Changing service properties is documented in Setting Service Properties (BUI) and Setting Service Properties (CLI).
Minimum supported version - Choose the minimum version of SMB that the appliance supports.
Maximum supported version - Choose the maximum version of SMB that the appliance supports.
System comment - Meaningful text string.
Idle Session timeout - Timeout setting for session inactivity.
Preferred domain controller - The preferred domain controller to use when joining an Active Directory domain. If this controller is not available, Active Directory will rely on DNS SRV records and the Active Directory site to locate an appropriate domain controller. For more information, see Active Directory Configuration.
Active Directory site - The site to use when joining an Active Directory domain. A site is a logical collection of machines which are all connected with high bandwidth, low latency network links. When this property is configured and the preferred domain controller is not specified, joining an Active Directory domain will prefer domain controllers located in this site over external domain controllers.
Maximum # of server threads - The maximum number of simultaneous server threads (workers). Default is 1024.
Enable Dynamic DNS - Choose whether the appliance will use Dynamic DNS to update DNS records in the Active Directory domain. Default is off.
Enable oplocks - Choose whether the appliance will grant opportunistic locks to SMB clients. This will improve performance for most clients. Default is on. The SMB server grants an oplock to a client process so that the client can cache data while the lock is in place. When the server revokes the oplock, the client flushes its cached data to the server.
Restrict anonymous access to share list - If this option is enabled, clients must authenticate to the SMB service before receiving a list of shares. If disabled, anonymous clients may access the list of shares.
Primary WINS server - Primary WINS address configured in the TCP/IP setup.
Secondary WINS server - Secondary WINS address configured in the TCP/IP setup.
Excluded IP addresses from WINS - IP addresses excluded from registration with WINS.
LAN Manager compatibility level - Authentication modes supported (LM, NTLM, LMv2, NTLMv2). For more information on the supported authentication modes within each compatibility level, consult the Oracle Solaris Information Library for smb. NTLMv2 is the recommended minimum security level to avoid publicly known security vulnerabilities.
SMB signing enabled - Enables interoperability with SMB clients using the SMB signing feature. If a packet has been signed, the signature will be verified. If a packet has not been signed it will be accepted without signature verification (if SMB signing is not required - see below).
SMB signing required - When SMB signing is required, all SMB packets must be signed or they will be rejected, and clients that do not support signing will be unable to connect to the server.
Ignore zero VC - When an SMB client establishes a new connection, it may request that the appliance clean up all previous connections and file locks from this client by specifying a Virtual Circuit (VC) number of zero. This protocol artifact however, does not respect network address translation (NAT) for clients or multiple DNS entries assigned to the same host. In combination, zero VC requests between masked or redundant network locations may result in unrelated active connections being reset. By default, zero VC requests are honored to prevent stale file locking, however if SMB sessions are being disconnected in error, ignoring zero VC requests may resolve the issue.
Share visibility - Use this property to set the access-based enumeration (ABE) policy for displaying available shares to clients. Valid values are "Full" and "Restricted." While "Full" allows full access, "Restricted" limits access to only shares that the client is allowed to see. Access to shares is determined by the SMB exceptions and the share's ACL. This property is set to "Full" by default.