]> git.ipfire.org Git - thirdparty/samba.git/commit
projects / thirdparty / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b317b10) | patch
s3:winbindd: let winbind_samlogon_retry_loop() fallback to NT_STATUS_NO_LOGON_SERVERS
authorStefan Metzmacher <metze@samba.org>
Tue, 4 Jul 2023 12:12:03 +0000 (14:12 +0200)
committerStefan Metzmacher <metze@samba.org>
Wed, 5 Jul 2023 12:17:38 +0000 (12:17 +0000)
commit50e771c12f84f9268c2e9ddeef0965f79f85de3d
tree8f0351ecffa907bf3b67494e49f3a35b0179e9f4tree
parentb317b10dffd99d1add3ff0b85b958edd9639abc8commit | diff
s3:winbindd: let winbind_samlogon_retry_loop() fallback to NT_STATUS_NO_LOGON_SERVERS

When we were not able to get a valid response from any DC we should
report NT_STATUS_NO_LOGON_SERVERS with authoritative = 1.

This matches what windows does. In a chain of transitive
trusts the ACCESS_DENIED/authoritative=0 is not propagated,
instead NT_STATUS_NO_LOGON_SERVERS/authoritative=1 is
passed along the chain if there's no other DC is available.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15413

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Andreas Schneider <asn@samba.org>
Reviewed-by: Volker Lendecke <vl@samba.org>
source3/winbindd/winbindd_pam.c diff | blob | blame | history
Mirror of https://github.com/samba-team/samba.git