[global]
coding system = EUC
client code page = 932
netbios name = root-svr001
workgroup = DBMTEST
server string = %L: Samba %v on %h
security = USER
encrypt passwords = Yes
update encrypted = Yes
unix password sync = Yes
passwd program = /usr/sbin/smbldap-passwd.pl %u
passwd chat = *New* %n\n *Retype* %n\n *success*
log file = /var/log/samba/log.%m
log level = 3
max log size = 50
deadtime = 15
read size = 65536
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
add user script = /usr/sbin/smbldap-useradd.pl -m -a %u
domain logons = Yes
os level = 65
domain master = Yes
domain admin group = admin
preferred master = True
dns proxy = No
wins support = Yes
dos filetimes = Yes
dos filetime resolution = Yes

logon drive = z:
logon home = /home/%u
#logon path = /home/%U

#LDAP に関する必要項目
ldap server = localhost
ldap port = 389
ldap suffix = "dc=hri,dc=com"
ldap admin dn = "uid=admin,dc=hri,dc=com"
ldap filter="(&(uid=%u)(objectClass=sambaAccount))"
ldap ssl = no


[homes]
comment = %u's Home Directory
writeable = Yes
browseable = No

#[profiles]
#comment = User profiles
#path = /var/samba/profiles
#create mode = 0600
#directory mode = 0700
#writeable = yes
#browseable = yes
### next line is a great way to secure the profiles
#force user = %U
## next line allows administrator to access all profiles
#valid users = %U administrator

[netlogon]
comment = The domain logon service
# there is nothing in /usr/local/netlogon right now,
# just an empty directory.
path = /var/samba/netlogon
writeable = no
locking = no


#[NETLOGON]
#comment = Script for Domain Logon
#path = /home/%U
#admin users = administrator
#write list = administrator
#guest ok = Yes

[profiles]
path=/home/%U/profiles
writeable = yes
browseable = yes
create mode = 0600
directory mode = 0700
force user = %U
valid users = %U admin