mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-24 16:10:02 -06:00
d6ccb9b5b3
The default for this setting is 'auto', which may affect IPA Samba configuration on future Samba versions. By explicitly setting this parameter in the template, future manual intervention is prevented. Fixes: https://pagure.io/freeipa/issue/8452 Signed-off-by: Antonio Torres <antorres@redhat.com> Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
37 lines
1.0 KiB
Plaintext
37 lines
1.0 KiB
Plaintext
[global]
|
|
workgroup = $NETBIOS_NAME
|
|
netbios name = $HOST_NETBIOS_NAME
|
|
realm = $REALM
|
|
kerberos method = dedicated keytab
|
|
dedicated keytab file = /etc/samba/samba.keytab
|
|
create krb5 conf = no
|
|
server role = CLASSIC PRIMARY DOMAIN CONTROLLER
|
|
security = user
|
|
domain master = yes
|
|
domain logons = yes
|
|
log level = 1
|
|
max log size = 100000
|
|
log file = /var/log/samba/log.%m
|
|
passdb backend = ipasam:ldapi://$LDAPI_SOCKET
|
|
disable spoolss = yes
|
|
ldapsam:trusted=yes
|
|
ldap ssl = off
|
|
ldap suffix = $SUFFIX
|
|
ldap user suffix = cn=users,cn=accounts
|
|
ldap group suffix = cn=groups,cn=accounts
|
|
ldap machine suffix = cn=computers,cn=accounts
|
|
rpc_server:epmapper = external
|
|
rpc_server:lsarpc = external
|
|
rpc_server:lsass = external
|
|
rpc_server:lsasd = external
|
|
rpc_server:samr = external
|
|
rpc_server:netlogon = external
|
|
rpc_server:tcpip = yes
|
|
rpc_daemon:epmd = fork
|
|
rpc_daemon:lsasd = fork
|
|
idmap config * : backend = tdb
|
|
idmap config * : range = 0 - 0
|
|
idmap config $NETBIOS_NAME : backend = sss
|
|
idmap config $NETBIOS_NAME : range = $IPA_LOCAL_RANGE
|
|
max smbd processes = 1000
|