# Global parameters [global] # unix charset = LOCALE unix charset = ISO-8859-1 workgroup = GYMLIESTAL netbios name = ASTERIX server string = Schulnetz interfaces = eth0, lo bind interfaces only = Yes passdb backend = ldapsam:ldap://asterix.gymliestal.ch username map = /etc/samba/smbusers log level = 1 #log level = 1023 syslog = 0 log file = /var/log/samba/%m # log file = /var/log/samba/userlog.%U # max log size = 50 smb ports = 139 445 name resolve order = wins bcast hosts time server = Yes # printcap name = CUPS show add printer wizard = yes add user script = /usr/local/sbin/smbldap-useradd -a -m '%u' delete user script = /usr/local/sbin/smbldap-userdel %u add group script = /usr/local/sbin/smbldap-groupadd -p '%g' delete group script = /usr/local/sbin/smbldap-groupdel '%g' add user to group script = /usr/local/sbin/smbldap-groupmod -m '%u' '%g' delete user from group script = /usr/local/sbin/smbldap-groupmod -x '%u' '%g' set primary group script = /usr/local/sbin/smbldap-usermod -g '%g' '%u' add machine script = /usr/local/sbin/smbldap-useradd -w '%u' domain logons = Yes domain master = Yes preferred master = Yes wins support = Yes os level = 35 machine password timeout = 0 logon script = schueler.bat # utmp = yes encrypt passwords = Yes # min password length = 6 ldap suffix = dc=gymliestal,dc=ch ldap machine suffix = ou=Machines,ou=Accounts ldap user suffix = ou=People,ou=Accounts ldap group suffix = ou=Group ldap passwd sync = Yes ldap ssl = start tls ldap idmap suffix = ou=Idmap ldap admin dn = cn=Manager,dc=gymliestal,dc=ch idmap backend = ldap:ldap://asterix.gymliestal.ch idmap uid = 500-20000 idmap gid = 500-20000 map acl inherit = Yes winbind separator = + idmap uid=30000-40000 idmap gid=30000-40000 winbind enum users = yes winbind enum groups = yes printing = cups #printer admin = Administrator, mathias [homes] comment = Home Directories valid users = %S read only = No browseable = No writeable = yes guest ok = no create mode = 0640 directory mode = 0750 profile acls = yes [fachschaften] comment = fachschaftsdaten path = /server/fachschaften writeable = yes guest ok = no create mode = 660 force create mode = 660 directory mode = 770 [klassen] comment = klassenordner path = /server/klassen writeable = yes guest ok = no create mode = 664 force create mode = 664 directory mode = 777 force directory mode = 777 [data] path = /server/data writeable = yes guest ok = no create mode = 664 directory mode = 775 [test] path = /server/test writeable = yes guest ok = no create mode = 664 directory mode = 775 [netlogon] comment = Network Logon Service path = /var/lib/samba/netlogon # guest ok = Yes guest ok = no locking = No public = no # root postexec = /var/lib/samba/sbin/deldesktopini %u [profiles] comment = Profile Share path = /var/lib/samba/profiles read only = No profile acls = Yes [printers] comment = All Printers path = /var/spool/samba/print # printer = h9v_laser browseable = Yes public = Yes guest ok = Yes writeable = No printable = Yes # printer admin = @ntadmins [print$] comment = Printer Driver Download Area path = /var/lib/samba/drivers browseable = yes guest ok = yes read only = yes writelist = @ntadmin, root