diff --git a/.gitattributesdb b/.gitattributesdb
index 8465414..9f26747 100644
--- a/.gitattributesdb
+++ b/.gitattributesdb
@@ -7,7 +7,7 @@ LmdpdGhvb2tzL3Bvc3QtbWVyZ2U= 1757519106 1757519106 root:root 0755 - -
 LmdpdGhvb2tzL3ByZS1jb21taXQ= 1757519106 1757519106 root:root 0755 - -
 LmdpdGlnbm9yZQ== 1758124916 1757593248 root:root 0644 - -
 LmdpdG1vZHVsZXM= 1757607701 1757607701 root:root 0644 - -
-ZXRjLy5naXRpZ25vcmU= 1758049461 1757611781 root:root 0644 - -
+ZXRjLy5naXRpZ25vcmU= 1758218823 1757611781 root:root 0644 - -
 ZXRjL2FwYWNoZTIvLmdpdGlnbm9yZQ== 1757775950 1757775932 root:root 0644 - -
 ZXRjL2FwYWNoZTIvaHR0cGQuY29uZg== 1758045891 1757785514 root:root 0644 - -
 ZXRjL2FwYWNoZTIvc2l0ZXMuZC9jb3JlLnNsYWNrd2FyZS51ay5uZXQuY29uZg== 1758045929 1757785113 root:root 0644 - -
@@ -33,6 +33,7 @@ ZXRjL2hvc3RuYW1l 1757594311 1757594311 root:root 0644 - -
 ZXRjL2hvc3Rz 1757594362 1757594362 root:root 0644 - -
 ZXRjL2lwdGFibGVzL3J1bGVzLXNhdmU= 1757789154 1757789154 root:root 0600 - -
 ZXRjL2lwdGFibGVzL3J1bGVzNi1zYXZl 1757789154 1757789154 root:root 0600 - -
+ZXRjL2tyYjUuY29uZg== 1758214709 1583171707 root:root 0644 - -
 ZXRjL2xvY2FsLmQvLmdpdGlnbm9yZQ== 1757595481 1757595481 root:root 0644 - -
 ZXRjL2xvY2FsLmQvdGVycmFmb3JtLWh0dHAtYmFja2VuZC5zdGFydA== 1757595926 1757595926 root:root 0755 - -
 ZXRjL21zbXRwLmFsaWFzZXM= 1758035451 1758035451 root:root 0644 - -
@@ -43,7 +44,7 @@ ZXRjL3Bhc3N3ZA== 1757873724 1757869538 root:root 0644 - -
 ZXRjL3BlcmlvZGljL2RhaWx5L2Nyb25qb2ItZGVoeWRyYXRlZA== 1757708520 1757708520 root:root 0777 - -
 ZXRjL3BlcmlvZGljL2RhaWx5L2Nyb25qb2ItdXBkYXRlLXBhY2thZ2VzLWxpc3Q= 1757708520 1757708520 root:root 0777 - -
 ZXRjL3BlcmlvZGljL2RhaWx5L2Nyb25qb2Itd2Fybi1naXQtc3RhdHVz 1757708520 1757708520 root:root 0777 - -
-ZXRjL3BrZ2xpc3Q= 1758153600 1757609913 root:root 0644 - -
+ZXRjL3BrZ2xpc3Q= 1758211839 1757609913 root:root 0644 - -
 ZXRjL3Jlc29sdi5jb25m 1757611605 1757611605 root:root 0644 - -
 ZXRjL3J1bmxldmVscy9ib290Ly5naXRpZ25vcmU= 1757769666 1757598667 root:root 0644 - -
 ZXRjL3J1bmxldmVscy9ib290L3JzeXNsb2c= 1757708520 1757708520 root:root 0777 - -
@@ -59,6 +60,8 @@ ZXRjL3J1bmxldmVscy9kZWZhdWx0L3RlcnJhZm9ybS1odHRwLWJhY2tlbmQ= 1757772274 17577722
 ZXRjL3J1bmxldmVscy9zaHV0ZG93bi9pcDZ0YWJsZXM= 1757770292 1757770292 root:root 0777 - -
 ZXRjL3J1bmxldmVscy9zaHV0ZG93bi9pcHRhYmxlcw== 1757770284 1757770284 root:root 0777 - -
 ZXRjL3J1bmxldmVscy9zaHV0ZG93bi9zYW1iYQ== 1757708520 1757708520 root:root 0777 - -
+ZXRjL3NhbWJhL3NtYi5jb25m 1758215678 1758208516 root:root 0644 - -
+ZXRjL3NhbWJhL3NtYnVzZXJz 1758121825 1758121586 root:root 0644 - -
 ZXRjL3NoYWRvdy5ncGc= 1757599010 1757599010 root:root 0644 - -
 ZXRjL3NzaC8uZ2l0aWdub3Jl 1757606957 1757606957 root:root 0644 - -
 ZXRjL3NzaC9zc2hfY29uZmln 1757606630 1757606630 root:root 0644 - -
diff --git a/etc/krb5.conf b/etc/krb5.conf
new file mode 100644
index 0000000..ec9c27c
--- /dev/null
+++ b/etc/krb5.conf
@@ -0,0 +1,24 @@
+[logging]
+# default = FILE:/var/log/krb5libs
+# kdc = FILE:/var/log/krb5kdc
+# admin_server = FILE:/var/log/kadmind
+
+[libdefaults]
+default_realm = SLACKWARE.UK.NET
+dns_lookup_realm = false
+dns_lookup_kdc = false
+rdns = true
+forwardable = true
+ticket_lifetime = 24h
+renew_lifetime = 7d
+
+[realms]
+SLACKWARE.UK.NET = {
+  default_domain = slackware.uk.net
+  admin_server = core.slackware.uk.net
+  kdc = core.slackware.uk.net
+}
+
+[domain_realm]
+.slackware.uk.net = SLACKWARE.UK.NET
+core = SLACKWARE.UK.NET
diff --git a/etc/samba/smb.conf b/etc/samba/smb.conf
new file mode 100644
index 0000000..4060f8a
--- /dev/null
+++ b/etc/samba/smb.conf
@@ -0,0 +1,40 @@
+[global]
+realm = SLACKWARE.UK.NET
+netbios name = CORE
+workgroup = SLACKWAREUKNET
+server string = "slackware.uk.net Domain Controller"
+# dns forwarder = 5.101.171.216 5.101.171.217 185.176.90.169
+dns forwarder = 216.119.155.58 185.176.90.169
+allow dns updates = disabled
+tls cafile = /etc/certificates/core.slackware.uk.net_fullchain.pem
+tls certfile = /etc/certificates/core.slackware.uk.net_cert.pem
+tls keyfile = /etc/certificates/core.slackware.uk.net_key.pem
+tls verify peer = ca_and_name_if_available
+log level = 1
+logging = syslog:local5
+idmap config * : backend = tdb
+# There are only 568 IDs mapped into the container by TrueNAS, so limit the number that can be used.
+idmap config * : range = 10000-10500
+idmap_ldb:use rfc2307 = yes
+password hash userPassword schemes = CryptSHA512
+server role = active directory domain controller
+username map = /etc/samba/smbusers
+vfs objects = dfs_samba4 posixacl acl_xattr
+nfs4acl_xattr:encoding = nfs
+nfs4acl_xattr:version = 41
+nfs4acl_xattr:xattr_name = user.nfs4_acl
+nfs4acl_xattr:default acl style = windows
+acl_xattr:security_acl_name = user.NTACL
+acl_xattr:default acl style = windows
+
+# [homes]
+
+# [printers]
+
+[sysvol]
+path = /var/lib/samba/sysvol
+write list = @'Domain Admins@slackware.uk.net'
+
+[netlogon]
+path = /var/lib/samba/sysvol/slackware.uk.net/scripts
+write list = @'Domain Admins@slackware.uk.net'
diff --git a/etc/samba/smbusers b/etc/samba/smbusers
new file mode 100644
index 0000000..6f2443b
--- /dev/null
+++ b/etc/samba/smbusers
@@ -0,0 +1 @@
+root = Administrator