diff options
| author | Werner Koch <[email protected]> | 2020-12-14 18:28:25 +0000 |
|---|---|---|
| committer | Werner Koch <[email protected]> | 2020-12-14 18:29:49 +0000 |
| commit | e9ddd61fe979b1b8e1a4801f7f916d0222397245 (patch) | |
| tree | 4acb86b0c643e333e4b3f9ebc10a1277d797dce8 /dirmngr/t-http-basic.c | |
| parent | dirmngr: Do not store the useless pgpSignerID in the LDAP. (diff) | |
| download | gnupg-e9ddd61fe979b1b8e1a4801f7f916d0222397245.tar.gz gnupg-e9ddd61fe979b1b8e1a4801f7f916d0222397245.zip | |
dirmngr: Support the new Active Directory schema
* dirmngr/ks-engine-ldap.c (SERVERINFO_): New constants.
(my_ldap_connect): Relace args pgpkeyattrp and real_ldapp by a new
serverinfo arg. Set the new info flags.
(ks_ldap_get): Adjust for change.
(ks_ldap_search): Ditto.
(ks_ldap_put): Ditto. Replace xmalloc by xtrymalloc. Change the DN
for use with NTDS (aka Active Directory).
* doc/ldap/gnupg-ldap-init.ldif (pgpSoftware): Update definition of
pgpVersion.
* doc/ldap/gnupg-ldap-ad-init.ldif: New.
* doc/ldap/gnupg-ldap-ad-schema.ldif: New.
--
This is a first take on better Active Directory support. The main
change for NTDS in the code is that the an top-RDN of CN is used
instead of the old pgpCertID. More changes to come; for example using
and storing the fingerprint.
Signed-off-by: Werner Koch <[email protected]>
Diffstat (limited to '')
0 files changed, 0 insertions, 0 deletions