# # This file was generated by Centrify ADBindProxy Utility # [global] security = ADS realm = VCCP.COM workgroup = VCCP netbios name = LON0TWT01 auth methods = guest, sam, winbind, ntdomain machine password timeout = 0 passdb backend = tdbsam:/etc/samba/private/passdb.tdb # # Samba versions 3.4.0 and newer have replaced "use kerberos keytab" # with "kerberos method". The directive "kerberos method = secrets and keytab" # enables Samba to honor service tickets that are still valid but were # created before the Samba server's password was changed. # kerberos method = secrets and keytab # # Setting "client use spnego principal" to true instructs SMB client to # trust the service principal name returned by the SMB server. Otherwise, # client cannot be authenticated via Kerberos by the server in a different # domain even though the two domains are mutually trusted. # client use spnego principal = true # # Setting send spnego principal to yes . # Otherwise, it will not send this principal between Samba and Windows 2008 # send spnego principal = Yes # If your Samba server only serves to Windows systems, try server signing = mandatory. server signing = auto client ntlmv2 auth = yes client use spnego = yes template shell = /bin/bash winbind use default domain = Yes winbind enum users = No winbind enum groups = No winbind nested groups = Yes idmap cache time = 0 ignore syssetgroups error = No idmap config * : backend = tdb idmap config * : range = 1000 - 200000000 idmap config * : base_tdb = 0 enable core files = false # Disable Logging to syslog, and only write log to Samba standard log files. syslog = 0 ## debug samba in smbd.log #log level = 10 #log file = /var/log/samba/smb.log #max log size = 0 [samba-test] path = /samba-test public = yes # if set public = No, we should set parameter valid users . # and when the user or group is in AD , the setting syntaxes is: # valid users = VCCP\username +VCCP\group writable = yes [homes] comment = Home Directories browseable = no writable = yes ; valid users = %S ; valid users = MYDOMAIN\%S [printers] comment = All Printers path = /var/spool/samba browseable = no guest ok = no writable = no printable = yes # Un-comment the following and create the netlogon directory for Domain Logons ; [netlogon] ; comment = Network Logon Service ; path = /var/lib/samba/netlogon ; guest ok = yes ; writable = no ; share modes = no # Un-comment the following to provide a specific roving profile share # the default is to use the user's home directory ; [Profiles] ; path = /var/lib/samba/profiles ; browseable = no ; guest ok = yes # A publicly accessible directory, but read only, except for people in # the "staff" group ; [public] ; comment = Public Stuff ; path = /home/samba ; public = yes ; writable = yes ; printable = no ; write list = +staff [io] path = /symlnks/io guest account = dalim read only = no create mode = 0777 directory mode = 0777 guest ok = yes browsable = yes writable = yes [Dalim PPDs on LON0TWT01] comment = Dalim PPDs on LON0TWT01 (Hot Folder) path = /home/symlnks/process/6.0/workflows/LON0TWT01/WflPPD writeable = yes guest ok = yes [VCCP_ISO39L_Proof] comment = VCCP_ISO39L_Proof (Hot Folder) path = /home/symlnks/process/6.0/workflows/VCCP_ISO39L_Proof writeable = yes guest ok = yes [VCCP_PDFx1a] comment = VCCP_PDFx1a (Hot Folder) path = /home/symlnks/process/6.0/workflows/VCCP_PDFx1a writeable = yes guest ok = yes [FTP_VCCPzip] comment = FTP_VCCPzip (Hot Folder) path = /home/symlnks/process/6.0/workflows/LON0TWT01/FTP_VCCPzip writeable = yes guest ok = yes [VCCP_Production] comment = VCCP_Production (Hot Folder) path = /home/symlnks/process/6.0/workflows/VCCP_Production writeable = yes guest ok = yes [ioi_test_zip] comment = ioi_test_zip (Hot Folder) path = /home/symlnks/process/6.0/workflows/LON0TWT01/ioi_test_zip writeable = yes guest ok = no