r8796: disable schannel on the lsa client pipe for now to deal with Windows 2003...

author Gerald Carter <jerry@samba.org>

Wed, 27 Jul 2005 15:08:11 +0000 (15:08 +0000)

committer Gerald (Jerry) Carter <jerry@samba.org>

Wed, 10 Oct 2007 16:00:17 +0000 (11:00 -0500)
author Gerald Carter <jerry@samba.org>
Wed, 27 Jul 2005 15:08:11 +0000 (15:08 +0000)
committer Gerald (Jerry) Carter <jerry@samba.org>
Wed, 10 Oct 2007 16:00:17 +0000 (11:00 -0500)
diff --git a/source3/nsswitch/winbindd_cm.c b/source3/nsswitch/winbindd_cm.c

index 6400b23f9ff8f99f066758d5682b967da4208343..d4022a8455539dde987aabaea386247c4d9a6e2b 100644 (file)
--- a/source3/nsswitch/winbindd_cm.c
+++ b/source3/nsswitch/winbindd_cm.c
@@ -1038,6 +1038,12 @@ NTSTATUS cm_connect_lsa(struct winbindd_domain *domain, TALLOC_CTX *mem_ctx,
         conn = &domain->conn;
  
         if (conn->lsa_pipe == NULL) {
+#if 0
+               /* disabling schannl on the LSA pipe for now since 
+                  both Win2K-SP4 SR1 & Win2K3-SP1 fail the open_policy() 
+                  call (return codes 0xc0020042 and 0xc0020041 respectively).
+                  We really need to fix this soon.  --jerry  */
+
                 unsigned char *session_key;
  
                 if (cm_get_schannel_key(domain, mem_ctx, &session_key))
@@ -1046,6 +1052,7 @@ NTSTATUS cm_connect_lsa(struct winbindd_domain *domain, TALLOC_CTX *mem_ctx,
                                                                session_key,
                                                                domain->name);
                 else
+#endif
                         conn->lsa_pipe = cli_rpc_open_noauth(conn->cli,
                                                              PI_LSARPC);
author	Gerald Carter <jerry@samba.org>
	Wed, 27 Jul 2005 15:08:11 +0000 (15:08 +0000)
committer	Gerald (Jerry) Carter <jerry@samba.org>
	Wed, 10 Oct 2007 16:00:17 +0000 (11:00 -0500)