s4:auth: Export AES128 gMSA keys along with AES256 keys by default

This is what an existing test expects. Signed-off-by: Jo Sutton <josutton@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
author: Jo Sutton <josutton@catalyst.net.nz> 2024-04-23 13:13:20 +1200
committer: Andrew Bartlett <abartlet@samba.org> 2024-04-24 05:16:29 +0000
commit: 786eab65cefac69dfd38646437720f33994f8f47 (patch)
tree: 7ab4efd76181fbfb3323fddffbb4fa0ed09de87a /source4
parent: 103ca0276fbda03592bfb4a460ba946218abfb16 (diff)
download: samba-786eab65cefac69dfd38646437720f33994f8f47.tar.gz
samba-786eab65cefac69dfd38646437720f33994f8f47.tar.bz2
samba-786eab65cefac69dfd38646437720f33994f8f47.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/source4/auth/kerberos/srv_keytab.c b/source4/auth/kerberos/srv_keytab.c
index 4d5306d9002..a2f0d172e02 100644
--- a/source4/auth/kerberos/srv_keytab.c
+++ b/source4/auth/kerberos/srv_keytab.c
@@ -350,7 +350,7 @@ NTSTATUS smb_krb5_fill_keytab_gmsa_keys(TALLOC_CTX *mem_ctx,
 
 	supported_enctypes = ldb_msg_find_attr_as_uint(msg,
 						       "msDS-SupportedEncryptionTypes",
-						       ENC_HMAC_SHA1_96_AES256);
+						       ENC_STRONG_SALTED_TYPES);
 	/*
 	 * We trim this down to just the salted AES types, as the
 	 * passwords are now wrong for rc4-hmac due to the mapping of
author	Jo Sutton <josutton@catalyst.net.nz>	2024-04-23 13:13:20 +1200
committer	Andrew Bartlett <abartlet@samba.org>	2024-04-24 05:16:29 +0000
commit	786eab65cefac69dfd38646437720f33994f8f47 (patch)
tree	7ab4efd76181fbfb3323fddffbb4fa0ed09de87a /source4
parent	103ca0276fbda03592bfb4a460ba946218abfb16 (diff)
download	samba-786eab65cefac69dfd38646437720f33994f8f47.tar.gz samba-786eab65cefac69dfd38646437720f33994f8f47.tar.bz2 samba-786eab65cefac69dfd38646437720f33994f8f47.zip