Hi Rob,

I've done some digging about using cached credentials from winbindd, and this currently breaks with how we use this from Wine. Specifically, it's not possible to get the session key from winbindd. This breaks our later attempts to do signing/sealing. It might be possible to change winbindd to include this information, but in order to not leak user password information, winbindd can only do so for NTLMv2 and NTLM2.

In any case, --use-cached-creds will make things break in new and interesting ways for users who actually are running winbindd. I propose to stop setting that parameter until we figure out how to make this work.

Cheers, Kai