1da6c28aaSamw<?xml version="1.0"?> 2da6c28aaSamw<!DOCTYPE service_bundle SYSTEM "/usr/share/lib/xml/dtd/service_bundle.dtd.1"> 3da6c28aaSamw<!-- 4da6c28aaSamw 58d7e4166Sjose borregoCDDL HEADER START 6da6c28aaSamw 78d7e4166Sjose borregoThe contents of this file are subject to the terms of the 88d7e4166Sjose borregoCommon Development and Distribution License (the "License"). 98d7e4166Sjose borregoYou may not use this file except in compliance with the License. 10da6c28aaSamw 118d7e4166Sjose borregoYou can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 128d7e4166Sjose borregoor http://www.opensolaris.org/os/licensing. 138d7e4166Sjose borregoSee the License for the specific language governing permissions 148d7e4166Sjose borregoand limitations under the License. 15da6c28aaSamw 168d7e4166Sjose borregoWhen distributing Covered Code, include this CDDL HEADER in each 178d7e4166Sjose borregofile and include the License file at usr/src/OPENSOLARIS.LICENSE. 188d7e4166Sjose borregoIf applicable, add the following below this CDDL HEADER, with the 198d7e4166Sjose borregofields enclosed by brackets "[]" replaced with your own identifying 208d7e4166Sjose borregoinformation: Portions Copyright [yyyy] [name of copyright owner] 21da6c28aaSamw 228d7e4166Sjose borregoCDDL HEADER END 23da6c28aaSamw 24148c5f43SAlan WrightCopyright (c) 2007, 2010, Oracle and/or its affiliates. All rights reserved. 2558f31895SGordon RossCopyright 2018 Nexenta Systems, Inc. All rights reserved. 267ddce999SHans RosenfeldCopyright 2016 Hans Rosenfeld <rosenfeld@grumpf.hope-2000.org> 27ce8560eeSMatt BardenCopyright 2020 Tintri by DDN, Inc. All rights reserved. 28814e0daaSGordon RossCopyright 2022 RackTop Systems, Inc. 29da6c28aaSamw 308d7e4166Sjose borregoNOTE: This service manifest is not editable; its contents will 318d7e4166Sjose borregobe overwritten by package or patch operations, including 328d7e4166Sjose borregooperating system upgrade. Make customizations in a different 338d7e4166Sjose borregofile. 34da6c28aaSamw 35da6c28aaSamw--> 36da6c28aaSamw 37da6c28aaSamw<service_bundle type='manifest' name='SUNWsmbsr:smb-server'> 38da6c28aaSamw 39da6c28aaSamw<!-- 1. Name the service to 'network/smb/server' --> 40da6c28aaSamw<service 41da6c28aaSamw name='network/smb/server' 42da6c28aaSamw type='service' 4358f31895SGordon Ross version='2'> 44da6c28aaSamw 45da6c28aaSamw <!-- 2. Create default service instance. --> 46da6c28aaSamw <create_default_instance enabled='false' /> 47da6c28aaSamw 48da6c28aaSamw <!-- 3. Service has single instance --> 49da6c28aaSamw <single_instance/> 50da6c28aaSamw 51da6c28aaSamw <!-- 4. Identify dependencies --> 52da6c28aaSamw 53da6c28aaSamw <dependency name='network' 54da6c28aaSamw grouping='require_any' 55da6c28aaSamw restart_on='error' 56da6c28aaSamw type='service'> 57da6c28aaSamw <service_fmri value='svc:/milestone/network'/> 58da6c28aaSamw </dependency> 59da6c28aaSamw 60da6c28aaSamw <!-- Must have all local filesystems mounted before we share them --> 61da6c28aaSamw <dependency name='filesystem-local' 62da6c28aaSamw grouping='require_all' 63da6c28aaSamw restart_on='error' 64da6c28aaSamw type='service'> 65da6c28aaSamw <service_fmri value='svc:/system/filesystem/local'/> 66da6c28aaSamw </dependency> 67da6c28aaSamw 68da6c28aaSamw <!-- Must have idmap service started --> 69da6c28aaSamw <dependency name='idmap' 70da6c28aaSamw grouping='require_all' 711fdeec65Sjoyce mcintosh restart_on='none' 72da6c28aaSamw type='service'> 73da6c28aaSamw <service_fmri value='svc:/system/idmap:default'/> 74da6c28aaSamw </dependency> 75da6c28aaSamw 76ed9aabc7SGordon Ross <!-- Must have SMB client service started --> 77ed9aabc7SGordon Ross <dependency name='smb-client' 78ed9aabc7SGordon Ross grouping='require_all' 79ed9aabc7SGordon Ross restart_on='none' 80ed9aabc7SGordon Ross type='service'> 81ed9aabc7SGordon Ross <service_fmri value='svc:/network/smb/client:default'/> 82ed9aabc7SGordon Ross </dependency> 83ed9aabc7SGordon Ross 84da6c28aaSamw <!-- 85da6c28aaSamw Want to make sure that the network/shares/group service 86da6c28aaSamw starts after the smb/server service. It needs to be 87da6c28aaSamw optional in order to not cause failure if smb is 88da6c28aaSamw disabled. 89da6c28aaSamw --> 90da6c28aaSamw <dependent name='groups' 91da6c28aaSamw grouping="optional_all" 92da6c28aaSamw restart_on='error' > 93da6c28aaSamw <service_fmri value='svc:/network/shares/group'/> 94da6c28aaSamw </dependent> 95da6c28aaSamw 96da6c28aaSamw <!-- 5. Identify start/stop/refresh methods --> 97da6c28aaSamw <exec_method 98da6c28aaSamw type='method' 99da6c28aaSamw name='start' 100da6c28aaSamw exec='/usr/lib/smbsrv/smbd %m' 101da6c28aaSamw timeout_seconds='60' > 1028622ec45SGordon Ross <!-- XXX: need method_context? --> 103da6c28aaSamw </exec_method> 104da6c28aaSamw 105da6c28aaSamw <exec_method 106da6c28aaSamw type='method' 107da6c28aaSamw name='stop' 108da6c28aaSamw exec=':kill' 109da6c28aaSamw timeout_seconds='60' /> 110da6c28aaSamw 111da6c28aaSamw <exec_method 112da6c28aaSamw type='method' 113da6c28aaSamw name='refresh' 114da6c28aaSamw exec=':kill -HUP' 115da6c28aaSamw timeout_seconds='60' /> 116da6c28aaSamw 117da6c28aaSamw <property_group name='general' type='framework'> 118da6c28aaSamw <!-- To Start/Stop/Refresh the service --> 119da6c28aaSamw <propval name='action_authorization' type='astring' 120da6c28aaSamw value='solaris.smf.manage.smb' /> 121da6c28aaSamw <propval name='value_authorization' type='astring' 122da6c28aaSamw value='solaris.smf.manage.smb' /> 123da6c28aaSamw </property_group> 124da6c28aaSamw 125eb1a3463STruong Nguyen <property_group name='firewall_context' type='com.sun,fw_definition'> 126eb1a3463STruong Nguyen <propval name='ipf_method' type='astring' 127eb1a3463STruong Nguyen value='/lib/svc/method/svc-smbd ipfilter' /> 128eb1a3463STruong Nguyen </property_group> 129eb1a3463STruong Nguyen 130eb1a3463STruong Nguyen <property_group name='firewall_config' type='com.sun,fw_configuration'> 131eb1a3463STruong Nguyen <propval name='policy' type='astring' value='use_global' /> 1327ddce999SHans Rosenfeld <propval name='block_policy' type='astring' 1337ddce999SHans Rosenfeld value='use_global' /> 134eb1a3463STruong Nguyen <propval name='apply_to' type='astring' value='' /> 1357ddce999SHans Rosenfeld <propval name='apply_to_6' type='astring' value='' /> 136eb1a3463STruong Nguyen <propval name='exceptions' type='astring' value='' /> 1377ddce999SHans Rosenfeld <propval name='exceptions_6' type='astring' value='' /> 1387ddce999SHans Rosenfeld <propval name='target' type='astring' value='' /> 1397ddce999SHans Rosenfeld <propval name='target_6' type='astring' value='' /> 140eb1a3463STruong Nguyen <propval name='value_authorization' type='astring' 141eb1a3463STruong Nguyen value='solaris.smf.value.firewall.config' /> 142eb1a3463STruong Nguyen </property_group> 143eb1a3463STruong Nguyen 144da6c28aaSamw <property_group name='read' type='application'> 145da6c28aaSamw <!-- To read protected parameters --> 146da6c28aaSamw <propval name='read_authorization' type='astring' 147da6c28aaSamw value='solaris.smf.read.smb' /> 148da6c28aaSamw <propval name='value_authorization' type='astring' 149da6c28aaSamw value='solaris.smf.value.smb' /> 150da6c28aaSamw <propval name='machine_passwd' type='astring' value='' /> 151da6c28aaSamw </property_group> 152da6c28aaSamw 153da6c28aaSamw <!-- SMB service-specific general configuration defaults --> 154da6c28aaSamw <property_group name='smbd' type='application'> 155da6c28aaSamw <stability value='Evolving' /> 156da6c28aaSamw <propval name='value_authorization' type='astring' 157da6c28aaSamw value='solaris.smf.value.smb' /> 158da6c28aaSamw <propval name='oplock_enable' type='boolean' 159eb1d736bSafshin salek ardakani - Sun Microsystems - Irvine United States value='true' override='true'/> 160da6c28aaSamw <propval name='autohome_map' type='astring' 161da6c28aaSamw value='/etc' override='true'/> 162cc3780e6SGordon Ross <propval name='bypass_traverse_checking' type='boolean' 163cc3780e6SGordon Ross value='true' override='true'/> 164b819cea2SGordon Ross <propval name='debug' type='integer' 165b819cea2SGordon Ross value='0' override='true'/> 166da6c28aaSamw <propval name='domain_sid' type='astring' 167da6c28aaSamw value='' override='true'/> 168da6c28aaSamw <propval name='domain_member' type='boolean' 169da6c28aaSamw value='false' override='true'/> 170da6c28aaSamw <propval name='domain_name' type='astring' 171da6c28aaSamw value='WORKGROUP' override='true'/> 1728d7e4166Sjose borrego <propval name='fqdn' type='astring' 1738d7e4166Sjose borrego value='' override='true'/> 1748d7e4166Sjose borrego <propval name='forest' type='astring' 1758d7e4166Sjose borrego value='' override='true'/> 1768d7e4166Sjose borrego <propval name='domain_guid' type='astring' 1778d7e4166Sjose borrego value='' override='true'/> 178da6c28aaSamw <propval name='pdc' type='astring' 179da6c28aaSamw value='' override='true'/> 180da6c28aaSamw <propval name='wins_server_1' type='astring' 181da6c28aaSamw value='' override='true'/> 182da6c28aaSamw <propval name='wins_server_2' type='astring' 183da6c28aaSamw value='' override='true'/> 184da6c28aaSamw <propval name='wins_exclude' type='astring' 185da6c28aaSamw value='' override='true'/> 186da6c28aaSamw <propval name='max_workers' type='integer' 1872c2961f8Sjose borrego value='1024' override='true'/> 188da6c28aaSamw <propval name='max_connections' type='integer' 1894163af6aSjose borrego value='100000' override='true'/> 190da6c28aaSamw <propval name='keep_alive' type='integer' 191811599a4SMatt Barden value='0' override='true'/> 192da6c28aaSamw <propval name='restrict_anonymous' type='boolean' 193da6c28aaSamw value='false' override='true'/> 194da6c28aaSamw <propval name='signing_enabled' type='boolean' 19512b65585SGordon Ross value='true' override='true'/> 196da6c28aaSamw <propval name='signing_required' type='boolean' 19758f31895SGordon Ross value='true' override='true'/> 198da6c28aaSamw <propval name='sync_enable' type='boolean' 199da6c28aaSamw value='false' override='true'/> 200da6c28aaSamw <propval name='security' type='astring' 201da6c28aaSamw value='workgroup' override='true'/> 20283d2dfe6SGordon Ross <propval name='netbios_enable' type='boolean' 20383d2dfe6SGordon Ross value='false' override='true'/> 204da6c28aaSamw <propval name='netbios_scope' type='astring' 205da6c28aaSamw value='' override='true'/> 206da6c28aaSamw <propval name='system_comment' type='astring' 207da6c28aaSamw value='' override='true'/> 208da6c28aaSamw <propval name='lmauth_level' type='integer' 209da6c28aaSamw value='4' override='true'/> 210da6c28aaSamw <propval name='ads_site' type='astring' 211da6c28aaSamw value='' override='true'/> 212da6c28aaSamw <propval name='ddns_enable' type='boolean' 213da6c28aaSamw value='false' override='true'/> 214faa1795aSjb <propval name='kpasswd_server' type='astring' 215faa1795aSjb value='' override='true'/> 216faa1795aSjb <propval name='kpasswd_domain' type='astring' 217faa1795aSjb value='' override='true'/> 218faa1795aSjb <propval name='kpasswd_seqnum' type='integer' 219faa1795aSjb value='0' override='true'/> 220faa1795aSjb <propval name='netlogon_seqnum' type='integer' 221faa1795aSjb value='0' override='true'/> 2227f667e74Sjose borrego <propval name='ipv6_enable' type='boolean' 2237f667e74Sjose borrego value='false' override='true'/> 2249fb67ea3Safshin salek ardakani - Sun Microsystems - Irvine United States <propval name='sv_version' type='astring' 22550d739b1SAndrew Stormont value='6.1' override='true'/> 226148c5f43SAlan Wright <propval name='dfs_stdroot_num' type='integer' 227148c5f43SAlan Wright value='0' override='true'/> 228a90cf9f2SGordon Ross <propval name='print_enable' type='boolean' 229a90cf9f2SGordon Ross value='false' override='true'/> 230814e0daaSGordon Ross <propval name='short_names' type='boolean' 231814e0daaSGordon Ross value='false' override='true'/> 2325f1ef25cSAram Hăvărneanu <propval name='traverse_mounts' type='boolean' 2335f1ef25cSAram Hăvărneanu value='true' override='true'/> 234a90cf9f2SGordon Ross <propval name='max_protocol' type='astring' 235a90cf9f2SGordon Ross value='' override='true'/> 2363e2c0c09SMatt Barden <propval name='min_protocol' type='astring' 237*92101ea4SGordon Ross value='2.1' override='true'/> 2381160dcf7SMatt Barden <propval name='encrypt' type='astring' 2391160dcf7SMatt Barden value='disabled' override='true'/> 240b0bb0d63SGordon Ross <propval name='encrypt_ciphers' type='astring' 2414e065a9fSAlexander Stetsenko value='' override='true'/> 242a90cf9f2SGordon Ross <propval name='initial_credits' type='integer' 243a90cf9f2SGordon Ross value='20' override='true'/> 244a90cf9f2SGordon Ross <propval name='maximum_credits' type='integer' 245a90cf9f2SGordon Ross value='1000' override='true'/> 246ce8560eeSMatt Barden <propval name='netlogon_flags' type='integer' 247ce8560eeSMatt Barden value='0' override='true'/> 2482cf6b79fSGordon Ross <propval name='max_opens' type='integer' 2492cf6b79fSGordon Ross value='0' override='true'/> 250da6c28aaSamw </property_group> 251da6c28aaSamw 25229bd2886SAlan Wright <!-- SMB service-specific shares exec configuration defaults --> 25329bd2886SAlan Wright <property_group name='exec' type='application'> 25429bd2886SAlan Wright <stability value='Evolving' /> 25529bd2886SAlan Wright <propval name='map' type='astring' 25629bd2886SAlan Wright value='' override='true'/> 25729bd2886SAlan Wright <propval name='unmap' type='astring' 25829bd2886SAlan Wright value='' override='true'/> 25929bd2886SAlan Wright <propval name='disposition' type='astring' 26029bd2886SAlan Wright value='' override='true'/> 26129bd2886SAlan Wright </property_group> 26229bd2886SAlan Wright 263da6c28aaSamw <!-- 6. Identify faults to be ignored. --> 264da6c28aaSamw <!-- 7. Identify service model. Default service model is 'contract' --> 265da6c28aaSamw <!-- 8. Identify dependents. 266772eca33SJason King For a NAS, we may want to have the smbd service start, 267da6c28aaSamw before it reaches the svc:/milestone/multi-user-server 268da6c28aaSamw milestone. 269da6c28aaSamw <dependent 270da6c28aaSamw name='smb-server_multi-user-server' 271da6c28aaSamw grouping='optional_all' 272da6c28aaSamw restart_on='none'> 273da6c28aaSamw <service_fmri value= 274da6c28aaSamw 'svc:/milestone/multi-user-server'/> 275da6c28aaSamw </dependent> 276da6c28aaSamw --> 277da6c28aaSamw <!-- 9. Insert service milestones. None. --> 278da6c28aaSamw 279da6c28aaSamw <stability value='Evolving' /> 280da6c28aaSamw 281da6c28aaSamw <!-- 10. Create Service Template information --> 282da6c28aaSamw <template> 283da6c28aaSamw <common_name> 284da6c28aaSamw <loctext xml:lang='C'> smbd daemon</loctext> 285da6c28aaSamw </common_name> 286da6c28aaSamw <documentation> 287bbf21555SRichard Lowe <manpage title='smbd' section='8' 288da6c28aaSamw manpath='/usr/share/man' /> 289da6c28aaSamw </documentation> 290da6c28aaSamw </template> 291da6c28aaSamw 292da6c28aaSamw</service> 293da6c28aaSamw 294da6c28aaSamw</service_bundle> 295