Add homes directory to install-fileserver-as-dc-member.sh

2024-01-27 12:40:42 +01:00 · 2024-01-27 12:40:42 +01:00 · 403610a643
commit 403610a643
parent 5f89c625e3
1 changed files with 36 additions and 28 deletions
--- a/BashScripts/install-fileserver-as-dc-member.sh
+++ b/BashScripts/install-fileserver-as-dc-member.sh
@ -110,37 +110,45 @@ EOL

 sudo tee /etc/samba/smb.conf > /dev/null <<EOL
 [global]
-   workgroup = ${WORKGROUP^^}
-   realm = ${DCREALM,,}
-   security = ads
-   encrypt passwords = yes
-   idmap config * : backend = tdb
-   idmap config * : range = 3000-7999
-   idmap config ${DCREALM,,} : backend = rid
-   idmap config ${DCREALM,,} : range = 10000-999999
-   template homedir = /home/%U
-   template shell = /bin/bash
-   winbind use default domain = true
-   winbind offline logon = false
+	workgroup = ${WORKGROUP^^}
+	realm = ${DCREALM,,}
+	security = ads
+	encrypt passwords = yes
+	idmap config * : backend = tdb
+	idmap config * : range = 3000-7999
+	idmap config ${DCREALM,,} : backend = rid
+	idmap config ${DCREALM,,} : range = 10000-999999
+	template homedir = /home/%U
+	template shell = /bin/bash
+	winbind use default domain = true
+	winbind offline logon = false

 [data]
-        comment = Samba File Server Share
-        path = /var/fileshare/data
-        browsable = yes
-        guest ok = yes
-        read only = no
-        create mask = 777
-        force create mode = 777
-        directory mask = 777
-        force directory mode = 777
-        valid users = "@${WORKGROUP^^}\domain users"
-        # force user = root
-        # force group = root
-        writeable = yes
-        # admin users = root
-        oplocks = yes
-        # valid users = @"${DCREALM,,}+Domain Users"
+	comment = Samba File Server Share
+	path = /var/fileshare/data
+	browsable = yes
+	guest ok = yes
+	read only = no
+	create mask = 777
+	force create mode = 777
+	directory mask = 777
+	force directory mode = 777
+	valid users = "@${WORKGROUP^^}\domain users"
+	# force user = root
+	# force group = root
+	writeable = yes
+	# admin users = root
+	oplocks = yes
+	# valid users = @"${DCREALM,,}+Domain Users"
 [/data]
+[homes]
+	comment = Home Directories
+	browsable = yes
+	read only = no
+	writeable = yes
+	oplocks = yes
+	valid users = %S
+[/homes]
 EOL

 sudo tee /etc/security/pam_winbind.conf > /dev/null <<EOL