:* Monday, October 07, 2013 11:37 AM
*To:* Nadezhda Ivanova
*Cc:* cifs-proto...@samba.org; MSSolve Case Email
*Subject:* RE: [REG113100710843173]: Question about LDAP delete operation
on Administrator and other built-in accounts
** **
Nadia,
** **
I will investigate this and follow
relevant
to the case?
Best Regards,
Nadezhda Ivanova
___
cifs-protocol mailing list
cifs-protocol@cifs.org
https://lists.samba.org/mailman/listinfo/cifs-protocol
Hi,
I have a question regarding 2.5.3.4 Algorithm for Creating a Security
Descriptor.
It is said there that any ACEs provided by the user that contain the
INHERITED_ACE flag are not included in the final SD assigned to the object,
and in the algorithm they are also disregarded. This is indeed
then the
syntax restrictions described in MS-DRSR and MS-ADTS?
If an object does not have Validated-SPN on Principal-Self, should the
account still be allowed to set the above values via DRS?
Best Regards,
Nadezhda Ivanova
___
cifs-protocol mailing list
cifs
is in an OU where inheritance is broken, that is, it will not inherit
anything from the parent.
The sid variable is the sid of a regular user, I suppose any user would do.
Thanks,
Nadya
- Original Message -
From: Hongwei Sun hongw...@microsoft.com
To: Nadezhda Ivanova nadezhda.ivan
Hello,
I was running some test against a Windows 2008 server, forest functional level
and domain functional level are both 2008. I created a group via LDAP and
provided a security descriptor with ACE's deliberately scrambled - e.g Deny
before Allow, Object Specific before Regular. I did not
: Hongwei Sun hongw...@microsoft.com
To: Nadezhda Ivanova nadezhda.ivan...@postpath.com, Interoperability
Documentation Help doch...@winse.microsoft.com
Cc: cifs-proto...@samba.org cifs-proto...@samba.org
Sent: Tuesday, April 6, 2010 5:53:01 PM (GMT+02:00) Helsinki, Kyiv, Riga,
Sofia, Tallinn
Hi,
I am not able to find the actual numerical value of FLAG_ATTR_IS_CRITICAL
(systemFlagsEx) and FLAG_ATTR_REQ_PARTIAL_SET_MEMBER for systemFlags. I am
working on access checks for DRS replication and this blocks my work, so I
would appreciate a fast response...
Regards,
Nadya
Message -
From: Bill Wesse bil...@microsoft.com
To: Nadezhda Ivanova nadezhda.ivan...@postpath.com
Cc: cifs-proto...@samba.org cifs-proto...@samba.org
Sent: Friday, December 18, 2009 5:55:29 PM GMT+0200 Europe;Athens
Subject: Status: SRX091201600038 [MS-ADTS] LDAPControl not applied on add
...@microsoft.com
To: Nadezhda Ivanova nadezhda.ivan...@postpath.com
Cc: cifs-proto...@samba.org cifs-proto...@samba.org
Sent: Monday, November 30, 2009 9:51:11 PM GMT+0200 Europe;Athens
Subject: RE: [cifs-protocol] Need some help with LDAP_SERVER_SD_FLAGS_OID
control (SRX091119600169)
Hello Nadya
configuration and condition for the
control to be taken into account?
Best Regards,
Nadya
- Original Message -
From: Bill Wesse bil...@microsoft.com
To: Nadezhda Ivanova nadezhda.ivan...@postpath.com
Cc: cifs-proto...@samba.org cifs-proto...@samba.org
Sent: Friday, November 20, 2009 7:22:08 PM
control LDAP_SERVER_SD_FLAGS_OID with the operation.
So, if the control is valid for an LDAP add, what should be the behavior?
Best Regards,
Nadezhda Ivanova
___
cifs-protocol mailing list
cifs-protocol@cifs.org
https://lists.samba.org/mailman/listinfo/cifs
a bit if you have other priorities.
Regards,
Nadya
- Original Message -
From: Bill Wesse bil...@microsoft.com
To: Nadezhda Ivanova nadezhda.ivan...@postpath.com
Cc: cifs-proto...@samba.org cifs-proto...@samba.org
Sent: Thursday, November 19, 2009 10:23:06 PM GMT+0200 Europe;Athens
-protocol-boun...@cifs.org
To: bil...@microsoft.com bil...@microsoft.com, Nadezhda Ivanova
nadezhda.ivan...@postpath.com
Cc: cifs-proto...@samba.org cifs-proto...@samba.org
Sent: Thursday, November 19, 2009 11:30:59 PM GMT+0200 Europe;Athens
Subject: Re: [cifs-protocol] Need some help
- Forwarded Message -
From: Nadezhda Ivanova nadezhda.ivan...@postpath.com
To: doch...@microsoft.com doch...@microsoft.com
Cc: cifs-protoc...@samba.org cifs-protoc...@samba.org
Sent: Wednesday, November 18, 2009 1:26:01 PM GMT+0200 Europe;Athens
Subject: Question about self relative
To: Nadezhda Ivanova nadezhda.ivan...@postpath.com
Cc: cifs-proto...@samba.org cifs-proto...@samba.org
Sent: Wednesday, November 18, 2009 6:46:18 PM GMT+0200 Europe;Athens
Subject: RE: Question about self relative form of SECURITY_DESCRIPTOR
(SRX091118600013)
Hello Nadya - here are the results of my
-
From: Bill Wesse bil...@microsoft.com
To: Nadezhda Ivanova nadezhda.ivan...@postpath.com
Sent: Monday, October 19, 2009 5:42:01 PM GMT+0200 Europe;Athens
Subject: RE: SRX090922600157 : [MS-ADTS] 7.1.1.1 Naming Contexts Domain Admins
Permissions
Good morning – I have returned to work. Just
a particular
FSMO role is assumed - what permissions are added, etc. Do you think you can
help me locate these?
Thanks for all your help, and your patience!
Best Regards,
Nadya
- Original Message -
From: Bill Wesse bil...@microsoft.com
To: Nadezhda Ivanova nadezhda.ivan
Hi Obaid,
Thank you for the attached information. I think it answers the question. Will
let you know if something else comes up, but at this point this seems
reasonable.
Regards,
Nadezhda Ivanova
From: Obaid Farooqi [mailto:oba...@microsoft.com]
Sent: Friday, August 14, 2009 7:12 PM
Hi,
Thank you for the provided document. This infoirmation appears enough for the
time being, though I think we may be sending additional questions about
specific access rights in the future.
Regards,
Nadezhda Ivanova
- Original Message -
From: Bill Wesse bil...@microsoft.com
Hi,
I was wandering if there is any progress on this issue? I did not receive
anything yesterday...
Regards,
Nadezhda Ivanova
From: Bill Wesse
Sent: Thursday, August 06, 2009 8:30 PM
To: Nadezhda Ivanova
Cc: p...@tridgell.net; cifs-proto...@samba.org
Subject: Status: SRX090805600011
Hi Obaid,
Is there any progress on this issue, or my other enquiry about the security
descriptor creation algorithms? It's been a while now and we need this
information to be able to include the security implementation in the next alpha
of Samba 4.
Best Regards,
Nadezhda Ivanova
From
Hi Edgar,
Thank you for your explanation. It answered a lot of questions, but also raised
some more, see below:
-Original Message-
From: Edgar Olougouna [mailto:edg...@microsoft.com]
Sent: Thursday, July 30, 2009 5:37 PM
To: Nadezhda Ivanova
Cc: 'p...@tridgell.net'; 'cifs-proto
in the
security descriptor of the object.
Both conditions must be met in order to use default DACL? It is 1 2, not 1 |
2?
Regards,
Nadezhda Ivanova
-Original Message-
From: Obaid Farooqi [mailto:oba...@microsoft.com]
Sent: Tuesday, July 28, 2009 12:05 AM
To: Nadezhda Ivanova
Cc: p...@tridgell.net
in understanding that this is either the nTSecurityDescriptor
attribute provided by the user, or, in the lack thereof, the
defaultSecurityDescriptor of the object class?
Best Regards,
Nadezhda Ivanova
___
cifs-protocol mailing list
cifs-protocol
Forwarding here again as it bounced the first time.
From: Nadezhda Ivanova
Sent: Friday, July 10, 2009 2:09 PM
To: doch...@winse.microsoft.com
Cc: cifs-proto...@samba.org; p...@tridgell.net
Subject: Help regarding the security descriptor creation algorithms
Hi,
I have been working
26 matches
Mail list logo
