char *sddl_sd;
struct dom_sid *default_owner;
struct dom_sid *default_group;
- uint32_t inherit_flags = SEC_DACL_AUTO_INHERIT|SEC_SACL_AUTO_INHERIT;
if (object) {
user_descriptor = talloc(mem_ctx, struct security_descriptor);
return NULL;
}
} else {
- inherit_flags |= SEC_DEFAULT_DESCRIPTOR;
-
user_descriptor = get_sd_unpacked(module, mem_ctx, objectclass);
}
session_info->security_token, ldb);
default_group = get_default_group(mem_ctx, ldb, default_owner);
new_sd = create_security_descriptor(mem_ctx, parent_descriptor, user_descriptor, true,
- NULL, inherit_flags,
+ NULL, SEC_DACL_AUTO_INHERIT|SEC_SACL_AUTO_INHERIT,
session_info->security_token,
default_owner, default_group,
map_generic_rights_ds);