-
Notifications
You must be signed in to change notification settings - Fork 276
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix/ntlm auth cache #6340
Fix/ntlm auth cache #6340
Conversation
33ae658
to
ef8ffef
Compare
Instead of trying to fix Python errors for I updated RPM package on inverse.ca, package provided is now: |
I'm happy to go with this but from memory some adjustments were made to the initial implementation of secretsdump.py These were (still going from memory) related to the background job. We should make sure that the background job still works or deprecate it (it doesn't scale anyway) Most importantly, as discussed during our group meeting, we should make sure that cache on connection works Should we decide to deprecate the background job, we'll need an upgrade note (not script, just note) and strip it off the admin for v11. We should also open an issue to strip off the backend code post v11 since it wouldn't be wise to touch this at this point of the QA phase |
100% agree with your proposal @julsemaan. I built a package, I will test cache on connection to be sure it works as expected. |
ef8ffef
to
1a59777
Compare
binddn is already a samaccountname
migrate secretsdump.py to py3 using 2to3 use new library name (Cryptodome) string.letters doesn't exist in py3
This reverts commit ce7eff1.
1a59777
to
e54800e
Compare
Previously, it doesn't work in a standalone environment.
Otherwise, strip Bind DN and use it directly
5851539
to
4ec865d
Compare
Tests: With a DN as bind DN defined on AD source or with a DN as sAMAccountName defined on AD source
|
I added the upgrade note @julsemaan. Feel free to modify it. Because we will remove option from GUI, I told users to edit file by hand. @satkunas, could you hide or remove "NTLM cache background job" (only this option) from NTLM Auth cache section ? |
Perhaps I'm blind, I'm not seeing this in this PR or in devel and its not in the PR description |
@nqb done |
With a |
Agree on that, my approach was different. |
Description
Refresh NTLM auth cache integration on Debian 11 and EL systems.
Impacts
NTLM Auth cache
Issue
fixes #6341
fixes #6342
Delete branch after merge
YES
Checklist
(REQUIRED) - [yes, no or n/a]