# Global parameters [global] server role = classic primary domain controller workgroup = POA server string = SOL netbios name = SOL hosts allow = 192.168.77.0/24 interfaces = eth1 bind interfaces only = Yes #server services = +dns # Recycler configuration vfs objects = recycle recycle:repository = /home/all/lixeira/%U recycle:keeptree = Yes recycle:touch = Yes recycle:versions = Yes recycle:maxsize = 0 recycle:minsize = 1 recycle:exclude = *.tmp *.temp *.o *.obj ~$* *.~?? recycle:excludedir = /tmp /temp /cache recycle:noversions = *.doc *.xls *.ppt # passwd backend encrypt passwords = Yes passdb backend = ldapsam:ldap://ldap.poa.ifrs.edu.br/ pam password change= Yes passwd program = /usr/sbin/smbldap-passwd -u %u unix password sync = Yes # Log options log level = 3 log file = /var/log/samba/log.%m max log size = 50 syslog = 0 # Name resolution name resolve order = wins bcast host # misc timeserver = Yes socket options = IPTOS_LOWDELAY TCP_NODELAY SO_RCVBUF=131072 SO_SNDBUF=131072 veto files = /*.eml/*.nws/*.{*}/ veto oplock files = /*.doc/*.xls/*.mdb/ deadtime = 120 strict locking = no strict sync = no sync always = no read raw = Yes min receivefile size=16384 use sendfile = Yes aio read size = 16384 aio write size = 16384 aio write behind = true # Dos-Attribute map hidden = No map system = No map archive = No map read only = No store dos attributes = Yes # scripts invoked by samba add user script = /usr/sbin/smbldap-useradd -m %u delete user script = /usr/sbin/smbldap-userdel %u add group script = /usr/sbin/smbldap-groupadd -p "%g" delete group script = /usr/sbin/smbldap-groupdel "%g" add user to group script = /usr/sbin/smbldap-groupmod -m %u "%g" delete user from group script = /usr/sbin/smbldap-groupmod -x %u "%g" set primary group script = /usr/sbin/smbldap-usermod -g "%g" %u add machine script = /usr/sbin/smbldap-useradd -w "%m" # LDAP-iConfiguration ldap delete dn = Yes ldap ssl = off ldap passwd sync = Yes ldap suffix = dc=poa,dc=ifrs,dc=edu,dc=br ldap machine suffix = ou=Computers ldap user suffix = ou=People ldap group suffix = ou=Groups ldap idmap suffix = ou=Idmap ldap admin dn = cn=Manager,dc=poa,dc=ifrs,dc=edu,dc=br # logon options logon script = logon.bat %U logon path = logon home = \\%L\%U logon drive = L: # setting up as domain controller username map = /home/all/usermap preferred master = Yes wins support = Yes #domain logons = Yes domain master = Yes local master = Yes os level = 64 map acl inherit = Yes dos charset = CP850 unix charset = UTF8 dns proxy = no nt acl support = Yes create mask = 600 directory mask = 0700 force directory mode = 0700 # Windows Seven level2 oplocks = no ntlm auth = Yes lanman auth = Yes client ntlmv2 auth = Yes # Printing printing = bsd printcap = /dev/null load printers = no # Share Definitions [netlogon] comment = Network Logon Service path = /home/all/netlogon admin users = "@Domain Admins" guest ok = Yes locking = no read only = Yes vfs objects = recycle nt acl support = Yes [homes] comment = Home Directories valid users = %S read only = No browseable = No admin users = "@Domain Admins" vfs objects = recycle nt acl support = Yes [Alunos] comment = Users Directories path = /home/all/alunos read only = No admin users = "@Domain Admins" valid users = @Alunos, @Docentes, "@Domain Admins" vfs objects = recycle nt acl support = Yes [Docentes] comment = Users Directories path = /home/all/docentes read only = No admin users = "@Domain Admins" valid users = @Docentes, "@Domain Admins" vfs objects = recycle nt acl support = Yes [ADM] comment = adm path = /home/all/adm read only = No admin users = "@Domain Admins" valid users = @Servidores, "@Domain Admins" vfs objects = recycle nt acl support = Yes [Estagiarios] comment = Users Directories path = /home/all/estagiarios read only = No admin users = "@Domain Admins" valid users = @Estagiarios, "@Domain Admins" vfs objects = recycle nt acl support = Yes [Bolsistas] comment = Users Directories path = /home/all/bolsistas read only = No admin users = "@Domain Admins" valid users = @bolsistas, "@Domain Admins" vfs objects = recycle nt acl support = Yes [Software] comment = Software Directory path = /home/all/software read only = No admin users = "@Domain Admins" create mask = 660 vfs objects = recycle nt acl support = Yes [Sistemas] comment = Systens Directory path = /home/all/sistemas read only = No admin users = "@Domain Admins" create mask = 660 valid users = @DE, @pronatecadm, @DIRECAO, @SECRETARIA, @FINANCEIRO,@CRE, @NAAC, @RH, @cit, "@Domain Admins" vfs objects = recycle nt acl support = Yes [Setores] comment = Setores path = /home/all/setores read only = No admin users = "@Domain Admins" valid users = @APA, @NEAD, @DEXT, @PROPEL, @NEAD, @CIS, @BIBLIOTECA, @CRE, @DE, @DIRECAO, @PRELUDIO, @DPI, @ENGENHARIA, @FINANCEIRO, @INFORMATICA, @NAPNES, @RH, @SECRETARIA, @NAAC, @CIT, @CCE, @propel, @comunicacao, "@Domain Admins" create mask = 660 directory mask = 770 vfs objects = recycle nt acl support = Yes [Aulas] comment = Aulas Directory path = /home/all/aulas read only = No admin users = "@Domain Admins" valid users = @Alunos, @Docentes create mask = 660 directory mask = 770 vfs objects = recycle nt acl support = Yes [Restore] comment = Restore Directory path = /home/all/restore read only = No admin users = "@Domain Admins" create mask = 660 directory mask = 770 nt acl support = Yes [lixeira] path = /home/all/lixeira/ browseable = Yes writable = Yes public = Yes valid users = "@Domain Admins" admin users = "@Domain Admins"