[global]

   workgroup = CALCOM-TJ
   netbios name = PDC-SRV
   server string = Samba Server on %L

   passdb backend = tdbsam
   encrypt passwords = Yes

#   min passwd length = 3

   obey pam restrictions = No

   username map = /etc/samba/smbusers

   password level = 6
   username level = 6

   map to guest = Bad User

#============================ Loggin Configs ==============================

   hosts allow = 10.0.0. 127.
   hosts deny = 0.0.0.0
   interfaces = eth0 lo
   bind interfaces only = Yes

   smb ports = 139 445
   remote announce = 10.0.0.255

   socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

   name resolve order = wins hosts lmhosts bcast
   wins support = yes

   time server = Yes

#============================ Loggin Configs ==============================

   log level = 1
   syslog = 0
   log file = /var/log/samba/%m.log
   max log size = 50

   utmp = Yes

#============================ PDC Configs ==============================

   security = user

   local master = Yes
   os level = 33
   domain master = Yes 
   preferred master = Yes
   domain logons = Yes

   idmap uid = 10000-20000
   idmap gid = 10000-20000

   logon script = startup.bat
   logon drive = H:
   logon home =
   logon path =

#### User Options ###########
   add user script = /usr/sbin/useradd -m %u
   delete user script = /usr/sbin/userdel -r %u
   add group script = /usr/sbin/groupadd %g
   delete group script = /usr/sbin/groupdel %g
   add user to group script = /usr/sbin/usermod -G %g %u
   add machine script = /usr/sbin/useradd -g 100 -c "Machine Account" \
-s /bin/false -d /dev/null %u
   delete user from group script = /usr/sbin/deluser %u %g

   #
   # Enconding Options
   #

   Dos charset = 850
   Unix charset = ISO8859-1
   display charset = ISO8859-1

   hide dot files = Yes
   
   #
   # to maintain capital letters in shortcuts in any of the profile folders:
   #

   preserve case = yes
   short preserve case = yes
   case sensitive = no

#============================ Share Definitions ==============================
[IPC$]
   path = /tmp
   hosts allow = 10.0.0.0/24, 127.0.0.1
   hosts deny = 0.0.0.0/0

[homes]
   comment = Home Directories
   valid users = %S
   read only = No
   create mask = 0664
   directory mask = 0775
   browseable = No

# Un-comment the following and create the netlogon directory for Domain Logons
[netlogon]
   comment = Network Logon Service
   path = /home/samba/netlogon
   browseable = No
   read only = yes
#   valid users = @users
###   write list = @administrators, @domain_admins
#   guest ok = Yes
#   locking = No

# Un-comment the following to provide a specific roving profile share
# the default is to use the user's home directory
[Profiles]
   path = /home/samba/profiles
   read only = No
   create mask = 0600
   directory mask = 0700
   browseable = No
   guest ok = Yes
   profile acls = Yes
   csc policy = disable
   # next line is a great way to secure the profiles
   force user = %U
   # next line allows administrator to access all profiles
   valid users = %U @"Domain Admins"

[docs]
   comment = Public Docs
   path = /usr/doc
   public = Yes
   writable = No
   printable = no

[Multivision]
   comment = Multivision Folder
   path = /mvision
   available = Yes
   browseable = Yes
   public = No
   guest only = No
   read only = No
   writable = Yes
#   only user = No
   write list = mvadmin @multivision
   force group = multivision
   force create mode = 0664
   force directory mode = 0775