git.samba.org / gd / samba-autobuild / .git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
s4-kdc: Add "Fresh Public Key Identity" SID if PKINIT freshness used
[gd/samba-autobuild/.git] / source4 / kdc / pac-glue.c
diff --git a/source4/kdc/pac-glue.c b/source4/kdc/pac-glue.c
index 12465b7644dd6951ecaef692d10ef98596cde53d..58f089f4562829b05e1c732d32d6aa31fb8ee1ea 100644 (file)
--- a/source4/kdc/pac-glue.c
+++ b/source4/kdc/pac-glue.c
@@ -824,6 +824,16 @@ NTSTATUS samba_kdc_add_claims_valid(struct auth_user_info_dc *user_info_dc)
                &user_info_dc->num_sids);
 }
 
+NTSTATUS samba_kdc_add_fresh_public_key_identity(struct auth_user_info_dc *user_info_dc)
+{
+       return add_sid_to_array_attrs_unique(
+               user_info_dc,
+               &global_sid_Fresh_Public_Key_Identity,
+               SE_GROUP_DEFAULT_FLAGS,
+               &user_info_dc->sids,
+               &user_info_dc->num_sids);
+}
+
 static NTSTATUS samba_kdc_add_compounded_auth(struct auth_user_info_dc *user_info_dc)
 {
        return add_sid_to_array_attrs_unique(
Unnamed repository; edit this file 'description' to name the repository.