Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # cat /etc/samba/smb.conf
- # Global parameters
- [global]
- dns proxy = no
- wins support = yes
- server role = active directory domain controller
- workgroup = YGGDRASIL
- realm = YGGDRASIL.BITTOO.NET
- netbios name = JOTUNHEIM
- server string = Debian PDC - Samba %v
- passdb backend = samba4
- dcerpc endpoint servers = epmapper, wkssvc, rpcecho, samr, netlogon, lsarpc, spoolss, drsuapi, dssetup, unixinfo, browser, eventlog6, backupkey, dnsserver, winreg, srvsvc
- server services = rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbind, ntp_signd, kcc, dnsupdate, smb
- name resolve order = host wins bcast lmhost
- kerberos method = system keytab
- # IDMAP's
- idmap_ldb:use rfc2307 = yes
- idmap config *:backend = tdb
- idmap config *:range = 70001-80000
- idmap config YGGDRASIL:backend = ad
- idmap config YGGDRASIL:schema_mode = rfc2307
- idmap config YGGDRASIL:range = 10000-20000
- # Netwok-settings
- ####################################################
- # hosts deny = ALL
- # hosts allow = 192.168.116.0/23 127.
- hosts allow = ALL
- bind interfaces only = yes
- interfaces = lo pbr0
- socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 SO_KEEPALIVE
- # Various other directives ( man smb.conf )
- ###################################################
- time server = Yes
- domain master = Yes
- domain logons = Yes
- preferred master = Yes
- # Windbind
- ##################################################
- winbind separator = %
- template shell = /bin/bash
- template homedir = /home/%ACCOUNTNAME%
- #winbind nss info = rfc2307
- # Authentication
- ####################################################
- local master = yes
- security = user
- null passwords = no
- encrypt passwords = yes
- obey pam restrictions = no
- # Removed for windows clients roaming pofile
- # invalid users = root
- # For unix passwd change - dosen't matter if running LDAP for UNIX auth
- # passwd program = /usr/bin/passwd %u
- # passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
- # passwd program = /usr/bin/samba-tool user password %u
- passwd chat = *New*password* %n\n *ReType*new*password* %n\n*passwd:*all*authentication*tokens*updated*successfully*
- [netlogon]
- path = /var/lib/samba/sysvol/yggdrasil.bittoo.net/scripts
- read only = No
- [sysvol]
- path = /var/lib/samba/sysvol
- read only = No
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement