s4-auth: when we are a DC enable winbind auth

author Andrew Tridgell <tridge@samba.org>

Mon, 13 Sep 2010 01:38:12 +0000 (11:38 +1000)

committer Andrew Tridgell <tridge@samba.org>

Wed, 15 Sep 2010 05:39:34 +0000 (15:39 +1000)
author Andrew Tridgell <tridge@samba.org>
Mon, 13 Sep 2010 01:38:12 +0000 (11:38 +1000)
committer Andrew Tridgell <tridge@samba.org>
Wed, 15 Sep 2010 05:39:34 +0000 (15:39 +1000)
diff --git a/source4/param/loadparm.c b/source4/param/loadparm.c

index bbc83231985d88897a2738b434f339516dfb98d8..95d275535c24b90f29bd4b5b1681fe6f4e600719 100644 (file)
--- a/source4/param/loadparm.c
+++ b/source4/param/loadparm.c
@@ -2352,7 +2352,9 @@ struct loadparm_context *loadparm_init(TALLOC_CTX *mem_ctx)
         lpcfg_do_global_parameter(lp_ctx, "dcerpc endpoint servers", "epmapper srvsvc wkssvc rpcecho samr netlogon lsarpc spoolss drsuapi winreg dssetup unixinfo browser");
         lpcfg_do_global_parameter(lp_ctx, "server services", "smb rpc nbt wrepl ldap cldap kdc drepl winbind ntp_signd kcc dnsupdate");
         lpcfg_do_global_parameter(lp_ctx, "ntptr providor", "simple_ldb");
-       lpcfg_do_global_parameter(lp_ctx, "auth methods:domain controller", "anonymous sam_ignoredomain");
+       /* the winbind method for domain controllers is for both RODC
+          auth forwarding and for trusted domains */
+       lpcfg_do_global_parameter(lp_ctx, "auth methods:domain controller", "anonymous sam_ignoredomain winbind");
         lpcfg_do_global_parameter(lp_ctx, "auth methods:member server", "anonymous sam winbind");
         lpcfg_do_global_parameter(lp_ctx, "auth methods:standalone", "anonymous sam_ignoredomain");
         lpcfg_do_global_parameter(lp_ctx, "private dir", dyn_PRIVATE_DIR);
author	Andrew Tridgell <tridge@samba.org>
	Mon, 13 Sep 2010 01:38:12 +0000 (11:38 +1000)
committer	Andrew Tridgell <tridge@samba.org>
	Wed, 15 Sep 2010 05:39:34 +0000 (15:39 +1000)