These additional measures should help ensure we do not accidentily upgrade
a guest to an authenticated user in the future.
Andrew Bartlett
Signed-off-by: Andrew Tridgell <tridge@samba.org>
info->bad_password_count = base->bad_password_count;
info->acct_flags = base->acct_flags;
- info->authenticated = authenticated;
+ /* Only set authenticated if both NETLOGON_GUEST is not set, and authenticated is set */
+ info->authenticated = (authenticated && (!(base->user_flags & NETLOGON_GUEST)));
*_user_info = info;
return NT_STATUS_OK;
/* Primary gid */
info3->base.primary_gid = BUILTIN_RID_GUESTS;
+ /* Set as guest */
+ info3->base.user_flags = NETLOGON_GUEST;
+
TALLOC_FREE(pwd);
return NT_STATUS_OK;
}