configpolicy/group_vars/samba-dc.yml

samba_use_winbind: false
samba_server_role: active directory domain controller
samba_options:
- idmap_ldb:use rfc2307: 'yes'

samba_dc_log_level: 1

samba_shares:
- name: sysvol
  path: /var/lib/samba/sysvol
  read_only: no
- name: netlogon
  path: /var/lib/samba/sysvol/{{ krb5_realm|lower }}/scripts
  read_only: no

samba_tls_enabled: true
samba_tls_keyfile: /etc/pki/tls/private/samba.key
samba_tls_certfile: /etc/pki/tls/certs/samba.cer

collectd_processes:
- name: samba
- name: smbd
- name: krb5kdc
- name: winbindd

admin_users:
- 'PYROCUFFLINK\dustin'
- 'PYROCUFFLINK\jenkins'