Bug 10319 - LDAP bind with SID not supported
Summary: LDAP bind with SID not supported
Status: RESOLVED FIXED
Alias: None
Product: Samba 4.1 and newer
Classification: Unclassified
Component: AD: LDB/DSDB/SAMDB (show other bugs)
Version: 4.11.6
Hardware: All All
: P5 normal (vote)
Target Milestone: ---
Assignee: Jennifer Sutton
QA Contact: Samba QA Contact
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-12-11 14:11 UTC by Björn Jacke
Modified: 2022-08-24 23:16 UTC (History)
1 user (show)

See Also:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Björn Jacke 2013-12-11 14:11:19 UTC
what works agains a W2k8r2 and against aSamba 4 DC is this LDAP bind with name:

ldapsearch -h 10.0.0.1 -w secretpwd -D domain\\administrator -s base

but this LDAP bind with SID does only work against Windows DC not against Samba 4 DC:

ldapsearch -h 10.0.0.1 -w secretpwd -D S-1-5-21-123456-123456-123456-500 -s base
Comment 1 Andrew Bartlett 2020-02-11 21:45:41 UTC
Should be really easy to add to crack_auto_name_to_nt4_name() and write a test in auth/credentials/tests/bind.py
Comment 2 Samba QA Contact 2021-04-07 10:25:05 UTC
This bug was referenced in samba master:

3e531bb885c90c6d8f10570eda1be20ac44a7c9b
6b57583830007f745360a5dcab9760a66fd3ad0e