git.samba.org / samba.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
s4:auth: Add password lockout support to the AD DC
[samba.git] / source4 / auth / ntlm / auth_sam.c
diff --git a/source4/auth/ntlm/auth_sam.c b/source4/auth/ntlm/auth_sam.c
index d07f9301fb4acb4103baef81d5029c7aec09a39d..8f7f5448e84ff2644923ca28eaf71775e9440d1d 100644 (file)
--- a/source4/auth/ntlm/auth_sam.c
+++ b/source4/auth/ntlm/auth_sam.c
@@ -213,6 +213,13 @@ static NTSTATUS authsam_authenticate(struct auth4_context *auth_context,
        nt_status = authsam_password_ok(auth_context, mem_ctx, 
                                        acct_flags, lm_pwd, nt_pwd,
                                        user_info, user_sess_key, lm_sess_key);
+       if (NT_STATUS_EQUAL(nt_status, NT_STATUS_WRONG_PASSWORD)) {
+               NTSTATUS update_bad_pwd_count_status = authsam_update_bad_pwd_count(auth_context->sam_ctx, msg, domain_dn);
+               if (!NT_STATUS_IS_OK(update_bad_pwd_count_status)) {
+                       /* bo! (what can we do here? */
+               }
+       }
+
        NT_STATUS_NOT_OK_RETURN(nt_status);
 
        nt_status = authsam_account_ok(mem_ctx, auth_context->sam_ctx,
Samba Shared Repository