Description of problem: The krb5.conf created by 'net' and 'winbind' should include the system /etc/krb5.conf so that we get the system defaults. Currently it doesn't do that and can to lead to some issues if you try to join a domain with Kerberos credentials. Patchset will follow.
Created attachment 12723 [details] patch for 4.5
Created attachment 12724 [details] patch for 4.4
Comment on attachment 12723 [details] patch for 4.5 Looks good.
Comment on attachment 12724 [details] patch for 4.4 Looks good.
Karolin, please add the patches to the relevant branches. Thanks!
(In reply to Andreas Schneider from comment #5) Pushed to autobuild-v4-{5,4}-test.
This seems to break the build: [2182/4066] Compiling source3/libads/kerberos.c ../source3/libads/kerberos.c: In function ‘smb_krb5_get_ntstatus_from_krb5_error_init_creds_opt’: ../source3/libads/kerberos.c:161:2: warning: ‘krb5_get_init_creds_opt_get_error’ is deprecated (declared at default/source4/heimdal/lib/krb5/krb5-protos.h:2004) [-Wdeprecated-declarations] ret = krb5_get_init_creds_opt_get_error(ctx, opt, &error); ^ ../source3/libads/kerberos.c: In function ‘create_local_private_krb5_conf_for_domain’: ../source3/libads/kerberos.c:918:6: error: too many arguments for format [-Werror=format-extra-args] include_system_krb5); ^ cc1: all warnings being treated as errors Waf: Leaving directory `/memdisk/kseeger/a45/b902229/samba/bin' Build failed: -> task failed (err #1): {task: cc kerberos.c -> kerberos_47.o} Reverting this patch seems to help...
Created attachment 12742 [details] system_krb5_conf-v4.5.patch
Created attachment 12743 [details] system_krb5_conf-v4.4.patch
Waiting for review here...
Comment on attachment 12742 [details] system_krb5_conf-v4.5.patch Looks good, thanks.
Comment on attachment 12743 [details] system_krb5_conf-v4.4.patch Looks good, thanks.
Pushed to autobuild-v4-{5,4}-test.
(In reply to Karolin Seeger from comment #13) Pushed to both branches. Closing out bug report. Thanks!