Comment 15 for bug 1984073

Dear Sergio,
reproducing the issue requires a Samba AD DC and a domain workstation with autofs-ldap installed. AutoFS maps need not to be defined in Samba AD as this issues relates to SASL authentication to Samba AD only. But Samba AD needs to be prepared to allow Kerberos authentication of the domain workstation using service principals.

Are there any Test Plans available for setting up a test Samba AD DC and join a test workstation to the domain? This would be a good basis for adding the autofs required configuration changes.

The main area of possible regression is for connecting the autofs test workstation to an OpenLDAP directory service instead of a Samba AD. Using the proposed patches SASL authentication is now completely handled by the OpenLDAP client. Before authentication was controlled by an own SASL client implementation within autofs. Risk for regression is very low as all OpenLDAP client tools (e. g. ldapsearch) use the same mechanism.

No regression is expected for interworking with older Ubuntu releases. We have still Ubuntu 18.04 Samba AD DC in the net and interworking has been successfully tested to them.