security: Add Asserted Identity sids (S-1-18)

author Günther Deschner <gd@samba.org>

Fri, 15 Jan 2016 13:46:07 +0000 (14:46 +0100)

committer Jeremy Allison <jra@samba.org>

Fri, 15 Jan 2016 21:19:07 +0000 (22:19 +0100)
author Günther Deschner <gd@samba.org>
Fri, 15 Jan 2016 13:46:07 +0000 (14:46 +0100)
committer Jeremy Allison <jra@samba.org>
Fri, 15 Jan 2016 21:19:07 +0000 (22:19 +0100)
diff --git a/libcli/security/dom_sid.h b/libcli/security/dom_sid.h

index 990a4c491d3385669a7beb249f537b812e3563cc..bdcec941d3fec65961bfa8429f2382d95761b09c 100644 (file)
--- a/libcli/security/dom_sid.h
+++ b/libcli/security/dom_sid.h
@@ -36,6 +36,9 @@ extern const struct dom_sid global_sid_System;
  extern const struct dom_sid global_sid_NULL;
  extern const struct dom_sid global_sid_Authenticated_Users;
  extern const struct dom_sid global_sid_Network;
+extern const struct dom_sid global_sid_Asserted_Identity;
+extern const struct dom_sid global_sid_Asserted_Identity_Service;
+extern const struct dom_sid global_sid_Asserted_Identity_Authentication_Authority;
  extern const struct dom_sid global_sid_Creator_Owner;
  extern const struct dom_sid global_sid_Creator_Group;
  extern const struct dom_sid global_sid_Owner_Rights;
diff --git a/libcli/security/util_sid.c b/libcli/security/util_sid.c

index 339980187320266c9fe1682c66be88688a936d83..ab3018a5b8bf3737bdd86a5790c1a47f2471c8b1 100644 (file)
--- a/libcli/security/util_sid.c
+++ b/libcli/security/util_sid.c
@@ -55,6 +55,14 @@ const struct dom_sid global_sid_Authenticated_Users =        /* All authenticated rids
  const struct dom_sid global_sid_Restriced =                    /* Restriced Code */
  { 1, 1, {0,0,0,0,0,5}, {12,0,0,0,0,0,0,0,0,0,0,0,0,0,0}};
  #endif
+
+const struct dom_sid global_sid_Asserted_Identity =       /* Asserted Identity */
+{ 1, 0, {0,0,0,0,0,18}, {0,0,0,0,0,0,0,0,0,0,0,0,0,0,0}};
+const struct dom_sid global_sid_Asserted_Identity_Service =    /* Asserted Identity Service */
+{ 1, 1, {0,0,0,0,0,18}, {1,0,0,0,0,0,0,0,0,0,0,0,0,0,0}};
+const struct dom_sid global_sid_Asserted_Identity_Authentication_Authority =   /* Asserted Identity Authentication Authority */
+{ 1, 1, {0,0,0,0,0,18}, {2,0,0,0,0,0,0,0,0,0,0,0,0,0,0}};
+
  const struct dom_sid global_sid_Network =                      /* Network rids */
  { 1, 1, {0,0,0,0,0,5}, {2,0,0,0,0,0,0,0,0,0,0,0,0,0,0}};
  
diff --git a/librpc/idl/security.idl b/librpc/idl/security.idl

index b78307e27f8a034982088f60908634849c77ad0d..f412ffe1c97d9fd4afeaddd52037bdba0dd5ff0a 100644 (file)
--- a/librpc/idl/security.idl
+++ b/librpc/idl/security.idl
@@ -285,6 +285,9 @@ interface security
         const string SID_NT_TRUSTED_INSTALLER =
                 "S-1-5-80-956008885-3418522649-1831038044-1853292631-2271478464";
  
+       const string SID_AUTHENTICATION_AUTHORITY_ASSERTED_IDENTITY = "S-1-18-1";
+       const string SID_SERVICE_ASSERTED_IDENTITY = "S-1-18-2";
+
         /* well-known domain RIDs */
         const int DOMAIN_RID_LOGON                   = 9;
         const int DOMAIN_RID_ENTERPRISE_READONLY_DCS = 498;
author	Günther Deschner <gd@samba.org>
	Fri, 15 Jan 2016 13:46:07 +0000 (14:46 +0100)
committer	Jeremy Allison <jra@samba.org>
	Fri, 15 Jan 2016 21:19:07 +0000 (22:19 +0100)
libcli/security/dom_sid.h		patch \| blob \| history
libcli/security/util_sid.c		patch \| blob \| history
librpc/idl/security.idl		patch \| blob \| history