s4:acl LDB module - password attributes - check also the "dBCSPwd" attribute

It's also a possible password change/set attribute candidate.

diff --git a/source4/dsdb/samdb/ldb_modules/acl.c b/source4/dsdb/samdb/ldb_modules/acl.c
index 39b8e9911fb33f528847c2798904662df5ecee6a..6e38bc46b127d6c6c7325f9a4a07bc687455e6b4 100644 (file)
--- a/source4/dsdb/samdb/ldb_modules/acl.c
+++ b/source4/dsdb/samdb/ldb_modules/acl.c
@@ -760,8 +760,8 @@ static int acl_check_password_rights(TALLOC_CTX *mem_ctx,
        unsigned int del_attr_cnt = 0, add_attr_cnt = 0, rep_attr_cnt = 0;
        struct ldb_message_element *el;
        struct ldb_message *msg;
-       const char *passwordAttrs[] = { "userPassword", "unicodePwd",
-                                       "clearTextPassword", NULL }, **l;
+       const char *passwordAttrs[] = { "userPassword", "clearTextPassword",
+                                       "unicodePwd", "dBCSPwd", NULL }, **l;
        TALLOC_CTX *tmp_ctx = talloc_new(mem_ctx);
 
        msg = ldb_msg_copy_shallow(tmp_ctx, req->op.mod.message);