Bug 10319 - LDAP bind with SID not supported
Summary: LDAP bind with SID not supported
Status: NEW
Alias: None
Product: Samba 4.1 and newer
Classification: Unclassified
Component: AD: LDB/DSDB/SAMDB (show other bugs)
Version: 4.11.6
Hardware: All All
: P5 normal (vote)
Target Milestone: ---
Assignee: Joseph Sutton
QA Contact: Samba QA Contact
Depends on:
Reported: 2013-12-11 14:11 UTC by Björn Jacke
Modified: 2021-04-07 10:25 UTC (History)
1 user (show)

See Also:


Note You need to log in before you can comment on or make changes to this bug.
Description Björn Jacke 2013-12-11 14:11:19 UTC
what works agains a W2k8r2 and against aSamba 4 DC is this LDAP bind with name:

ldapsearch -h -w secretpwd -D domain\\administrator -s base

but this LDAP bind with SID does only work against Windows DC not against Samba 4 DC:

ldapsearch -h -w secretpwd -D S-1-5-21-123456-123456-123456-500 -s base
Comment 1 Andrew Bartlett 2020-02-11 21:45:41 UTC
Should be really easy to add to crack_auto_name_to_nt4_name() and write a test in auth/credentials/tests/bind.py
Comment 2 Samba QA Contact 2021-04-07 10:25:05 UTC
This bug was referenced in samba master: