[Samba] DNS Log level
Rowland Penny
rpenny at samba.org
Wed Jul 26 07:54:36 UTC 2017
Others have commented on the log level, so I will just comment on your
DCs smb.conf, see inline comments:
On Tue, 25 Jul 2017 19:59:23 -0500
John Schmerold <schmerold2 at gmail.com> wrote:
> smb.conf:
>
> [global]
> netbios name = FS105
> realm = STLUCASUCC.LAN
> workgroup = STLUCASUCC
> netbios aliases = fs1
'netbios alias' on a DC isn't a good idea.
> interfaces = 192.168.0.10/24 <http://192.168.0.10/24>
Why do you need the 'interfaces' line ?
> dns forwarder = 8.8.8.8
> server role = active directory domain controller
> idmap_ldb:use rfc2307 = yes
> template shell = /bin/bash
> template homedir = /home/%U
> log file = /var/log/samba/log.%m
> log level = 0 passdb:2 auth:2 winbind:2 locking:2
> max log size = 30
> cups options = raw
> load printers = no
> printing = bsd
> printcap name = /dev/null
> disable spoolss = yes
You should remove the next three lines, they shouldn't be in a DCs
smb.conf
> local master = yes
> os level = 250
> name resolve order = bcast lmhosts host wins
>
> [netlogon]
> path
> = /usr/local/samba/var/locks/sysvol/stlucasucc.lan/scripts read only
> = No
>
> [sysvol]
> path = /usr/local/samba/var/locks/sysvol
> read only = No
> [vol1]
> valid users = @staff
> writeable = yes
> path = /home/smb/vol1
> read only = no
> inherit permissions = yes
> create mask = 0777
> directory mask = 777
> Force group = staff
> create mode = 0664
There is a BIG problem setting the [vol1] share like you have done, it
doesn't work on a DC, you will have to set the permissions from
windows, see here:
https://wiki.samba.org/index.php/Setting_up_a_Share_Using_Windows_ACLs
>
> [homes]
> path = /home/%U
> read only = no
> root preexec = bash -c '[[ -d /home/%U ]] || mkdir -p -m
> 0700 /home/%U && chown %U:users /home/%U'
>
Again, using the [homes] share on a DC doesn't work, see here:
https://wiki.samba.org/index.php/User_Home_Folders
Rowland
More information about the samba
mailing list