAGS_JOIN_UNSECURE) {
- account = "";
- domain = "";
- password = NULL;
- use_kerberos = false;
+ creds = cli_credentials_init_anon(frame);
+ if (creds == NULL) {
+ status = NT_STATUS_NO_MEMORY;
+ goto done;
+ }
+ } else {
+ creds = r->in.admin_credentials;
}
status = libnet_join_connect_dc_ipc(mem_ctx,
r->in.dc_name,
- account,
- domain,
- password,
- use_kerberos,
+ creds,
cli);
if (!NT_STATUS_IS_OK(status)) {
goto done;
TALLOC_FREE(pipe_hnd);
done:
+ TALLOC_FREE(frame);
return status;
}
r->in.secure_channel_type);
/* according to WKSSVC_JOIN_FLAGS_MACHINE_PWD_PASSED */
- cli_credentials_set_password(cli_creds, r->in.admin_password,
+ cli_credentials_set_password(cli_creds,
+ r->in.passed_machine_password,
CRED_SPECIFIED);
status = rpccli_create_netlogon_creds_ctx(
NTSTATUS libnet_join_ok(struct messaging_context *msg_ctx,
const char *netbios_domain_name,
const char *dc_name,
- const bool use_kerberos)
+ enum credentials_use_kerberos kerberos_state)
{
TALLOC_CTX *frame = talloc_stackframe();
struct cli_state *cli = NULL;
/* we don't want any old password */
cli_credentials_set_old_password(cli_creds, NULL, CRED_SPECIFIED);
- if (use_kerberos) {
- cli_credentials_set_kerberos_state(cli_creds,
- CRED_USE_KERBEROS_REQUIRED,
- CRED_SPECIFIED);
- }
+ cli_credentials_set_kerberos_state(cli_creds,
+ kerberos_state,
+ CRED_SPECIFIED);
status = cli_full_connection_creds(frame,
&cli,
struct libnet_JoinCtx *r)
{
NTSTATUS status;
+ enum credentials_use_kerberos kerberos_state = CRED_USE_KERBEROS_DESIRED;
+
+ if (r->in.admin_credentials != NULL) {
+ kerberos_state = cli_credentials_get_kerberos_state(
+ r->in.admin_credentials);
+ }
status = libnet_join_ok(r->in.msg_ctx,
r->out.netbios_domain_name,
r->in.dc_name,
- r->in.use_kerberos);
+ kerberos_state);
if (!NT_STATUS_IS_OK(status)) {
libnet_join_set_error_string(mem_ctx, r,
"failed to verify domain membership after joining: %s",
status = libnet_join_connect_dc_ipc(mem_ctx,
r->in.dc_name,
- r->in.admin_account,
- r->in.admin_domain,
- r->in.admin_password,
- r->in.use_kerberos,
+ r->in.admin_credentials,
&cli);
if (!NT_STATUS_IS_OK(status)) {
goto done;
return WERR_OK;
}
- if (!r->in.admin_domain) {
- char *admin_domain = NULL;
- char *admin_account = NULL;
- bool ok;
-
- ok = split_domain_user(mem_ctx,
- r->in.admin_account,
- &admin_domain,
- &admin_account);
- if (!ok) {
- return WERR_NOT_ENOUGH_MEMORY;
- }
-
- if (admin_domain != NULL) {
- r->in.admin_domain = admin_domain;
- } else {
- r->in.admin_domain = r->in.domain_name;
- }
- r->in.admin_account = admin_account;
- }
-
if (r->in.provision_computer_account_only) {
/*
* When in the "provision_computer_account_only" path we do not
/* Before contacting a DC, we can securely know
* the realm only if the user specifies it.
*/
- if (r->in.use_kerberos &&
- r->in.domain_name_type == JoinDomNameTypeDNS) {
+ if (r->in.domain_name_type == JoinDomNameTypeDNS) {
pre_connect_realm = r->in.domain_name;
}
u->in.debug = r->in.debug;
u->in.dc_name = r->in.dc_name;
u->in.domain_name = r->in.domain_name;
- u->in.admin_account = r->in.admin_account;
- u->in.admin_password = r->in.admin_password;
+ u->in.admin_credentials = r->in.admin_credentials;
u->in.modify_config = r->in.modify_config;
- u->in.use_kerberos = r->in.use_kerberos;
u->in.unjoin_flags = WKSSVC_JOIN_FLAGS_JOIN_TYPE |
WKSSVC_JOIN_FLAGS_ACCOUNT_DELETE;
return WERR_NERR_SETUPDOMAINCONTROLLER;
}
- if (!r->in.admin_domain) {
- char *admin_domain = NULL;
- char *admin_account = NULL;
- bool ok;
-
- ok = split_domain_user(mem_ctx,
- r->in.admin_account,
- &admin_domain,
- &admin_account);
- if (!ok) {
- return WERR_NOT_ENOUGH_MEMORY;
- }
-
- if (admin_domain != NULL) {
- r->in.admin_domain = admin_domain;
- } else {
- r->in.admin_domain = r->in.domain_name;
- }
- r->in.admin_account = admin_account;
- }
-
if (!secrets_init()) {
libnet_unjoin_set_error_string(mem_ctx, r,
"Unable to open secrets database");
NTSTATUS libnet_join_ok(struct messaging_context *msg_ctx,
const char *netbios_domain_name,
const char *dc_name,
- const bool use_kerberos);
+ enum credentials_use_kerberos kerberos_state);
WERROR libnet_init_JoinCtx(TALLOC_CTX *mem_ctx,
struct libnet_JoinCtx **r);
WERROR libnet_init_UnjoinCtx(TALLOC_CTX *mem_ctx,
[in,ref] string *domain_name,
[in] libnetjoin_JoinDomNameType domain_name_type,
[in] string account_ou,
- [in] string admin_account,
- [in] string admin_domain,
- [in,noprint] string admin_password,
- [in] string machine_password,
+ [in,ignore] cli_credentials *admin_credentials,
+ [in,flag(NDR_SECRET)] string passed_machine_password,
+ [in,flag(NDR_SECRET)] string machine_password,
[in] wkssvc_joinflags join_flags,
[in] string os_version,
[in] string os_name,
[in] boolean8 modify_config,
[in,unique] ads_struct *ads,
[in] boolean8 debug,
- [in] boolean8 use_kerberos,
[in] netr_SchannelType secure_channel_type,
[in,noprint] messaging_context *msg_ctx,
[in] uint32 desired_encryption_types,
[in] string machine_name,
[in] string domain_name,
[in] string account_ou,
- [in] string admin_account,
- [in] string admin_domain,
- [in,noprint] string admin_password,
- [in] string machine_password,
+ [in,ignore] cli_credentials *admin_credentials,
[in] wkssvc_joinflags unjoin_flags,
[in] boolean8 delete_machine_account,
[in] boolean8 modify_config,
[in] dom_sid *domain_sid,
[in,unique] ads_struct *ads,
[in] boolean8 debug,
- [in] boolean8 use_kerberos,
- [in,noprint] messaging_context *msg_ctx,
+ [in,ignore] messaging_context *msg_ctx,
[out] string netbios_domain_name,
[out] string dns_domain_name,
[out] string forest_name,
#include "smbd/smbd.h"
#include "auth.h"
#include "krb5_env.h"
+#include "ads.h"
#undef DBGC_CLASS
#define DBGC_CLASS DBGC_RPC_SRV
return werr;
}
+ status = ads_simple_creds(j,
+ admin_domain,
+ admin_account,
+ cleartext_pwd,
+ &j->in.admin_credentials);
+ if (!NT_STATUS_IS_OK(status)) {
+ return WERR_NERR_BADUSERNAME;
+ }
+
j->in.domain_name = r->in.domain_name;
j->in.account_ou = r->in.account_ou;
j->in.join_flags = r->in.join_flags;
- j->in.admin_account = admin_account;
- j->in.admin_password = cleartext_pwd;
j->in.debug = true;
j->in.modify_config = lp_config_backend_is_registry();
j->in.msg_ctx = p->msg_ctx;
become_root();
- setenv(KRB5_ENV_CCNAME, "MEMORY:_wkssvc_NetrJoinDomain2", 1);
werr = libnet_Join(p->mem_ctx, j);
- unsetenv(KRB5_ENV_CCNAME);
unbecome_root();
if (!W_ERROR_IS_OK(werr)) {
return werr;
}
+ status = ads_simple_creds(u,
+ admin_domain,
+ admin_account,
+ cleartext_pwd,
+ &u->in.admin_credentials);
+ if (!NT_STATUS_IS_OK(status)) {
+ return WERR_NERR_BADUSERNAME;
+ }
+
u->in.domain_name = lp_realm();
u->in.unjoin_flags = r->in.unjoin_flags |
WKSSVC_JOIN_FLAGS_JOIN_TYPE;
- u->in.admin_account = admin_account;
- u->in.admin_password = cleartext_pwd;
u->in.debug = true;
u->in.modify_config = lp_config_backend_is_registry();
u->in.msg_ctx = p->msg_ctx;
become_root();
- setenv(KRB5_ENV_CCNAME, "MEMORY:_wkssvc_NetrUnjoinDomain2", 1);
werr = libnet_Unjoin(p->mem_ctx, u);
- unsetenv(KRB5_ENV_CCNAME);
unbecome_root();
if (!W_ERROR_IS_OK(werr)) {
}
r->in.debug = true;
- r->in.use_kerberos = c->opt_kerberos;
r->in.dc_name = c->opt_host;
r->in.domain_name = lp_realm();
- r->in.admin_account = c->opt_user_name;
- r->in.admin_password = net_prompt_pass(c, c->opt_user_name);
+ r->in.admin_credentials = c->creds;
r->in.modify_config = lp_config_backend_is_registry();
/* Try to delete it, but if that fails, disable it. The
r->in.os_version = os_version;
r->in.os_servicepack = os_servicepack;
r->in.dc_name = c->opt_host;
- r->in.admin_account = c->opt_user_name;
- r->in.admin_password = net_prompt_pass(c, c->opt_user_name);
+ r->in.admin_credentials = c->creds;
r->in.machine_password = machine_password;
r->in.debug = true;
- r->in.use_kerberos = c->opt_kerberos;
r->in.modify_config = modify_config;
r->in.join_flags = WKSSVC_JOIN_FLAGS_JOIN_TYPE |
WKSSVC_JOIN_FLAGS_ACCOUNT_CREATE |
r->in.domain_name = domain;
r->in.secure_channel_type = sec_chan_type;
r->in.dc_name = c->opt_host;
- r->in.admin_account = "";
- r->in.admin_password = strlower_talloc(r, pw);
- if (r->in.admin_password == NULL) {
+ r->in.passed_machine_password = strlower_talloc(r, pw);
+ if (r->in.passed_machine_password == NULL) {
werr = WERR_NOT_ENOUGH_MEMORY;
goto fail;
}
TALLOC_CTX *mem_ctx;
const char *domain = c->opt_target_workgroup;
const char *dc = c->opt_host;
+ enum credentials_use_kerberos kerberos_state =
+ cli_credentials_get_kerberos_state(c->creds);
if (c->display_usage) {
d_printf("Usage\n"
status = libnet_join_ok(c->msg_ctx,
c->opt_workgroup,
dc,
- c->opt_kerberos);
+ kerberos_state);
if (!NT_STATUS_IS_OK(status)) {
fprintf(stderr,"Join to domain '%s' is not valid: %s\n",
domain, nt_errstr(status));
r->in.domain_name = domain;
r->in.secure_channel_type = sec_chan_type;
r->in.dc_name = c->opt_host;
- r->in.admin_account = c->opt_user_name;
- r->in.admin_password = net_prompt_pass(c, c->opt_user_name);
+ r->in.admin_credentials = c->creds;
r->in.debug = true;
- r->in.use_kerberos = c->opt_kerberos;
r->in.modify_config = modify_config;
r->in.join_flags = WKSSVC_JOIN_FLAGS_JOIN_TYPE |
WKSSVC_JOIN_FLAGS_ACCOUNT_CREATE |
r->in.domain_name_type = JoinDomNameTypeDNS;
r->in.create_upn = r->in.upn != NULL ? true : false;
r->in.dc_name = self->server_address;
- r->in.admin_account = cli_credentials_get_username(self->creds);
- r->in.admin_password = cli_credentials_get_password(self->creds);
- r->in.use_kerberos = cli_credentials_get_kerberos_state(self->creds);
+ r->in.admin_credentials = self->creds;
r->in.modify_config = modify_config;
r->in.join_flags = WKSSVC_JOIN_FLAGS_JOIN_TYPE |
WKSSVC_JOIN_FLAGS_ACCOUNT_CREATE |
WKSSVC_JOIN_FLAGS_DOMAIN_JOIN_IF_JOINED;
r->in.msg_ctx = cmdline_messaging_context(get_dyn_CONFIGFILE());
r->in.debug = debug;
- c->opt_user_name = r->in.admin_account;
- c->opt_password = r->in.admin_password;
- c->opt_kerberos = r->in.use_kerberos;
+
+ c->creds = self->creds;
+ c->opt_user_name = cli_credentials_get_username(self->creds);
+ c->opt_password = cli_credentials_get_password(self->creds);
+ c->opt_kerberos = cli_credentials_get_kerberos_state(self->creds);
werr = libnet_Join(mem_ctx, r);
if (W_ERROR_EQUAL(werr, WERR_NERR_DCNOTFOUND)) {
return NULL;
}
- r->in.use_kerberos = cli_credentials_get_kerberos_state(self->creds);
r->in.dc_name = self->server_address;
r->in.domain_name = lpcfg_realm(self->lp_ctx);
- r->in.admin_account = cli_credentials_get_username(self->creds);
- r->in.admin_password = cli_credentials_get_password(self->creds);
+ r->in.admin_credentials = self->creds;
r->in.modify_config = lp_config_backend_is_registry();
r->in.debug = debug;
projects / thirdparty / samba.git / commitdiff
