2 Unix SMB/CIFS implementation.
5 Copyright (C) Tim Potter 2000
7 This program is free software; you can redistribute it and/or modify
8 it under the terms of the GNU General Public License as published by
9 the Free Software Foundation; either version 3 of the License, or
10 (at your option) any later version.
12 This program is distributed in the hope that it will be useful,
13 but WITHOUT ANY WARRANTY; without even the implied warranty of
14 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 GNU General Public License for more details.
17 You should have received a copy of the GNU General Public License
18 along with this program. If not, see <http://www.gnu.org/licenses/>.
22 #include "rpcclient.h"
24 static NTSTATUS cmd_netlogon_logon_ctrl2(struct rpc_pipe_client *cli,
25 TALLOC_CTX *mem_ctx, int argc,
28 uint32 query_level = 1;
29 NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
32 fprintf(stderr, "Usage: %s\n", argv[0]);
36 result = rpccli_netlogon_logon_ctrl2(cli, mem_ctx, query_level);
38 if (!NT_STATUS_IS_OK(result))
47 static WERROR cmd_netlogon_getanydcname(struct rpc_pipe_client *cli,
48 TALLOC_CTX *mem_ctx, int argc,
52 WERROR result = WERR_GENERAL_FAILURE;
56 fprintf(stderr, "Usage: %s domainname\n", argv[0]);
60 /* Make sure to wait for our DC's reply */
61 old_timeout = cli_set_timeout(cli->cli, MAX(cli->cli->timeout,30000)); /* 30 seconds. */
63 result = rpccli_netlogon_getanydcname(cli, mem_ctx, cli->cli->desthost, argv[1], dcname);
65 cli_set_timeout(cli->cli, old_timeout);
67 if (!W_ERROR_IS_OK(result))
72 printf("%s\n", dcname);
78 static WERROR cmd_netlogon_getdcname(struct rpc_pipe_client *cli,
79 TALLOC_CTX *mem_ctx, int argc,
83 WERROR result = WERR_GENERAL_FAILURE;
87 fprintf(stderr, "Usage: %s domainname\n", argv[0]);
91 /* Make sure to wait for our DC's reply */
92 old_timeout = cli_set_timeout(cli->cli, MAX(cli->cli->timeout,30000)); /* 30 seconds. */
94 result = rpccli_netlogon_getdcname(cli, mem_ctx, cli->cli->desthost, argv[1], dcname);
96 cli_set_timeout(cli->cli, old_timeout);
98 if (!W_ERROR_IS_OK(result))
101 /* Display results */
103 printf("%s\n", dcname);
109 static void display_ds_domain_controller_info(TALLOC_CTX *mem_ctx, const struct DS_DOMAIN_CONTROLLER_INFO *info)
111 d_printf("domain_controller_name: %s\n", info->domain_controller_name);
112 d_printf("domain_controller_address: %s\n", info->domain_controller_address);
113 d_printf("domain_controller_address_type: %d\n", info->domain_controller_address_type);
114 d_printf("domain_guid: %s\n", GUID_string(mem_ctx, info->domain_guid));
115 d_printf("domain_name: %s\n", info->domain_name);
116 d_printf("dns_forest_name: %s\n", info->dns_forest_name);
117 d_printf("flags: 0x%08x\n"
119 "\tIs a GC of the forest: %s\n"
120 "\tIs an LDAP server: %s\n"
121 "\tSupports DS: %s\n"
122 "\tIs running a KDC: %s\n"
123 "\tIs running time services: %s\n"
124 "\tIs the closest DC: %s\n"
125 "\tIs writable: %s\n"
126 "\tHas a hardware clock: %s\n"
127 "\tIs a non-domain NC serviced by LDAP server: %s\n"
128 "\tDomainControllerName is a DNS name: %s\n"
129 "\tDomainName is a DNS name: %s\n"
130 "\tDnsForestName is a DNS name: %s\n",
132 (info->flags & ADS_PDC) ? "yes" : "no",
133 (info->flags & ADS_GC) ? "yes" : "no",
134 (info->flags & ADS_LDAP) ? "yes" : "no",
135 (info->flags & ADS_DS) ? "yes" : "no",
136 (info->flags & ADS_KDC) ? "yes" : "no",
137 (info->flags & ADS_TIMESERV) ? "yes" : "no",
138 (info->flags & ADS_CLOSEST) ? "yes" : "no",
139 (info->flags & ADS_WRITABLE) ? "yes" : "no",
140 (info->flags & ADS_GOOD_TIMESERV) ? "yes" : "no",
141 (info->flags & ADS_NDNC) ? "yes" : "no",
142 (info->flags & ADS_DNS_CONTROLLER) ? "yes":"no",
143 (info->flags & ADS_DNS_DOMAIN) ? "yes":"no",
144 (info->flags & ADS_DNS_FOREST) ? "yes":"no");
146 d_printf("dc_site_name: %s\n", info->dc_site_name);
147 d_printf("client_site_name: %s\n", info->client_site_name);
150 static WERROR cmd_netlogon_dsr_getdcname(struct rpc_pipe_client *cli,
151 TALLOC_CTX *mem_ctx, int argc,
155 uint32 flags = DS_RETURN_DNS_NAME;
156 const char *server_name = cli->cli->desthost;
157 const char *domain_name;
158 struct GUID domain_guid = GUID_zero();
159 struct GUID site_guid = GUID_zero();
160 struct DS_DOMAIN_CONTROLLER_INFO *info = NULL;
163 fprintf(stderr, "Usage: %s [domainname] [domain_name] [domain_guid] [site_guid] [flags]\n", argv[0]);
168 domain_name = argv[1];
171 if (!NT_STATUS_IS_OK(GUID_from_string(argv[2], &domain_guid))) {
177 if (!NT_STATUS_IS_OK(GUID_from_string(argv[3], &site_guid))) {
183 sscanf(argv[4], "%x", &flags);
185 result = rpccli_netlogon_dsr_getdcname(cli, mem_ctx, server_name, domain_name,
186 &domain_guid, &site_guid, flags,
189 if (W_ERROR_IS_OK(result)) {
190 d_printf("DsGetDcName gave\n");
191 display_ds_domain_controller_info(mem_ctx, info);
195 printf("rpccli_netlogon_dsr_getdcname returned %s\n",
201 static WERROR cmd_netlogon_dsr_getdcnameex(struct rpc_pipe_client *cli,
202 TALLOC_CTX *mem_ctx, int argc,
206 uint32 flags = DS_RETURN_DNS_NAME;
207 const char *server_name = cli->cli->desthost;
208 const char *domain_name;
209 const char *site_name = NULL;
210 struct GUID domain_guid = GUID_zero();
211 struct DS_DOMAIN_CONTROLLER_INFO *info = NULL;
214 fprintf(stderr, "Usage: %s [domainname] [domain_name] [domain_guid] [site_name] [flags]\n", argv[0]);
219 domain_name = argv[1];
222 if (!NT_STATUS_IS_OK(GUID_from_string(argv[2], &domain_guid))) {
231 sscanf(argv[4], "%x", &flags);
233 result = rpccli_netlogon_dsr_getdcnameex(cli, mem_ctx, server_name, domain_name,
234 &domain_guid, site_name, flags,
237 if (W_ERROR_IS_OK(result)) {
238 d_printf("DsGetDcNameEx gave\n");
239 display_ds_domain_controller_info(mem_ctx, info);
243 printf("rpccli_netlogon_dsr_getdcnameex returned %s\n",
249 static WERROR cmd_netlogon_dsr_getdcnameex2(struct rpc_pipe_client *cli,
250 TALLOC_CTX *mem_ctx, int argc,
254 uint32 flags = DS_RETURN_DNS_NAME;
255 const char *server_name = cli->cli->desthost;
256 const char *domain_name = NULL;
257 const char *client_account = NULL;
259 const char *site_name = NULL;
260 struct GUID domain_guid = GUID_zero();
261 struct DS_DOMAIN_CONTROLLER_INFO *info = NULL;
264 fprintf(stderr, "Usage: %s [domainname] [client_account] [acb_mask] [domain_name] [domain_guid] [site_name] [flags]\n", argv[0]);
269 client_account = argv[1];
272 mask = atoi(argv[2]);
275 domain_name = argv[3];
278 if (!NT_STATUS_IS_OK(GUID_from_string(argv[4], &domain_guid))) {
287 sscanf(argv[6], "%x", &flags);
289 result = rpccli_netlogon_dsr_getdcnameex2(cli, mem_ctx, server_name,
290 client_account, mask,
291 domain_name, &domain_guid,
295 if (W_ERROR_IS_OK(result)) {
296 d_printf("DsGetDcNameEx2 gave\n");
297 display_ds_domain_controller_info(mem_ctx, info);
301 printf("rpccli_netlogon_dsr_getdcnameex2 returned %s\n",
308 static WERROR cmd_netlogon_dsr_getsitename(struct rpc_pipe_client *cli,
309 TALLOC_CTX *mem_ctx, int argc,
316 fprintf(stderr, "Usage: %s computername\n", argv[0]);
320 result = rpccli_netlogon_dsr_getsitename(cli, mem_ctx, argv[1], &sitename);
322 if (!W_ERROR_IS_OK(result)) {
323 printf("rpccli_netlogon_dsr_gesitename returned %s\n",
324 nt_errstr(werror_to_ntstatus(result)));
328 printf("Computer %s is on Site: %s\n", argv[1], sitename);
333 static NTSTATUS cmd_netlogon_logon_ctrl(struct rpc_pipe_client *cli,
334 TALLOC_CTX *mem_ctx, int argc,
338 uint32 query_level = 1;
340 NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
343 fprintf(stderr, "Usage: %s\n", argv[0]);
348 result = cli_netlogon_logon_ctrl(cli, mem_ctx, query_level);
349 if (!NT_STATUS_IS_OK(result)) {
354 /* Display results */
359 /* Display sam synchronisation information */
361 static void display_sam_sync(uint32 num_deltas, SAM_DELTA_HDR *hdr_deltas,
362 SAM_DELTA_CTR *deltas)
367 for (i = 0; i < num_deltas; i++) {
368 switch (hdr_deltas[i].type) {
369 case SAM_DELTA_DOMAIN_INFO:
370 unistr2_to_ascii(name,
371 &deltas[i].domain_info.uni_dom_name,
373 printf("Domain: %s\n", name);
375 case SAM_DELTA_GROUP_INFO:
376 unistr2_to_ascii(name,
377 &deltas[i].group_info.uni_grp_name,
379 printf("Group: %s\n", name);
381 case SAM_DELTA_ACCOUNT_INFO:
382 unistr2_to_ascii(name,
383 &deltas[i].account_info.uni_acct_name,
385 printf("Account: %s\n", name);
387 case SAM_DELTA_ALIAS_INFO:
388 unistr2_to_ascii(name,
389 &deltas[i].alias_info.uni_als_name,
391 printf("Alias: %s\n", name);
393 case SAM_DELTA_ALIAS_MEM: {
394 SAM_ALIAS_MEM_INFO *alias = &deltas[i].als_mem_info;
396 for (j = 0; j < alias->num_members; j++) {
399 sid_to_string(sid_str, &alias->sids[j].sid);
401 printf("%s\n", sid_str);
405 case SAM_DELTA_GROUP_MEM: {
406 SAM_GROUP_MEM_INFO *group = &deltas[i].grp_mem_info;
408 for (j = 0; j < group->num_members; j++)
409 printf("rid 0x%x, attrib 0x%08x\n",
410 group->rids[j], group->attribs[j]);
413 case SAM_DELTA_MODIFIED_COUNT: {
414 SAM_DELTA_MOD_COUNT *mc = &deltas[i].mod_count;
416 printf("sam sequence update: 0x%04x\n", mc->seqnum);
420 printf("unknown delta type 0x%02x\n",
427 /* Perform sam synchronisation */
429 static NTSTATUS cmd_netlogon_sam_sync(struct rpc_pipe_client *cli,
430 TALLOC_CTX *mem_ctx, int argc,
433 NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
434 uint32 database_id = 0, num_deltas;
435 SAM_DELTA_HDR *hdr_deltas;
436 SAM_DELTA_CTR *deltas;
439 fprintf(stderr, "Usage: %s [database_id]\n", argv[0]);
444 database_id = atoi(argv[1]);
446 /* Synchronise sam database */
448 result = rpccli_netlogon_sam_sync(cli, mem_ctx, database_id,
449 0, &num_deltas, &hdr_deltas, &deltas);
451 if (!NT_STATUS_IS_OK(result))
454 /* Display results */
456 display_sam_sync(num_deltas, hdr_deltas, deltas);
462 /* Perform sam delta synchronisation */
464 static NTSTATUS cmd_netlogon_sam_deltas(struct rpc_pipe_client *cli,
465 TALLOC_CTX *mem_ctx, int argc,
468 NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
469 uint32 database_id, num_deltas, tmp;
470 SAM_DELTA_HDR *hdr_deltas;
471 SAM_DELTA_CTR *deltas;
475 fprintf(stderr, "Usage: %s database_id seqnum\n", argv[0]);
479 database_id = atoi(argv[1]);
482 seqnum = tmp & 0xffff;
484 result = rpccli_netlogon_sam_deltas(cli, mem_ctx, database_id,
486 &hdr_deltas, &deltas);
488 if (!NT_STATUS_IS_OK(result))
491 /* Display results */
493 display_sam_sync(num_deltas, hdr_deltas, deltas);
499 /* Log on a domain user */
501 static NTSTATUS cmd_netlogon_sam_logon(struct rpc_pipe_client *cli,
502 TALLOC_CTX *mem_ctx, int argc,
505 NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
506 int logon_type = NET_LOGON_TYPE;
507 const char *username, *password;
509 uint32 logon_param = 0;
510 const char *workstation = NULL;
512 /* Check arguments */
514 if (argc < 3 || argc > 7) {
515 fprintf(stderr, "Usage: samlogon <username> <password> [workstation]"
516 "[logon_type (1 or 2)] [auth level (2 or 3)] [logon_parameter]\n");
524 workstation = argv[3];
527 sscanf(argv[4], "%i", &logon_type);
530 sscanf(argv[5], "%i", &auth_level);
533 sscanf(argv[6], "%x", &logon_param);
535 /* Perform the sam logon */
537 result = rpccli_netlogon_sam_logon(cli, mem_ctx, logon_param, lp_workgroup(), username, password, workstation, logon_type);
539 if (!NT_STATUS_IS_OK(result))
546 /* Change the trust account password */
548 static NTSTATUS cmd_netlogon_change_trust_pw(struct rpc_pipe_client *cli,
549 TALLOC_CTX *mem_ctx, int argc,
552 NTSTATUS result = NT_STATUS_UNSUCCESSFUL;
554 /* Check arguments */
557 fprintf(stderr, "Usage: change_trust_pw");
561 /* Perform the sam logon */
563 result = trust_pw_find_change_and_store_it(cli, mem_ctx,
566 if (!NT_STATUS_IS_OK(result))
574 /* List of commands exported by this module */
576 struct cmd_set netlogon_commands[] = {
580 { "logonctrl2", RPC_RTYPE_NTSTATUS, cmd_netlogon_logon_ctrl2, NULL, PI_NETLOGON, NULL, "Logon Control 2", "" },
581 { "getanydcname", RPC_RTYPE_WERROR, NULL, cmd_netlogon_getanydcname, PI_NETLOGON, NULL, "Get trusted DC name", "" },
582 { "getdcname", RPC_RTYPE_WERROR, NULL, cmd_netlogon_getdcname, PI_NETLOGON, NULL, "Get trusted PDC name", "" },
583 { "dsr_getdcname", RPC_RTYPE_WERROR, NULL, cmd_netlogon_dsr_getdcname, PI_NETLOGON, NULL, "Get trusted DC name", "" },
584 { "dsr_getdcnameex", RPC_RTYPE_WERROR, NULL, cmd_netlogon_dsr_getdcnameex, PI_NETLOGON, NULL, "Get trusted DC name", "" },
585 { "dsr_getdcnameex2", RPC_RTYPE_WERROR, NULL, cmd_netlogon_dsr_getdcnameex2, PI_NETLOGON, NULL, "Get trusted DC name", "" },
586 { "dsr_getsitename", RPC_RTYPE_WERROR, NULL, cmd_netlogon_dsr_getsitename, PI_NETLOGON, NULL, "Get sitename", "" },
587 { "logonctrl", RPC_RTYPE_NTSTATUS, cmd_netlogon_logon_ctrl, NULL, PI_NETLOGON, NULL, "Logon Control", "" },
588 { "samsync", RPC_RTYPE_NTSTATUS, cmd_netlogon_sam_sync, NULL, PI_NETLOGON, NULL, "Sam Synchronisation", "" },
589 { "samdeltas", RPC_RTYPE_NTSTATUS, cmd_netlogon_sam_deltas, NULL, PI_NETLOGON, NULL, "Query Sam Deltas", "" },
590 { "samlogon", RPC_RTYPE_NTSTATUS, cmd_netlogon_sam_logon, NULL, PI_NETLOGON, NULL, "Sam Logon", "" },
591 { "change_trust_pw", RPC_RTYPE_NTSTATUS, cmd_netlogon_change_trust_pw, NULL, PI_NETLOGON, NULL, "Change Trust Account Password", "" },
git.samba.org / tprouty / samba.git / blob