search for: ldap_server_permissive_modify_oid

...and a Samba 3 client as a domain client, both runing under FreeBSD. To add an SPN for the client I run the command "net ads keytab add HTTP". There is no output but "net ads keytab list" does not show that SPN. Sniffing the network traffic I see that the client uses the control LDAP_SERVER_PERMISSIVE_MODIFY_OID with the critical-bit set and the server responds with an error "Unsupported critical extension". I could reproduce the behaviour by running ldbmodify on the server: ldbmodify -H ldap://servername -k 1 --controls=permissive_modify:1 test with the file content of test dn: CN=workstatio...

...rrently any way to add Samba 3 boxes to the Samba 4 domain? Some more details: Looking at the network traffic, there's a LDAP modify request requiring some special control: object: CN=client1,CN=Computers, <...> operation: replace type: dNSHostName controlType: 1.2.840.113556.1.4.1413 (LDAP_SERVER_PERMISSIVE_MODIFY_OID) criticality: True However this control is not supported in Samba4 according to the built-in LDAP server: supportedControl: + 1.2.840.113556.1.4.417 Show deleted control + 1.2.840.113556.1.4.319 Simple Paged Results Manipulation Control Extension + 1.2.840.113556.1....