[global]
        name resolve order = wins hosts lmhosts bcast
        ldap ssl = off
        #idmap gid = 5000-50000
        write list = @Print,@Operators
 add machine script = /usr/local/sbin/smbldap-useradd -W "%u"
        delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u" "%g"
        #ldapsam:trusted = yes
        ldap passwd sync = yes
        logon script = logon.cmd
        #idmap uid = 5000-50000
        dos charset = 850
        local master = yes
        workgroup = SYSOCO
        os level = 255
        auto services = global
        ldap admin dn = cn=admin,dc=sysoco,dc=fr
        printcap name = cups
        security = user
        add machine script = /usr/local/sbin/smbldap-useradd -w "%u"
#       max log size = 1000
        log file = /var/log/samba.log
        ldap user suffix = ou=Users
        add group script = /usr/local/sbin/smbldap-groupadd -p "%g"
        add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g"
        domain master = Yes
        encrypt passwords = true
        #idmap backend = ldap:"ldap://localhost"
#idmap domains = SYSOCO
idmap config SYSOCO: backend = ldap
idmap config SYSOCO: ldap_url = ldap://localhost
idmap config SYSOCO: ldap_anon = yes
idmap config SYSOCO: ldap_base_dn = ou=idmap,dc=sysoco,dc=fr
idmap alloc config: range = 1000-10000

        public = yes
        passdb backend = ldapsam:"ldap://localhost"
        wins support = yes
        server string = SERVEUR DE FICHIERS
        ldap machine suffix = ou=Computers
        ldap group suffix = ou=Groups
        ldap suffix = dc=sysoco,dc=fr
        logon path =
        add user script = /usr/local/sbin/smbldap-useradd -m "%u"
        set primary group script = /usr/local/sbin/smbldap-usermod -g "%g" "%u"
        ldap idmap suffix = ou=Idmap
        preferred master = yes
        domain logons = Yes
        acl allow execute always = True
        #passdb backend = smbpasswd
        #printer admin = @lpadmin
  #delete user script = /usr/local/sbin/smbldap-userdel "%u"
  #delete group script = /usr/local/sbin/smbldap-groupdel "%g"
#debug level = 3
use client driver = no
        #améliore les transferts de fichiers
        use sendfile = yes
        aio read size = 16384
        aio write size = 16384
vfs objects = full_audit recycle
full_audit:priority = notice
full_audit:facility = local5
full_audit:success = mkdir rmdir rename unlink write open
full_audit:failure = connect
full_audit:prefix = %u|%I|%S
#log level = 3 passdb:5 auth:5 winbind:2
log level = 2 passdb:5 auth:5

#vfs objects =  recycle
      recycle:keeptree = yes
      recycle:versions = yes
      recycle:touch = yes
      recycle:exclude = ?~$*,~$*,*.tmp,index*.pl,index*.htm*,*.temp,*.TMP
      recycle:exclude_dir=  /tmp,/temp,/cache
      recycle:repository = .recycle/.recycle.%u
      recycle:noversions = *.doc,*.xls,*.ppt
      recycle:maxsize = 524288000
      #hide files = /.recycle.*/.recycle/
      #veto files = /.recycle.*/.recycle/
#      Server max protocol = NT1

[homes]
        valid users = %S
        read only = No
        browseable = No

[public]
        create mask = 0775
        directory mask = 0777
        writeable = yes
        valid users = @USER,@"Domain Admins",@"Domain Users",@root
        path = /var/srv_data/public

[commercial]
        path = /var/srv_data/com
        valid users = @COMM
        read only = No
        create mask = 0770
        directory mask = 0770

[compta]
        path = /var/srv_data/compta
        valid users = @COMPTA
        read only = No
        create mask = 0770
        directory mask = 0770

[ctd]
        path = /var/srv_data/ctd
        valid users = @CTD
        read only = No
        create mask = 0770
        directory mask = 0770

[dg]
        path = /var/srv_data/dg
        valid users = @DG
        read only = No
        create mask = 0770
        directory mask = 0770

[drh]
        path = /var/srv_data/drh
        valid users = @DRH,admin,@"Domain Admins",@root,@DG
        read only = No
        create mask = 0770
        directory mask = 0770

[kdp]
        path = /var/srv_data/kdp
        valid users = @KDP
        read only = No
        create mask = 0770
        directory mask = 0770
        browseable = No

[technique]
        create mask = 0770
        directory mask = 0770
        valid users = @TECH,@"Domain Admins"
        writeable = yes
        path = /var/srv_data/tech

[logi]
        path = /var/srv_data/logi
        valid users = @LOGI
        read only = No
        create mask = 0770
        directory mask = 0770

[printers]
        comment = All Printers
        path = /var/spool/samba
        printable = Yes
        browseable = No

[print$]
        comment = Printer Drivers
        path = /var/lib/samba/printers
        write list = root, FGL,@"Print Operators"
        inherit permissions = Yes
[netlogon]
        path = /var/netlogon
        read only = yes
        guest ok = Yes
[scan]
        path = /var/srv_data/scan
        guest ok = Yes
        create mask = 0770
        directory mask = 0770
        read only = No
[stats]
        path = /var/srv_data/stats
        create mask = 0770
        directory mask = 0770
        read only = No