summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat (limited to 'net-fs/samba/files/nonroot-bind.diff')
-rw-r--r--net-fs/samba/files/nonroot-bind.diff18
1 files changed, 18 insertions, 0 deletions
diff --git a/net-fs/samba/files/nonroot-bind.diff b/net-fs/samba/files/nonroot-bind.diff
new file mode 100644
index 000000000000..d03bdf7a93bc
--- /dev/null
+++ b/net-fs/samba/files/nonroot-bind.diff
@@ -0,0 +1,18 @@
+--- passdb/pdb_ldap.c.old 2002-10-20 18:48:43.000000000 -0400
++++ passdb/pdb_ldap.c 2002-10-20 18:50:27.000000000 -0400
+@@ -132,10 +132,15 @@
+
+ /* check that the user is in the domain admin group for connecting */
+
++/* Q&D patch : permit non root bind to LDAP
++ because if so (original code), you cannot add W2K/WXP workstations accounts
++ via the W2K/WXP requester, using an uid != from 0 (ex: user 'administrator'
++ from a " @"Domain Admin" " group (from 'domain admin group' directive in smb.conf)
+ if ( (uid != 0) && !user_in_list(pass->pw_name, lp_domain_admin_group()) ) {
+ DEBUG(0, ("ldap_open_connection: cannot access LDAP when not root or a member of domain admin group..\n"));
+ return False;
+ }
++*/
+
+ port = lp_ldap_port();
+