10319 – LDAP bind with SID not supported

Bug 10319 - LDAP bind with SID not supported

Summary: LDAP bind with SID not supported

Status:	RESOLVED FIXED

Alias:	None

Product:	Samba 4.1 and newer
Classification:	Unclassified
Component:	AD: LDB/DSDB/SAMDB (show other bugs)
Version:	4.11.6
Hardware:	All All

Importance:	P5 normal (vote)
Target Milestone:	---
Assignee:	Jo Sutton
QA Contact:	Samba QA Contact

URL:
Keywords:

Depends on:
Blocks:

Reported:	2013-12-11 14:11 UTC by Björn Jacke
Modified:	2022-08-24 23:16 UTC (History)
CC List:	1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Björn Jacke 2013-12-11 14:11:19 UTC

what works agains a W2k8r2 and against aSamba 4 DC is this LDAP bind with name:

ldapsearch -h 10.0.0.1 -w secretpwd -D domain\\administrator -s base

but this LDAP bind with SID does only work against Windows DC not against Samba 4 DC:

ldapsearch -h 10.0.0.1 -w secretpwd -D S-1-5-21-123456-123456-123456-500 -s base

Comment 1 Andrew Bartlett 2020-02-11 21:45:41 UTC

Should be really easy to add to crack_auto_name_to_nt4_name() and write a test in auth/credentials/tests/bind.py

Comment 2 Samba QA Contact 2021-04-07 10:25:05 UTC

This bug was referenced in samba master:

3e531bb885c90c6d8f10570eda1be20ac44a7c9b
6b57583830007f745360a5dcab9760a66fd3ad0e