Go to main content
man pages section 4: File Formats

Exit Print View

Updated: July 2017
 
 

smb(4)

Name

smb - configuration properties for the Oracle Solaris SMB server and client

Description

The behavior of the Oracle Solaris SMB server and client is defined by property values that are stored in the Service Management Facility, smf(5).

An authorized user can use the sharectl(1M) command to set global values for these properties in SMF.

The following list describes the properties:

ads_site

Specifies the Active Directory site. Sites provide a mechanism to partition or delegate administration and policy management, which are typically used in large or complex domains.

The value should not be set if you do not have a local Active Directory site. By default, no value is set.

autohome_map

Specifies the full path for the SMB autohome map file, smbautohome. The Oracle Solaris SMB server can automatically share home directories when a SMB client connects. The default path is /etc.

client_lmauth_level

Specifies the LAN Manager (LM) authentication level for the Oracle Solaris SMB client. The LM compatibility level controls the type of user authentication to use in workgroup mode or domain mode. The default value is 4.

The following describes the behavior at each level.


    Oracle Solaris SMB Client
         
+---+------------------------------+
| 1 | Uses LM and NTLM             |
|   | authentication               |
+---+------------------------------+
| 2 | Uses NTLM authentication     |
|   |                              |
+---+------------------------------+
| 3 | Uses NTLMv2 authentication   |
|   |                              |
+---+------------------------------+
| 4 | Uses NTLMv2 authentication   |
+---+------------------------------+
| 5 | Uses NTLMv2 authentication   |
|   |                              |
+---+------------------------------+

client_maxprotocol

Specifies the highest protocol version the Oracle Solaris SMB client uses to negotiate with external SMB servers. The valid values are 1 and 1.0. The default value is 1.

The protocol version is specified as a {major}[.{minor}] number. If the minor number is not specified, then the highest supported minor version will be used.

client_signing_required

When SMB client signing is required, the Oracle Solaris SMB client signs all packets, and is not able to connect to servers configured with signing not enabled and not required. When SMB client signing is not required (false), the Oracle Solaris SMB client only signs packets if required by the server. Valid values are true and false. The default value is false.

disposition

A value that controls whether the Oracle Solaris SMB server disconnects the share or proceed if the map command fails. The disposition property only has meaning when the map property has been set. Otherwise it has no effect.

disposition = [ continue | terminate ]
continue

Proceed with share connection if the map command fails. This is the default in the event that disposition is not specified.

terminate

Disconnect the share if the map command fails.

ddns_enable

Enables or disables dynamic DNS updates. A value of true enables dynamic updates, while a value of false disables dynamic updates. By default, the value is false.

For Active Directory DNS servers, when the system is joined to the AD domain, secure updates (defined in RFC 3007) are used.

dns_suffix

Specifies a primary DNS suffix for this system. Some domain member systems have a primary DNS suffix that does not match the DNS name of the Active Directory domain (of which they are members). This creates a disjoint namespace. By default, no value is set.

enforce_vczero

Specifies the behavior on receiving a connection on virtual circuit (VC) zero. The SMB protocol default is to enforce VC zero behavior. When a client connects using VC zero the server disconnects all previous connections from that client. The default behavior can cause sessions to be disconnected when the DNS contains aliases for the server and shares are mapped using different names. To avoid disconnection, the default behavior can be changed by setting enforce_vczero to false. The default value is true.

ipv6_enabled

Enables IPv6 Internet protocol support within the Oracle Solaris SMB Service. Valid values are true and false. The default value is true.

keep_alive

Specifies the number of seconds before an idle SMB connection is dropped by the Oracle Solaris SMB server. If set to 0, idle connections are not dropped. Valid values are 0 to 86400 (24 hours). The default value is 900 seconds.

map

The value is a command to be executed on the Oracle Solaris SMB server when a SMB client connects to the share. The command can take the following arguments, which is substituted when the command is exec'd as described below:

%U

Windows username.

%D

Name of the domain or workgroup of %U.

%h

The server hostname.

%M

The client hostname, or "" if not available.

%L

The server NetBIOS name.

%m

The client NetBIOS name, or "" if not available. This option is only valid for NetBIOS connections (port 139).

%I

The IP address of the client machine.

%i

The local IP address to which the client is connected.

%S

The name of the share.

%P

The root directory of the share.

%u

The UID of the Unix user.

max_connections

Specifies the maximum number of concurrent open connections on the SMB server. The value is an upper limit and it has no effect when the number of concurrent connections is below the limit. The only reason to change this value is to enforce a lower or higher limit on the number of concurrent connections. The default value is 32768.

max_workers

Specifies the maximum number of worker threads that are launched to process incoming SMB requests. The SMB max_mpx value, which indicates to a SMB client the maximum number of outstanding SMB requests that it can have pending on the Oracle Solaris SMB server, is derived from the max_workers value. To ensure compatibility with older versions of Windows the lower 8-bits of max_mpx must not be zero. If the lower byte of max_workers is zero, 64 is added to the value. Thus the minimum value is 64 and the default value, which appears in sharectl(1M) as 1024, is 1088.

netbios_scope

Specifies the NetBIOS scope identifier, which identifies logical NetBIOS networks that are on the same physical network. When you specify a NetBIOS scope identifier, the Oracle Solaris SMB server filters the number of machines that are listed in the browser display to make it easier to find other hosts. The value is a text string that represents a domain name. By default, no value is set.

pdc

Specifies the preferred IP address for the domain controller with which the Oracle Solaris SMB server communicates. This property is sometimes used when there are multiple domain controllers to indicate which one is preferred. If the specified domain controller responds, it is chosen even if the other domain controllers are also available. By default, no value is set.

restrict_anonymous

Disables anonymous access to IPC$ on the Oracle Solaris SMB server, which requires that the SMB client be authenticated to get access to MSRPC services through IPC$. A value of true disables anonymous access to IPC$, while a value of false enables anonymous access.

server_lmauth_level

Specifies the LAN Manager (LM) authentication level for the Oracle Solaris SMB server. The LM compatibility level controls the type of user authentication to use in workgroup mode or domain mode. The default value is 4.

The following describes the behavior at each level:


       Oracle Solaris SMB Server
+---------------------------------+
| 2 | Accepts LM, NTLM and NTLMv2 |
|   | authentication              |
+---+-----------------------------+
| 3 | Accepts LM, NTLM and NTLMv2 |
|   | authentication              |
+---+-----------------------------+
| 4 | Accepts NTLM and NTLMv2     |
|   | authentication              |
+---+-----------------------------+
| 5 | Accepts NTLMv2              |
|   | authentication              |
+---+-----------------------------+

server_maxprotocol

Specifies the highest protocol version the Oracle Solaris SMB server uses to negotiate with a SMB client. The valid values are 1, 1.0, 2, or 2.0. The default value is 2.

The protocol version is specified as a {major}[.{minor}] number. If the minor number is not specified, then the highest supported minor version will be used. The highest supported versions are 1.0 and 2.1

server_signing_enabled

Enables SMB server signing. When server signing is enabled but not required, packets signing is at the discretion of the client. When Oracle Solaris SMB server signing is not enabled and not required, packets are signed if, and only if, the client requires signing. When server_signing_required=true, server_signing_enabled is treated as true. Valid values are true and false. The default value is false.

server_signing_required

When SMB server signing is required, all packets must be signed or they are rejected. Clients that do not support signing are unable to connect to the Oracle Solaris SMB server. Valid values are true and false. The default value is false.

system_comment

Specifies an optional description for the system, which is a text string. This property value might appear in various places, such as Network Neighborhood or Network Places on Windows clients. By default, no value is set.

unmap

The value is a command to be executed on the Oracle Solaris SMB server when a SMB client disconnects the share. The command can take the same substitutions listed on the map property.

wins_exclude

Specifies a comma-separated list of network interfaces that should not be registered with WINS for the Oracle Solaris SMB server. NetBIOS host announcements are not made on excluded interfaces.

wins_server_1

Specifies the IP address of the primary WINS server. By default, no value is set.

wins_server_2

Specifies the IP address of the secondary WINS server. By default, no value is set.

Attributes

See the attributes(5) man page for descriptions of the following attributes:

ATTRIBUTE TYPE
ATTRIBUTE VALUE
Availability
service/file-system/smb
Interface Stability
Uncommitted

See Also

sharectl(1M), smbadm(1M), smbd(1M), smbstat(1M), attributes(5), smf(5)

RFC 3007