Selveste1

Samba4 config

Oct 31st, 2014
58
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. # cat /etc/samba/smb.conf
  2. # Global parameters
  3. [global]
  4.         dns proxy = no
  5.         wins support = yes
  6.         server role = active directory domain controller
  7.         workgroup = YGGDRASIL
  8.         realm = YGGDRASIL.BITTOO.NET
  9.         netbios name = JOTUNHEIM
  10.         server string = Debian PDC - Samba %v
  11.         passdb backend = samba4
  12.         dcerpc endpoint servers = epmapper, wkssvc, rpcecho, samr, netlogon, lsarpc, spoolss, drsuapi, dssetup, unixinfo, browser, eventlog6, backupkey, dnsserver, winreg, srvsvc
  13.         server services = rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbind, ntp_signd, kcc, dnsupdate, smb
  14.         name resolve order = host wins bcast lmhost
  15.         kerberos method = system keytab
  16.  
  17.         # IDMAP's
  18.         idmap_ldb:use rfc2307 = yes
  19.         idmap config *:backend = tdb
  20.         idmap config *:range = 70001-80000
  21.         idmap config YGGDRASIL:backend = ad
  22.         idmap config YGGDRASIL:schema_mode = rfc2307
  23.         idmap config YGGDRASIL:range = 10000-20000
  24.  
  25.         # Netwok-settings
  26.         ####################################################
  27.         # hosts deny = ALL
  28.         # hosts allow = 192.168.116.0/23 127.
  29.         hosts allow = ALL
  30.         bind interfaces only = yes
  31.         interfaces = lo pbr0
  32.         socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 SO_KEEPALIVE
  33.  
  34.         # Various other directives ( man smb.conf )
  35.         ###################################################
  36.         time server = Yes
  37.         domain master = Yes
  38.         domain logons = Yes
  39.         preferred master = Yes
  40.  
  41.         # Windbind
  42.         ##################################################
  43.         winbind separator = %
  44.         template shell = /bin/bash
  45.         template homedir = /home/%ACCOUNTNAME%
  46.         #winbind nss info = rfc2307
  47.  
  48.         # Authentication
  49.         ####################################################
  50.         local master = yes
  51.  
  52.         security = user
  53.         null passwords = no
  54.         encrypt passwords = yes
  55.         obey pam restrictions = no
  56.  
  57.         # Removed for windows clients roaming pofile
  58.         # invalid users = root
  59.  
  60.         # For unix passwd change - dosen't matter if running LDAP for UNIX auth
  61.         # passwd program = /usr/bin/passwd %u
  62.         # passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
  63.         # passwd program = /usr/bin/samba-tool user password %u
  64.         passwd chat = *New*password* %n\n *ReType*new*password* %n\n*passwd:*all*authentication*tokens*updated*successfully*
  65.  
  66.  
  67. [netlogon]
  68.         path = /var/lib/samba/sysvol/yggdrasil.bittoo.net/scripts
  69.         read only = No
  70.  
  71. [sysvol]
  72.         path = /var/lib/samba/sysvol
  73.         read only = No
RAW Paste Data