what works agains a W2k8r2 and against aSamba 4 DC is this LDAP bind with name: ldapsearch -h 10.0.0.1 -w secretpwd -D domain\\administrator -s base but this LDAP bind with SID does only work against Windows DC not against Samba 4 DC: ldapsearch -h 10.0.0.1 -w secretpwd -D S-1-5-21-123456-123456-123456-500 -s base
Should be really easy to add to crack_auto_name_to_nt4_name() and write a test in auth/credentials/tests/bind.py
This bug was referenced in samba master: 3e531bb885c90c6d8f10570eda1be20ac44a7c9b 6b57583830007f745360a5dcab9760a66fd3ad0e