# Global parameters
[global]
        workgroup = {{ smb_domain }}
        realm = {{ REALM }}
        netbios name = {{ ansible_hostname }}
        server role = active directory domain controller
        idmap_ldb:use rfc2307 = yes
        idmap config uid : range = 10000-20000
        idmap config gid : range = 10000-20000
        template shell = /bin/bash
        template homedir = /home/%U
        registry shares = no

        username map = /etc/samba/usermap.map

	kdc:service ticket lifetime = {{ service_ticket_lifetime }}
	kdc:user ticket lifetime = {{ user_ticket_lifetime }}
	kdc:renewal lifetime = {{ renewal_lifetime }}



[netlogon]
        path = /var/lib/samba/sysvol/{{ domain }}/scripts
        read only = No

[sysvol]
        path = /var/lib/samba/sysvol
        read only = No