Add Samba configuration.

2025-09-18 18:07:29 +00:00 · 2025-09-18 18:07:29 +00:00 · 0b6004c091
commit 0b6004c091
parent e3429657e5
4 changed files with 70 additions and 2 deletions
--- a/.gitattributesdb
+++ b/.gitattributesdb
@ -7,7 +7,7 @@ LmdpdGhvb2tzL3Bvc3QtbWVyZ2U= 1757519106 1757519106 root:root 0755 - -
 LmdpdGhvb2tzL3ByZS1jb21taXQ= 1757519106 1757519106 root:root 0755 - -
 LmdpdGlnbm9yZQ== 1758124916 1757593248 root:root 0644 - -
 LmdpdG1vZHVsZXM= 1757607701 1757607701 root:root 0644 - -
-ZXRjLy5naXRpZ25vcmU= 1758049461 1757611781 root:root 0644 - -
+ZXRjLy5naXRpZ25vcmU= 1758218823 1757611781 root:root 0644 - -
 ZXRjL2FwYWNoZTIvLmdpdGlnbm9yZQ== 1757775950 1757775932 root:root 0644 - -
 ZXRjL2FwYWNoZTIvaHR0cGQuY29uZg== 1758045891 1757785514 root:root 0644 - -
 ZXRjL2FwYWNoZTIvc2l0ZXMuZC9jb3JlLnNsYWNrd2FyZS51ay5uZXQuY29uZg== 1758045929 1757785113 root:root 0644 - -
@ -33,6 +33,7 @@ ZXRjL2hvc3RuYW1l 1757594311 1757594311 root:root 0644 - -
 ZXRjL2hvc3Rz 1757594362 1757594362 root:root 0644 - -
 ZXRjL2lwdGFibGVzL3J1bGVzLXNhdmU= 1757789154 1757789154 root:root 0600 - -
 ZXRjL2lwdGFibGVzL3J1bGVzNi1zYXZl 1757789154 1757789154 root:root 0600 - -
 ZXRjL2tyYjUuY29uZg== 1758214709 1583171707 root:root 0644 - -
 ZXRjL2xvY2FsLmQvLmdpdGlnbm9yZQ== 1757595481 1757595481 root:root 0644 - -
 ZXRjL2xvY2FsLmQvdGVycmFmb3JtLWh0dHAtYmFja2VuZC5zdGFydA== 1757595926 1757595926 root:root 0755 - -
 ZXRjL21zbXRwLmFsaWFzZXM= 1758035451 1758035451 root:root 0644 - -
@ -43,7 +44,7 @@ ZXRjL3Bhc3N3ZA== 1757873724 1757869538 root:root 0644 - -
 ZXRjL3BlcmlvZGljL2RhaWx5L2Nyb25qb2ItZGVoeWRyYXRlZA== 1757708520 1757708520 root:root 0777 - -
 ZXRjL3BlcmlvZGljL2RhaWx5L2Nyb25qb2ItdXBkYXRlLXBhY2thZ2VzLWxpc3Q= 1757708520 1757708520 root:root 0777 - -
 ZXRjL3BlcmlvZGljL2RhaWx5L2Nyb25qb2Itd2Fybi1naXQtc3RhdHVz 1757708520 1757708520 root:root 0777 - -
-ZXRjL3BrZ2xpc3Q= 1758153600 1757609913 root:root 0644 - -
+ZXRjL3BrZ2xpc3Q= 1758211839 1757609913 root:root 0644 - -
 ZXRjL3Jlc29sdi5jb25m 1757611605 1757611605 root:root 0644 - -
 ZXRjL3J1bmxldmVscy9ib290Ly5naXRpZ25vcmU= 1757769666 1757598667 root:root 0644 - -
 ZXRjL3J1bmxldmVscy9ib290L3JzeXNsb2c= 1757708520 1757708520 root:root 0777 - -
@ -59,6 +60,8 @@ ZXRjL3J1bmxldmVscy9kZWZhdWx0L3RlcnJhZm9ybS1odHRwLWJhY2tlbmQ= 1757772274 17577722
 ZXRjL3J1bmxldmVscy9zaHV0ZG93bi9pcDZ0YWJsZXM= 1757770292 1757770292 root:root 0777 - -
 ZXRjL3J1bmxldmVscy9zaHV0ZG93bi9pcHRhYmxlcw== 1757770284 1757770284 root:root 0777 - -
 ZXRjL3J1bmxldmVscy9zaHV0ZG93bi9zYW1iYQ== 1757708520 1757708520 root:root 0777 - -
 ZXRjL3NhbWJhL3NtYi5jb25m 1758215678 1758208516 root:root 0644 - -
 ZXRjL3NhbWJhL3NtYnVzZXJz 1758121825 1758121586 root:root 0644 - -
 ZXRjL3NoYWRvdy5ncGc= 1757599010 1757599010 root:root 0644 - -
 ZXRjL3NzaC8uZ2l0aWdub3Jl 1757606957 1757606957 root:root 0644 - -
 ZXRjL3NzaC9zc2hfY29uZmln 1757606630 1757606630 root:root 0644 - -
--- a/etc/krb5.conf
+++ b/etc/krb5.conf
@ -0,0 +1,24 @@
 [logging]
 # default = FILE:/var/log/krb5libs
 # kdc = FILE:/var/log/krb5kdc
 # admin_server = FILE:/var/log/kadmind
 [libdefaults]
 default_realm = SLACKWARE.UK.NET
 dns_lookup_realm = false
 dns_lookup_kdc = false
 rdns = true
 forwardable = true
 ticket_lifetime = 24h
 renew_lifetime = 7d
 [realms]
 SLACKWARE.UK.NET = {
  default_domain = slackware.uk.net
  admin_server = core.slackware.uk.net
  kdc = core.slackware.uk.net
 }
 [domain_realm]
 .slackware.uk.net = SLACKWARE.UK.NET
 core = SLACKWARE.UK.NET
--- a/etc/samba/smb.conf
+++ b/etc/samba/smb.conf
@ -0,0 +1,40 @@
 [global]
 realm = SLACKWARE.UK.NET
 netbios name = CORE
 workgroup = SLACKWAREUKNET
 server string = "slackware.uk.net Domain Controller"
 # dns forwarder = 5.101.171.216 5.101.171.217 185.176.90.169
 dns forwarder = 216.119.155.58 185.176.90.169
 allow dns updates = disabled
 tls cafile = /etc/certificates/core.slackware.uk.net_fullchain.pem
 tls certfile = /etc/certificates/core.slackware.uk.net_cert.pem
 tls keyfile = /etc/certificates/core.slackware.uk.net_key.pem
 tls verify peer = ca_and_name_if_available
 log level = 1
 logging = syslog:local5
 idmap config * : backend = tdb
 # There are only 568 IDs mapped into the container by TrueNAS, so limit the number that can be used.
 idmap config * : range = 10000-10500
 idmap_ldb:use rfc2307 = yes
 password hash userPassword schemes = CryptSHA512
 server role = active directory domain controller
 username map = /etc/samba/smbusers
 vfs objects = dfs_samba4 posixacl acl_xattr
 nfs4acl_xattr:encoding = nfs
 nfs4acl_xattr:version = 41
 nfs4acl_xattr:xattr_name = user.nfs4_acl
 nfs4acl_xattr:default acl style = windows
 acl_xattr:security_acl_name = user.NTACL
 acl_xattr:default acl style = windows
 # [homes]
 # [printers]
 [sysvol]
 path = /var/lib/samba/sysvol
 write list = @'Domain Admins@slackware.uk.net'
 [netlogon]
 path = /var/lib/samba/sysvol/slackware.uk.net/scripts
 write list = @'Domain Admins@slackware.uk.net'
--- a/etc/samba/smbusers
+++ b/etc/samba/smbusers
@ -0,0 +1 @@
 root = Administrator