Samba config
von N3Cr0N- SNIPPET_DESC:
- Samba config
- SNIPPET_CREATION_TIME:
- 05.06.2016 23:28:50
- SNIPPET_PRUNE_TIME:
- Unendlich
- SNIPPET_TEXT:
-
- # Global parameters
- [global]
- ## Server Einstellungen
- workgroup = HOME
- realm = HOME.LOCAL
- netbios name = SRV-04
- server role = active directory domain controller
- #server string = Samba Server 4.1.17-Debian
- server string = Samba Server 4.2.10-Debian
- comment = Samba Server 4.2.10-Debian
- #comment = Samba Server 4.1.17-Debian
- server services = rpc, nbt, wrepl, ldap, cldap, kdc, drepl, ntp_signd, kcc, dnsupdate, smb, winbind
- dcerpc endpoint servers = epmapper, wkssvc, rpcecho, samr, netlogon, lsarpc, spoolss, drsuapi, dssetup, unixinfo, browser, eventlog6, backupkey, dnsserver, winreg, srvsvc
- ## Domain-Einstellungen
- os level = 65
- preferred master = yes
- domain master = yes
- local master = yes
- #allow trusted domains = Yes
- ## Netzwerk Einstellungen
- #interfaces = 192.168.1.130/255.255.255.0
- #hosts allow = 192.168.1.0/24 localhost
- #hosts deny =
- #bind interfaces only = yes
- ## Time Server Einstellungen
- time server = no
- ntp signd socket directory = /var/lib/samba/ntp_signd
- ## SMB Einstellungen
- server signing = auto
- #min protocol = SMB2_10
- #max protocol = SMB3
- #client signing = auto
- #client ipc signing = auto
- #client min protocol = SMB2_10
- #client max protocol = SMB3_11
- #client ipc min protocol = SMB2_10
- ## Ab 4.3.xx SMB Protokoll 3.11
- #client ipc max protocol = SMB3_11
- smb2 max read = 8388608
- smb2 max write = 8388608
- smb2 max trans = 8388608
- smb2 max credits = 8192
- #smb2 leases = yes
- ## TLS
- #tls priority = NORMAL:-VERS-SSL3.0
- #tls verify peer = as_strict_as_possible
- #tls enabled = yes
- #tls keyfile = /etc/samba/tls/myKey.pem
- #tls certfile = /etc/samba/tls/myCert.pem
- #tls cafile =
- ## Performance Einstellungen
- socket options = TCP_NODELAY
- ##SO_RCVBUF=8192 SO_SNDBUF=8192
- ##write cache size = 262144
- ## Script Einstellungen
- ##add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u
- add user script = /usr/sbin/useradd -m %u
- delete user script = /usr/sbin/userdel -r %u
- add group script = /usr/sbin/groupadd %g
- delete group script = /usr/sbin/groupdel %g
- add user to group script = /usr/sbin/usermod -G %g %u
- add machine script = /usr/sbin/useradd -s /bin/false -d /dev/null -g computers %u
- ## Servergespeicherte Profil Einstellungen
- hide files = /desktop.ini/ntuser.ini/NTUSER.*/Thumbs.db/
- logon script = logon.cmd
- logon path = \\srv-04\mnt\ntfs_hdd1\profile\%u
- domain logons = yes
- logon drive = H:
- logon home = \\srv-04\mnt\ntfs_hdd1\home\%u
- ## Template Einstellungen
- template shell = /bin/bash
- template homedir = /mnt/ntfs_hdd1/home/%u
- ## Sicherheits und Passwort-Einstellungen
- security = user
- passdb backend = tdbsam
- obey pam restrictions = yes
- pam password change = yes
- passwd program = /usr/bin/passwd %u
- passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
- unix password sync = yes
- encrypt passwords = true
- #smb passwd file = /etc/smbpasswd
- #LanManager-Authentifizierung
- #lanman auth = yes
- #
- # NTLM Version 2 - Authentifizierung
- #client ntlmv2 auth = yes
- ## Winbind Einstellungen
- winbind use default domain = Yes
- winbind enum groups = yes
- winbind enum users = yes
- winbind cache time = 10
- winbind refresh tickets = yes
- #winbind sealed pipes = true
- #require strong key = false
- #winbindd:use external pipes = false
- #winbind separator = +
- #winbind reconnect delay = 30
- #winbind request timeout = 60
- #winbind max clients = 2000
- #winbind trusted domains only = Yes
- #winbind nested groups = Yes
- #winbind expand groups = 10
- #winbind nss info = rfc2307
- #winbind offline logon = No
- #winbind normalize names = No
- #winbind rpc only = No
- ## Idmap Einstellungen
- idmap_ldb:use rfc2307 = yes
- idmap config * : range = 1000000 - 1999999
- idmap config HOME : backend = rid
- idmap config HOME : range = 1000000 - 1999999
- ## LDAP
- #passdb backend = ldapsam:ldap://ldap.home.local
- #username map = /etc/samba/smbusers
- #ldap suffix = dc=home,dc=local
- #ldap machine suffix = ou=People
- #ldap user suffix = ou=People
- #ldap group suffix = ou=Group
- #ldap idmap suffix = ou=People
- #ldap admin dn = cn=Manager
- #ldap ssl = no
- #ldap passwd sync = yes
- ## AB 4.2.xx
- #ldap server require strong auth = no
- #client ldap sasl wrapping = plain
- ## WINS / DNS Einstellungen
- wins support = no
- wins server = 192.168.1.130
- name resolve order = lmhosts host wins bcast
- #dns proxy = no
- dns update command = /usr/sbin/samba_dnsupdate
- nsupdate command = /usr/bin/nsupdate -g
- spn update command = /usr/sbin/samba_spnupdate
- dns forwarder = 192.168.1.100
- #multicast dns register = Yes
- ## Charset Einstellungen
- unix charset = UTF-8
- dos charset = cp850
- ## DFS
- #host msdfs = yes
- ## Misc
- #follow symlinks = yes
- #wide links = yes
- #unix extensions = yes
- ## ACL Einstellungen
- store dos attributes = Yes
- vfs objects = recycle acl acl_xattr dfs_samba4
- profile acls = Yes
- #map acl inherit = Yes
- #nt acl support = Yes
- #acl group control = yes
- #acl map full control = Yes
- #acl allow execute always = No
- ## Log Einstellungen
- log level = 5
- #log file = /var/log/samba/log.%m
- #syslog = 0
- #syslog only = no
- panic action = /usr/share/samba/panic-action %d
- ###======================= Share Definitions =======================###
- [netlogon]
- comment = Netlogon Directory
- path = /mnt/ntfs_hdd1/netlogon/home.local/scripts
- read only = yes
- browseable = no
- guest ok = no
- write list = root
- [sysvol]
- comment = Sysvol Directory
- path = /mnt/ntfs_hdd1/sysvol
- read only = yes
- browseable = no
- guest ok = no
- write list = root
- [profile]
- comment = Roaiming Profile Directory
- path = /mnt/ntfs_hdd1/profile
- read only = no
- writeable = yes
- guest ok = no
- profile acls = Yes
- create mask = 0777
- directory mask = 0777
- force create mode = 2777
- force directory mode = 2777
- [home]
- comment = Home Directory
- path = /mnt/ntfs_hdd1/home
- read only = no
- browseable = yes
- writeable = yes
- guest ok = no
- create mask = 0777
- directory mask = 0777
- force create mode = 2777
- force directory mode = 2777
- #[share_1]
- #comment = Share_1 Directory
- #path = /mnt/ntfs_hdd1/share_1
- #read only = no
- #browseable = yes
- #writeable = yes
- #guest ok = no
- #create mask = 0777
- #directory mask = 0777
- #force create mode = 2777
- #force directory mode = 2777
- #[share_2]
- #comment = Share_2 Directory
- #path = /mnt/ntfs_hdd2/share_2
- #read only = no
- #browseable = yes
- #writeable = yes
- #guest ok = no
- #create mask = 0777
- #directory mask = 0777
- #force create mode = 2777
- #force directory mode = 2777
- ###======================= Printer Definitions =======================###
- # This is an example printers
- # share, which works for Linux.
- #[printers]
- #printable = yes
- #printing = BSD
- #print command = /usr/bin/lpr -P%p %s
- #path = /var/tmp
- #min print space = 2000
- #[printers]
- #comment = All Printers
- #path = /tmp
- #browseable = no
- #printable = yes
- #public = no
- #writable = no
- #create mode = 0700
Quellcode
Hier kannst du den Code kopieren und ihn in deinen bevorzugten Editor einfügen. PASTEBIN_DOWNLOAD_SNIPPET_EXPLAIN