[global] dos charset = cp866 unix charset = koi8-r display charset = koi8-r workgroup = SERV netbios name = ICSSERV netbios aliases = netbios scope = server string = PDC Microsoft Windows interfaces = bind interfaces only = No security = USER auth methods = encrypt passwords = Yes update encrypted = No client schannel = Auto server schannel = Auto allow trusted domains = Yes map to guest = Never null passwords = No obey pam restrictions = No password server = * smb passwd file = /usr/local/etc/samba/smbpasswd private dir = /usr/local/etc/samba passdb backend = ldapsam:ldaps://192.168.145.50/ algorithmic rid base = 1000 root directory = guest account = nobody enable privileges = Yes pam password change = Yes passwd program = /usr/local/sbin/smbldap-passwd %u passwd chat = *Changing UNIX and samba passwords for %u* %n\n *New*password* %n\n *Retype*new*password* %n\n *all*authentication*tokens*updated* passwd chat debug = No passwd chat timeout = 2 check password script = username map = /usr/local/etc/smbusers password level = 0 username level = 0 unix password sync = No restrict anonymous = 0 lanman auth = Yes ntlm auth = Yes client NTLMv2 auth = No client lanman auth = Yes client plaintext auth = Yes preload modules = use kerberos keytab = No log level = 1 vfs:1 syslog = 0 syslog only = No log file = /var/log/samba.log max log size = 150000 debug timestamp = Yes debug prefix timestamp = No debug hires timestamp = No debug pid = No debug uid = No enable core files = Yes smb ports = 445 139 large readwrite = Yes max protocol = NT1 min protocol = CORE read bmpx = No read raw = Yes write raw = Yes disable netbios = No reset on zero vc = No acl compatibility = auto defer sharing violations = Yes nt pipe support = Yes nt status support = Yes announce version = 4.9 announce as = NT max mux = 50 max xmit = 65535 name resolve order = host dns wins bcast max ttl = 259200 max wins ttl = 518400 min wins ttl = 21600 time server = Yes unix extensions = Yes use spnego = Yes client signing = auto server signing = No client use spnego = Yes enable asu support = No svcctl list = deadtime = 0 getwd cache = Yes keepalive = 300 lpq cache time = 30 max smbd processes = 0 paranoid server security = Yes max disk size = 0 max open files = 10000 open files database hash size = 10007 socket options = IPTOS_LOWDELAY TCP_NODELAY SO_KEEPALIVE SO_BROADCAST use mmap = Yes hostname lookups = No name cache timeout = 660 load printers = Yes printcap cache time = 750 printcap name = cups cups server = iprint server = disable spoolss = No addport command = enumports command = addprinter command = deleteprinter command = show add printer wizard = No os2 driver map = mangling method = hash2 mangle prefix = 1 max stat cache size = 1024 stat cache = Yes machine password timeout = 604800 add user script = /usr/local/sbin/smbldap-useradd -m -a "%u" rename user script = delete user script = rm -f -R /samba/profiles/"%u" && rm -f -R /samba/share/work/"%u" && /usr/local/sbin/smbldap-userdel "%u" add group script = /usr/local/sbin/smbldap-groupadd -p "%g" delete group script = /usr/local/sbin/smbldap-groupdel "%g" add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g" delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u" "%g" set primary group script = /usr/local/sbin/smbldap-usermod -g "%g" "%u" add machine script = /usr/local/sbin/smbldap-useradd -w "%u" && smbldap-groupmod -m "%u" "Domain Computers" shutdown script = abort shutdown script = username map script = logon script = logon path = \\%N\%U\profile logon drive = logon home = \\%N\%U domain logons = Yes os level = 255 lm announce = Auto lm interval = 60 preferred master = Yes local master = Yes domain master = Yes browse list = Yes enhanced browsing = Yes dns proxy = No wins proxy = Yes wins server = wins support = Yes wins hook = kernel oplocks = Yes lock spin time = 10 oplock break wait time = 0 ldap admin dn = cn=admin,dc=palcons,dc=ru ldap delete dn = Yes ldap group suffix = ou=Groups ldap idmap suffix = ou=Users ldap machine suffix = ou=Computers ldap passwd sync = Yes ldap replication sleep = 1000 ldap suffix = dc=palcons,dc=ru ldap ssl = ldap timeout = 15 ldap page size = 1024 ldap user suffix = ou=Users ldap debug level = 0 ldap debug threshold = 10 add share command = change share command = delete share command = eventlog list = config file = preload = lock directory = /var/db/samba pid directory = /var/run utmp directory = wtmp directory = utmp = No default service = message command = csh -c 'xedit %s;rm %s' & get quota command = set quota command = remote announce = remote browse sync = socket address = 0.0.0.0 homedir map = afs username map = afs token lifetime = 604800 log nt token command = time offset = 0 NIS homedir = No usershare allow guests = No usershare max shares = 0 usershare owner only = Yes usershare path = /var/db/samba/usershares usershare prefix allow list = usershare prefix deny list = usershare template share = panic action = host msdfs = Yes passdb expand explicit = No idmap domains = idmap backend = idmap alloc backend = idmap cache time = 900 idmap negative cache time = 120 idmap uid = 500-30000 idmap gid = 500-30000 template homedir = /home/%D/%U template shell = /bin/false winbind separator = \ winbind cache time = 300 winbind enum users = Yes winbind enum groups = Yes winbind use default domain = Yes winbind trusted domains only = No winbind nested groups = Yes winbind nss info = template winbind refresh tickets = No winbind offline logon = No winbind normalize names = No comment = path = username = invalid users = valid users = admin users = "@Domain Admins" read list = write list = printer admin = force user = force group = read only = Yes acl check permissions = No acl group control = No acl map full control = Yes create mask = 0744 force create mode = 00 security mask = 0777 force security mode = 00 directory mask = 0755 force directory mode = 00 directory security mask = 0777 force directory security mode = 00 force unknown acl user = No inherit permissions = No inherit acls = No inherit owner = No guest only = No administrative share = No guest ok = No only user = No hosts allow = hosts deny = allocation roundup size = 1048576 aio read size = 0 aio write size = 0 aio write behind = ea support = No nt acl support = Yes profile acls = No map acl inherit = No afs share = No block size = 1024 change notify = Yes directory name cache size = 100 kernel change notify = Yes max connections = 0 min print space = 0 strict allocate = No strict sync = No sync always = No use sendfile = No write cache size = 0 max reported print jobs = 0 max print jobs = 1000 printable = No printing = cups cups options = print command = lpq command = %p lprm command = lppause command = lpresume command = queuepause command = queueresume command = printer name = use client driver = No default devmode = Yes force printername = No printjob username = %U default case = lower case sensitive = Auto preserve case = Yes short preserve case = Yes mangling char = ~ hide dot files = Yes hide special files = No hide unreadable = Yes hide unwriteable files = No delete veto files = No veto files = /.snap/quota*/ hide files = veto oplock files = map archive = Yes map hidden = No map system = No map readonly = yes mangled names = Yes mangled map = store dos attributes = No dmapi support = No browseable = Yes blocking locks = Yes csc policy = manual fake oplocks = No locking = Yes oplocks = No level2 oplocks = No oplock contention limit = 2 posix locking = Yes strict locking = Yes share modes = Yes dfree cache time = 0 dfree command = copy = include = preexec = preexec close = No postexec = root preexec = root preexec close = No root postexec = available = Yes volume = fstype = NTFS set directory = No wide links = Yes follow symlinks = Yes dont descend = magic script = magic output = delete readonly = No dos filemode = No dos filetimes = Yes dos filetime resolution = No fake directory create times = No vfs objects = msdfs root = No msdfs proxy = [homes] comment = Домашняя папка пользователя %U path = /samba/share/work/%U valid users = %U, "@Domain Admins" admin users = admin, "@Domain Admins", %U write list = @workw read only = No create mask = 0600 directory mask = 0700 veto files = /*.avi/*.mp3/*.vob/.*/ browseable = No vfs objects = recycle, default_quota default_quota:gid = workw recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 20000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [netlogon] comment = Network Logon Service path = /samba/netlogon valid users = "@Domain Users" read only = No guest ok = Yes browseable = No share modes = No root preexec = /samba/mklogon.pl -u %U -m %m -s %L -o %a -i %I -d %T volume = NETLOGON [Profiles] comment = Network Profiles Patch path = /samba/profiles valid users = %U, "@Domain Admins" force user = %U read only = No create mask = 0600 directory mask = 0700 profile acls = Yes hide unreadable = No delete veto files = Yes veto files = /*.avi/*.mp3/*.vob/*.jpg/*.jpeg/ browseable = No csc policy = disable root preexec = /samba/mkprofile '%u' '%G' [Inst] comment = Диск исталяций path = /samba/share/inst valid users = w0098, w0158, "@Domain Admins" write list = w0098, "@Domain Admins" read only = No force create mode = 0660 force directory mode = 0770 guest ok = Yes [Jobd] comment = Рабочий диск (Демоверсии, материалы и т.п) path = /samba/share/jobd valid users = +jobdr write list = +jobdw read only = No create mask = 0664 directory mask = 0775 guest ok = Yes vfs objects = recycle, default_quota default_quota:gid = jobdw recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 10000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Kons] comment = Диск программы "КонсультантПлюс" path = /samba/share/kons valid users = +konsr write list = +konsw read only = No force create mode = 0667 force directory mode = 0770 guest ok = Yes vfs objects = default_quota default_quota:gid = konsw [Live] comment = Закрытый диск Информационной службы path = /samba/share/live valid users = +liver write list = +livew read only = No force create mode = 0664 force directory mode = 0775 guest ok = Yes vfs objects = recycle, default_quota default_quota:gid = livew recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 10000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Mark] comment = Диск БД Рынок path = /samba/share/mark valid users = +mark write list = +markw read only = No force create mode = 0660 force directory mode = 0770 guest ok = Yes vfs objects = recycle, default_quota default_quota:gid = markw recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 10000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Omon] comment = Открытый диск общих данных path = /samba/share/omon valid users = +omon read only = No force create mode = 0666 force directory mode = 0777 guest ok = Yes delete veto files = Yes veto files = /*.avi/*.mp3/*.vob/ vfs objects = default_quota default_quota:gid = omon [Prog] comment = Диск Службы програмирования path = /samba/share/prog valid users = +progr write list = +progw read only = No force create mode = 0664 force directory mode = 0775 guest ok = Yes vfs objects = recycle, default_quota default_quota:gid = progw recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 10000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Ques] comment = Диск Запросов И Аудита качества path = /samba/share/ques valid users = +quesr write list = +quesw read only = No force create mode = 0664 force directory mode = 0775 guest ok = Yes vfs objects = recycle, default_quota default_quota:gid = quesw recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 10000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Rcon] comment = Диск Регионального выпуска (ОРВ) path = /samba/share/rcon valid users = +rconr write list = +rconw read only = No force create mode = 0664 force directory mode = 0775 guest ok = Yes vfs objects = recycle, default_quota default_quota:gid = rconw recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 10000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Serv] comment = Диск Сервисной службы path = /samba/share/serv valid users = +servr write list = +servw read only = No force create mode = 0664 force directory mode = 0775 guest ok = Yes vfs objects = recycle, default_quota default_quota:gid = servw recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 10000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Tech] comment = Диск Технической службы path = /samba/share/tech valid users = +techr write list = +techw read only = No force create mode = 0660 force directory mode = 0770 guest ok = Yes vfs objects = recycle, default_quota default_quota:gid = techw recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 10000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Univ] comment = Диск Отдела бугалтерии path = /samba/share/univ write list = +Accountant read only = No force create mode = 0664 force directory mode = 0775 guest ok = Yes vfs objects = recycle, default_quota default_quota:gid = univw recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 10000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Vend] comment = Диск Комерческой службы path = /samba/share/vend valid users = +vendr write list = +vendw read only = No force create mode = 0664 force directory mode = 0775 guest ok = Yes vfs objects = recycle, default_quota default_quota:gid = vendw recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 1000000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Xfil] comment = Диск Дирекции path = /samba/share/xfil valid users = +xfilr write list = +xfilw read only = No force create mode = 0666 force directory mode = 0775 guest ok = Yes vfs objects = recycle, full_audit, default_quota default_quota:gid = xfilw full_audit:failure = unlink rmdir full_audit:success = unlink rmdir mkdir write delete rename full_audit:prefix = ресурс %u@%I:\\%L\%S recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 5000000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Yfil] comment = Диск Дирекции по работе с персоналом path = /samba/share/yfil valid users = +yfilr write list = +yfilw read only = No force create mode = 0666 force directory mode = 0775 vfs objects = recycle, default_quota default_quota:gid = yfilw recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 5000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [Archiv] comment = Диск для работы с архивом path = /archiv/doc valid users = "@Domain Users" write list = "@Domain Users" read only = No force create mode = 0666 force directory mode = 0775 browseable = No vfs objects = recycle, default_quota recycle:exclude = *.tmp|*.tbi|*.temp|~$*|*.~?? recycle:maxsize = 500000 recycle:version = Yes recycle:touch = Yes recycle:keeptree = Yes recycle:repository = Корзина [kav_base] comment = Base antivirus path = /samba/share/prog/tast write list = "@Domain Admins" guest ok = Yes share modes = No [Backup] comment = Backup данных path = /archiv/backup_samba valid users = "@Domain Admins" browseable = No [ftpconsusers] comment = Update cons path = /ftp/consusers valid users = "@Domain Admins" read only = No create mask = 0664 directory mask = 0775 guest ok = Yes [printers] comment = All Printers path = /var/spool/samba guest ok = Yes printable = Yes browseable = No [print$] comment = Printer Drivers path = /samba/share/cups/drivers write list = "@Domain Admins"