Environment
Novell Open Enterprise Server 11 SP1 (OES11SP1)
Domain Services for Window
DSFW
Domain Services for Window
DSFW
Situation
Sample OES11SP1 default smb.conf files for a domain with the name of dsfw.lan and NetBIOS name of DSFWDOMAIN
Resolution
# Samba configuration file for Domain Services for Windows - Primary Domain Controller
[global]
unix extensions = no
workgroup = DSFWDOMAIN
printing = cups
printcap name = cups
printcap cache time = 0
cups options = raw
map to guest = Never
include = /etc/samba/dhcp.conf
logon path = \\%L\profiles\.msprofile
logon home = \\%L\%U\.9xprofile
logon drive = P:
usershare allow guests = Yes
netbios name = DSFW1
realm = dsfw.lan
auth methods = guest winbind
server string = Novell Open Enterprise Server
security = ads
encrypt passwords = Yes
socket options = TCP_NODELAY
local master = Yes
os level = 64
domain master = Yes
preferred master = Yes
domain logons = Yes
idmap config : backend = ad
idmap config : range = 1 - 4294967295
idmap uid = 1-4294967295
idmap gid = 1-4294967295
pid directory = /var/run/samba
kerberos method = system keytab
winbind use default domain = Yes
winbind nss info = rfc2307
dce funnel directory = /var/opt/novell/xad/rpc
load printers = No
template shell = /bin/bash
server signing = auto
np : proxy = samr lsarpc netlogon
external_rpc_pipe : socket_dir = /var/opt/novell/xad/rpc/PIPE
send spnego principal = Yes
client use spnego principal = Yes
cifs instanceless spn = Yes
dce_funnel_winbind : socket = /var/opt/novell/xad/rpc/xadsd
[netlogon]
comment = Network Logon Service
path = /var/opt/novell/xad/sysvol/sysvol/dsfw.lan/scripts
writable = No
share modes = No
nt acl support = Yes
[sysvol]
wide links = yes
comment = Group Policies
path = /var/opt/novell/xad/sysvol/sysvol
writable = Yes
share modes = No
nt acl support = No
directory mask = 0750
[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = No
read only = No
inherit acls = Yes
nt acl support = No
[profiles]
comment = Network Profiles Service
path = %H
read only = No
store dos attributes = Yes
create mask = 0600
directory mask = 0700
nt acl support = No
# Samba configuration file for Domain Services for Windows - Additional Domain Controllers
[global]
unix extensions = no
workgroup = DSFWDOMAIN
printing = cups
printcap name = cups
printcap cache time = 0
cups options = raw
map to guest = Never
include = /etc/samba/dhcp.conf
logon path = \\%L\profiles\.msprofile
logon home = \\%L\%U\.9xprofile
logon drive = P:
usershare allow guests = Yes
netbios name = DSFW2
realm = dsfw.lan
auth methods = guest winbind
server string = Novell Open Enterprise Server
security = ads
encrypt passwords = Yes
socket options = TCP_NODELAY
local master = Yes
os level = 64
domain master = Yes
preferred master = Yes
domain logons = Yes
idmap config : backend = ad
idmap config : range = 1 - 4294967295
idmap uid = 1-4294967295
idmap gid = 1-4294967295
pid directory = /var/run/samba
kerberos method = system keytab
winbind use default domain = Yes
winbind nss info = rfc2307
dce funnel directory = /var/opt/novell/xad/rpc
load printers = No
template shell = /bin/bash
server signing = auto
np : proxy = samr lsarpc netlogon
external_rpc_pipe : socket_dir = /var/opt/novell/xad/rpc/PIPE
send spnego principal = Yes
client use spnego principal = Yes
cifs instanceless spn = Yes
dce_funnel_winbind : socket = /var/opt/novell/xad/rpc/xadsd
[netlogon] 1,1 Top
comment = Network Logon Service
path = /var/opt/novell/xad/sysvol/sysvol/dsfw.lan/scripts
writable = No
share modes = No
nt acl support = Yes
[sysvol-msdfs]
wide links = yes
comment = Group Policies
path = /var/opt/novell/xad/sysvol/sysvol
writable = No
share modes = No
nt acl support = No
directory mask = 0750
[sysvol]
wide links = yes
comment = msdfs link to Group Policies
path = /var/opt/novell/xad/msdfs
msdfs root = Yes
nt acl support = No
directory mask = 0750
[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = No
read only = No
inherit acls = Yes
nt acl support = No
[profiles]
comment = Network Profiles Service
path = %H
read only = No
store dos attributes = Yes
create mask = 0600
directory mask = 0700
nt acl support = No