[global]
        workgroup = NEGO
        realm = nego.dptav.net
        netbios name = NEGOSRV
        server role = active directory domain controller
        server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbind, ntp_signd, kcc, dnsupdate
        idmap_ldb:use rfc2307 = yes

        server string = DNEGO 
        interfaces = 192.168.1.50
        bind interfaces only = yes

        strict allocate = yes

        vfs objects = full_audit dfs_samba4 acl_xattr
        full_audit:prefix = %u|%I|%m|%S
        full_audit:success = mkdir rename unlink rmdir pwrite pread connect disconnect
        full_audit:failure = none
        full_audit:facility = LOCAL6
        full_audit:priority = NOTICE

        log level = 3

        read raw = yes
        write raw = yes

[netlogon]
        path = /usr/local/samba/var/locks/sysvol/nego.dptav.net/scripts
        read only = no
        browseable = no

[sysvol]
        path = /usr/local/samba/var/locks/sysvol
        read only = no
        browseable = no

[profiles]
        oplocks = no
        level2 oplocks = no

        path = /profiles
        writeable = yes
        create mask = 0600
        directory mask = 0700
        browseable = no
[homes]
        path=/home/%U
        guest ok = no
        read only = no
        writeable = yes
        create mask = 0700
        directory mask = 0700