16
17 The following list describes the properties:
18
19 ads_site
20
21 Specifies the site configured in DNS to look up Active Directory
22 information. Sites provide a mechanism to partition or delegate
23 administration and policy management, which are typically used in
24 large or complex domains.
25
26 The value should not be set if you do not have a local Active
27 Directory site. By default, no value is set.
28
29
30 autohome_map
31
32 Specifies the full path for the SMD autohome map file, smbautohome.
33 The default path is /etc.
34
35
36 disposition
37
38 A value that controls whether to disconnect the share or proceed if
39 the map command fails. The disposition property only has meaning
40 when the map property has been set. Otherwise it will have no
41 effect.
42
43 disposition = [ continue | terminate ]
44
45
46
47 continue
48
49 Proceed with share connection if the map command fails. This is
50 the default in the event that disposition is not specified.
51
52
53 terminate
54
55 Disconnect the share if the map command fails.
56
57
58
59 ddns_enable
60
61 Enables or disables dynamic DNS updates. A value of true enables
62 dynamic updates, while a value of false disables dynamic updates.
63 By default, the value is false.
64
65
66 ipv6_enabled
67
68 Enables IPv6 Internet protocol support within the CIFS Service.
69 Valid values are true and false. The default value is false.
70
71
72 keep_alive
73
74 Specifies the number of seconds before an idle SMB connection is
75 dropped by the Solaris CIFS server. If set to 0, idle connections
76 are not dropped. Valid values are 0 and from 20 seconds and above.
77 The default value is 5400 seconds.
78
79
80 lmauth_level
81
82 Specifies the LAN Manager (LM) authentication level. The LM
83 compatibility level controls the type of user authentication to use
84 in workgroup mode or domain mode. The default value is 3.
85
86 The following describes the behavior at each level.
87
88 2
89 In Windows workgroup mode, the Solaris CIFS server
90 accepts LM, NTLM, LMv2, and NTLMv2 requests. In domain
91 mode, the SMB redirector on the Solaris CIFS server
92 sends NTLM requests.
93
94
95 3
96 In Windows workgroup mode, the Solaris CIFS server
97 accepts LM, NTLM, LMv2, and NTLMv2 requests. In domain
98 mode, the SMB redirector on the Solaris CIFS server
99 sends LMv2 and NTLMv2 requests.
100
101
102 4
103 In Windows workgroup mode, the Solaris CIFS server
104 accepts NTLM, LMv2, and NTLMv2 requests. In domain
167
168
169 %P
170
171 The root directory of the share.
172
173
174 %u
175
176 The UID of the Unix user.
177
178
179
180 max_protocol
181
182 Specifies the maximum SMB protocol level that the SMB service
183 should allow clients to negotiate. The default value is 2.1.
184 Valid settings include: 1, 2.1, 3.0
185
186
187 max_workers
188
189 Specifies the maximum number of worker threads that will be
190 launched to process incoming CIFS requests. The SMB max_mpx value,
191 which indicates to a client the maximum number of outstanding SMB
192 requests that it may have pending on the server, is derived from
193 the max_workers value. To ensure compatibility with older versions
194 of Windows the lower 8-bits of max_mpx must not be zero. If the
195 lower byte of max_workers is zero, 64 is added to the value. Thus
196 the minimum value is 64 and the default value, which appears in
197 sharectl(1M) as 1024, is 1088.
198
199
200 netbios_scope
201
202 Specifies the NetBIOS scope identifier, which identifies logical
203 NetBIOS networks that are on the same physical network. When you
204 specify a NetBIOS scope identifier, the server filters the number
205 of machines that are listed in the browser display to make it
206 easier to find other hosts. The value is a text string that
207 represents a domain name. By default, no value is set.
208
209
210 pdc
211
212 Specifies the preferred IP address for the domain controller. This
213 property is sometimes used when there are multiple domain
214 controllers to indicate which one is preferred. If the specified
215 domain controller responds, it is chosen even if the other domain
216 controllers are also available. By default, no value is set.
217
218
219 restrict_anonymous
220
221 Disables anonymous access to IPC$, which requires that the client
222 be authenticated to get access to MSRPC services through IPC$. A
223 value of true disables anonymous access to IPC$, while a value of
224 false enables anonymous access.
225
226
227 signing_enabled
228
229 Enables SMB signing. When signing is enabled but not required it is
230 possible for clients to connect regardless of whether or not the
231 client supports SMB signing. If a packet has been signed, the
232 signature will be verified. If a packet has not been signed it will
233 be accepted without signature verification. Valid values are true
234 and false. The default value is false.
235
236
237 signing_required
238
239 When SMB signing is required, all packets must be signed or they
240 will be rejected, and clients that do not support signing will be
241 unable to connect to the server. The signing_required setting is
242 only taken into account when signing_enabled is true. Valid values
243 are true and false. The default value is false.
244
245
246 system_comment
247
248 Specifies an optional description for the system, which is a text
249 string. This property value might appear in various places, such as
250 Network Neighborhood or Network Places on Windows clients. By
251 default, no value is set.
252
253
254 traverse_mounts
255
256 The traverse_mounts setting determines how the SMB server presents
257 sub-mounts underneath an SMB share. When traverse_mounts is true
258 (the default), sub-mounts are presented to SMB clients like any
259 other subdirectory. When traverse_mounts is false, sub-mounts are
260 not shown to SMB clients.
261
262
263 unmap
264
265 The value is a command to be executed when disconnecting the share.
287
288
289 ATTRIBUTES
290 See the attributes(5) man page for descriptions of the following
291 attributes:
292
293
294
295
296 +--------------------+-----------------+
297 | ATTRIBUTE TYPE | ATTRIBUTE VALUE |
298 +--------------------+-----------------+
299 |Interface Stability | Uncommitted |
300 +--------------------+-----------------+
301
302 SEE ALSO
303 sharectl(1M), smbadm(1M), smbd(1M), smbstat(1M), attributes(5), smf(5)
304
305
306
307 September 25, 2009 SMB(4)
|
16
17 The following list describes the properties:
18
19 ads_site
20
21 Specifies the site configured in DNS to look up Active Directory
22 information. Sites provide a mechanism to partition or delegate
23 administration and policy management, which are typically used in
24 large or complex domains.
25
26 The value should not be set if you do not have a local Active
27 Directory site. By default, no value is set.
28
29
30 autohome_map
31
32 Specifies the full path for the SMD autohome map file, smbautohome.
33 The default path is /etc.
34
35
36 bypass_traverse_checking
37
38 When set, allows the SMB server to bypass ACL "traverse" checks.
39 The default value is true, for Windows compatibility. If this
40 parameter is false, ACL checks require that "traverse" (directory
41 execute) is granted on every directory above the directory the SMB
42 client tries to access. Windows shares are normally setup with the
43 higher level directories not specifically granting such access.
44
45
46 disposition
47
48 A value that controls whether to disconnect the share or proceed if
49 the map command fails. The disposition property only has meaning
50 when the map property has been set. Otherwise it will have no
51 effect.
52
53 disposition = [ continue | terminate ]
54
55
56
57 continue
58
59 Proceed with share connection if the map command fails. This is
60 the default in the event that disposition is not specified.
61
62
63 terminate
64
65 Disconnect the share if the map command fails.
66
67
68
69 ddns_enable
70
71 Enables or disables dynamic DNS updates. A value of true enables
72 dynamic updates, while a value of false disables dynamic updates.
73 By default, the value is false.
74
75
76 encrypt
77
78 Controls SMB3 Encryption. For requests on a particular share, the
79 server's behavior is controlled by the stricter of this option and
80 the per-share "encrypt" option.
81
82 When set to disabled, the server will not ask clients to encrypt
83 requests. When set to enabled, the server will ask clients to
84 encrypt requests, but will not require that they do so. Any message
85 that can be encrypted will be encrypted. When set to required, the
86 server will deny access to or disconnect any client that does not
87 support encryption or fails to encrypt requests that they should.
88
89 In other words, the enabled behavior is that any message that CAN
90 be encrypted SHOULD be encrypted, while the required behavior is
91 that any message that CAN be encrypted MUST be encrypted.
92
93
94 ipv6_enable
95
96 Enables IPv6 Internet protocol support within the CIFS Service.
97 Valid values are true and false. The default value is false.
98
99
100 keep_alive
101
102 Specifies the number of seconds before an idle SMB connection is
103 dropped by the Solaris CIFS server. If set to 0, idle connections
104 are not dropped. Valid values are 0 and from 20 seconds and above.
105 The default value is 0.
106
107
108 lmauth_level
109
110 Specifies the LAN Manager (LM) authentication level. The LM
111 compatibility level controls the type of user authentication to use
112 in workgroup mode or domain mode. The default value is 4.
113
114 The following describes the behavior at each level.
115
116 2
117 In Windows workgroup mode, the Solaris CIFS server
118 accepts LM, NTLM, LMv2, and NTLMv2 requests. In domain
119 mode, the SMB redirector on the Solaris CIFS server
120 sends NTLM requests.
121
122
123 3
124 In Windows workgroup mode, the Solaris CIFS server
125 accepts LM, NTLM, LMv2, and NTLMv2 requests. In domain
126 mode, the SMB redirector on the Solaris CIFS server
127 sends LMv2 and NTLMv2 requests.
128
129
130 4
131 In Windows workgroup mode, the Solaris CIFS server
132 accepts NTLM, LMv2, and NTLMv2 requests. In domain
195
196
197 %P
198
199 The root directory of the share.
200
201
202 %u
203
204 The UID of the Unix user.
205
206
207
208 max_protocol
209
210 Specifies the maximum SMB protocol level that the SMB service
211 should allow clients to negotiate. The default value is 2.1.
212 Valid settings include: 1, 2.1, 3.0
213
214
215 min_protocol
216
217 Specifies the minimum SMB protocol level that the SMB service
218 should allow clients to negotiate. The default value is 1. Valid
219 settings include: 1, 2.1, 3.0
220
221
222 max_workers
223
224 Specifies the maximum number of worker threads that will be
225 launched to process incoming CIFS requests. The SMB max_mpx value,
226 which indicates to a client the maximum number of outstanding SMB
227 requests that it may have pending on the server, is derived from
228 the max_workers value. To ensure compatibility with older versions
229 of Windows the lower 8-bits of max_mpx must not be zero. If the
230 lower byte of max_workers is zero, 64 is added to the value. Thus
231 the minimum value is 64 and the default value, which appears in
232 sharectl(1M) as 1024, is 1088.
233
234
235 netbios_enable
236
237 Controls whether NetBIOS services are active, including the NetBIOS
238 listener (port 139), NetBIOS datagram service (port 138) and the
239 NetBIOS name service (port 137). The default value is false.
240
241
242 netbios_scope
243
244 Specifies the NetBIOS scope identifier, which identifies logical
245 NetBIOS networks that are on the same physical network. When you
246 specify a NetBIOS scope identifier, the server filters the number
247 of machines that are listed in the browser display to make it
248 easier to find other hosts. The value is a text string that
249 represents a domain name. By default, no value is set.
250
251
252 oplock_enable
253
254 Controls whether "oplocks" may be granted by the SMB server. The
255 term "oplock" is short for "opportunistic lock", which is the
256 legacy name for cache delegations in SMB. By default, oplocks are
257 enabled. Note that if oplocks are disabled, file I/O perfrormance
258 may be severely reduced.
259
260
261 pdc
262
263 Specifies the host name of the preferred domain controller. This
264 property is sometimes used when there are multiple domain
265 controllers to indicate which one is preferred. If the specified
266 domain controller responds, it is chosen even if the other domain
267 controllers are also available. By default, no value is set.
268
269
270 print_enable
271
272 Controls whether the SMB printing service is active. The default
273 value is false.
274
275
276 restrict_anonymous
277
278 Disables anonymous access to IPC$, which requires that the client
279 be authenticated to get access to MSRPC services through IPC$. A
280 value of true disables anonymous access to IPC$, while a value of
281 false enables anonymous access.
282
283
284 signing_enabled
285
286 Enables SMB signing. When signing is enabled but not required it is
287 possible for clients to connect regardless of whether or not the
288 client supports SMB signing. If a packet has been signed, the
289 signature will be verified. If a packet has not been signed it will
290 be accepted without signature verification. Valid values are true
291 and false. The default value is false.
292
293
294 signing_required
295
296 When SMB signing is required, all packets must be signed or they
297 will be rejected, and clients that do not support signing will be
298 unable to connect to the server. The signing_required setting is
299 only taken into account when signing_enabled is true. Valid values
300 are true and false. The default value is false.
301
302
303
304 system_comment
305
306 Specifies an optional description for the system, which is a text
307 string. This property value might appear in various places, such as
308 Network Neighborhood or Network Places on Windows clients. By
309 default, no value is set.
310
311
312 traverse_mounts
313
314 The traverse_mounts setting determines how the SMB server presents
315 sub-mounts underneath an SMB share. When traverse_mounts is true
316 (the default), sub-mounts are presented to SMB clients like any
317 other subdirectory. When traverse_mounts is false, sub-mounts are
318 not shown to SMB clients.
319
320
321 unmap
322
323 The value is a command to be executed when disconnecting the share.
345
346
347 ATTRIBUTES
348 See the attributes(5) man page for descriptions of the following
349 attributes:
350
351
352
353
354 +--------------------+-----------------+
355 | ATTRIBUTE TYPE | ATTRIBUTE VALUE |
356 +--------------------+-----------------+
357 |Interface Stability | Uncommitted |
358 +--------------------+-----------------+
359
360 SEE ALSO
361 sharectl(1M), smbadm(1M), smbd(1M), smbstat(1M), attributes(5), smf(5)
362
363
364
365 April 23, 2015 SMB(4)
|