libnetjoin fails to join AD domains with security=domain when realm is not set See also: https://bugzilla.redhat.com/show_bug.cgi?id=1260214
Created attachment 12183 [details] patch for 4.4
Created attachment 12184 [details] patch for 4.3
Created attachment 12195 [details] patch for v4-4-test, cherry-picked from master The previous patches were not fully correct. After thorough discussions about this, here is what we came up with as the fix for master. We require realm when talking to an AD domain unless 'security=domain' and 'winbind rpc only=no'. In that case we ignore the realm parameter but warn that it should better be set.
Created attachment 12196 [details] patch for v4-3-test, cherry-picked from master Not sure if we need a patchset for 4.3, but here is one.
Comment on attachment 12195 [details] patch for v4-4-test, cherry-picked from master LGTM
Comment on attachment 12196 [details] patch for v4-3-test, cherry-picked from master LGTM
Karolin, please add to 4.4 and 4.3. Thanks!
(In reply to Guenther Deschner from comment #7) Pushed to autobuild-v4-[4|3]-test.
(In reply to Karolin Seeger from comment #8) Pushed to both branches. Closing out bug report. Thanks!