IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-27 09:21:59 -06:00
Code Issues Packages Projects Releases Wiki Activity
50c53395de
freeipa/daemons/ipa-slapi-plugins/ipa-extdom-extop
History
Alexander Bokovoy bb75f5a583 adtrust: support UPNs for trusted domain users 
Add support for additional user name principal suffixes from
trusted Active Directory forests. UPN suffixes are property
of the forest and as such are associated with the forest root
domain.

FreeIPA stores UPN suffixes as ipaNTAdditionalSuffixes multi-valued
attribute of ipaNTTrustedDomain object class.

In order to look up UPN suffixes, netr_DsRGetForestTrustInformation
LSA RPC call is used instead of netr_DsrEnumerateDomainTrusts.

For more details on UPN and naming in Active Directory see
https://technet.microsoft.com/en-us/library/cc739093%28v=ws.10%29.aspx

https://fedorahosted.org/freeipa/ticket/5354

Reviewed-By: Martin Babinsky <mbabinsk@redhat.com>
2016-06-11 17:25:50 +02:00
..
test_data extdom: add unit-test for get_user_grouplist() 2015-07-08 01:56:52 +02:00
ipa_extdom_cmocka_tests.c cmocka_tests: Do not use deprecated cmocka interface 2015-11-18 12:54:43 +01:00
ipa_extdom_common.c adtrust: support UPNs for trusted domain users 2016-06-11 17:25:50 +02:00
ipa_extdom_extop.c extdom: do not fail to process error case when no request is specified 2016-03-10 19:24:55 +01:00
ipa_extdom.h extdom: add certificate request 2016-06-09 14:28:47 +02:00
ipa-extdom-extop-conf.ldif Add external domain extop DS plugin 2012-06-28 13:08:26 +02:00
Makefile.am fix Makefile.am for daemons 2015-03-26 14:58:37 +01:00
README Add external domain extop DS plugin 2012-06-28 13:08:26 +02:00

README