git.samba.org / dmulder / samba-autobuild / .git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 35c7061) | patch
tests/krb5: Don’t consider RODC‐issued tickets to be banned with RBCD
authorJoseph Sutton <josephsutton@catalyst.net.nz>
Tue, 17 Oct 2023 00:34:29 +0000 (13:34 +1300)
committerAndrew Bartlett <abartlet@samba.org>
Tue, 17 Oct 2023 03:19:38 +0000 (03:19 +0000)
commitb5b8b16a50ecb7225fe1bfa31d3a839efdd9f7d0
tree1ccab11cb75e68847f43cd0875947ade1e5aaad3tree
parent35c7061f97a1f0dd79efe3a567b7054304192f55commit | diff
tests/krb5: Don’t consider RODC‐issued tickets to be banned with RBCD

If we’re verifying that a ticket was permitted to be issued by an RODC,
and not trusting the group SIDs in the ticket, is there any reason to
ban its use with RBCD?

A client with a ticket issued by an RODC that happens to select a DC to
direct an RBCD request at should not have the request mysteriously fail.

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
python/samba/tests/krb5/conditional_ace_tests.py diff | blob | history
selftest/knownfail_heimdal_kdc diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.