[global]
	workgroup = ARDA
	security = ADS
	realm = ARDA.LAN
	winbind refresh tickets = Yes
	vfs objects = acl_xattr
	map acl inherit = Yes
	store dos attributes = Yes
	dedicated keytab file = /etc/krb5.keytab
	kerberos method = secrets and keytab
	winbind use default domain = Yes
	idmap config * : backend = tdb
	idmap config * : range = 100000-110000
	idmap config ARDA : backend = ad
	idmap config ARDA : schema_mode = rfc2307
	idmap config ARDA : range = 10000-99999
	idmap config ARDA : unix_nss_info = yes
	idmap config ARDA : unix_primary_group = yes

	template shell = /bin/bash
	template homedir = /home/%U