#======================= Global Settings ===================================== [global] netbios name = c92-ms168 interfaces = 10.92.1.6/24 #client use spnego = no #server signing = auto #client signing = auto # winbind idmap domains = AD idmap config AD:backend = rid idmap config AD:range = 100000 - 200000 allow trusted domains = no winbind separator = / winbind normalize names = yes # workgroup = NT-Domain-Name or Workgroup-Name, eg: MIDEARTH workgroup = AD # server string is the equivalent of the NT Description field server string = Solaris NAS SAN Bridge # Security mode. Defines in which mode Samba will operate. Possible # values are share, user, server, domain and ads. Most people will want # user level security. See the Samba-HOWTO-Collection for details. security = ads encrypt passwords = yes # This option is important for security. It allows you to restrict # connections to machines which are on your local network. The # following example restricts access to two C class networks and # the "loopback" interface. For more examples of the syntax see # the smb.conf man page ; hosts allow = 192.168.1. 192.168.2. 127. # If you want to automatically load your printer list rather # than setting them up individually then you'll need this load printers = no printcap name = lpstat # this tells Samba to use a separate log file for each machine # that connects log file = /var/samba/log/log.%m log level = 10 # Put a capping on the size of the log files (in Kb). max log size = 2048 # Use password server option only with security = server # The argument list may include: # password server = My_PDC_Name [My_BDC_Name] [My_Next_BDC_Name] # or to auto-locate the domain controller/s # password server = * password server = dc1 dc0 # Use the realm option only with security = ads # Specifies the Active Directory realm the host is part of realm = ad.canam.net socket options = IPTOS_LOWDELAY # These scripts are used on a domain controller or stand-alone # machine to add or delete corresponding unix accounts ; add user script = /usr/sbin/useradd %u ; add group script = /usr/sbin/groupadd %g ; add machine script = /usr/sbin/adduser -n -g machines -c Machine -d /dev/null -s /bin/false %u ; delete user script = /usr/sbin/userdel %u ; delete user from group script = /usr/sbin/deluser %u %g ; delete group script = /usr/sbin/groupdel %g #============================ Share Definitions ============================== # Un-comment the following and create the netlogon directory for Domain Logons ; [netlogon] ; comment = Network Logon Service ; path = /usr/local/samba/lib/netlogon ; guest ok = yes ; writable = no ; share modes = no # Un-comment the following to provide a specific roving profile share # the default is to use the user's home directory ;[Profiles] ; path = /usr/local/samba/profiles ; browseable = no ; guest ok = yes aio read size = 65536 aio write size = 32768 hostname lookups = yes username map = /etc/samba/users.map [Test] path = /export/Test read only = no public = no vfs objects = zfsacl acl map full control = no # dos filemode = no security mask = 0770 force security mode = 0 directory security mask = 0770 force directory security mode = 0