1 '\" te
   2 .\" Copyright (c) 2009, Sun Microsystems, Inc. All Rights Reserved.
   3 .\" Copyright 2017, Nexenta Systems, Inc. All Rights Reserved.

   4 .\" The contents of this file are subject to the terms of the
   5 .\" Common Development and Distribution License (the "License").
   6 .\" You may not use this file except in compliance with the License.
   7 .\"
   8 .\" You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
   9 .\" or http://www.opensolaris.org/os/licensing.
  10 .\" See the License for the specific language governing permissions
  11 .\" and limitations under the License.
  12 .\"
  13 .\" When distributing Covered Code, include this CDDL HEADER in each
  14 .\" file and include the License file at usr/src/OPENSOLARIS.LICENSE.
  15 .\" If applicable, add the following below this CDDL HEADER, with the
  16 .\" fields enclosed by brackets "[]" replaced with your own identifying
  17 .\" information: Portions Copyright [yyyy] [name of copyright owner]
  18 .\"
  19 .TH SMB 4 "Apr 23, 2015"
  20 .SH NAME
  21 smb \- configuration properties for Solaris CIFS server
  22 .SH DESCRIPTION
  23 .LP

 130 .na
 131 \fB\fBencrypt\fR\fR
 132 .ad
 133 .sp .6
 134 .RS 4n
 135 Controls SMB3 Encryption. For requests on a particular share, the server's
 136 behavior is controlled by the stricter of this option and the per-share
 137 "encrypt" option.
 138 .sp
 139 When set to \fBdisabled\fR, the server will not ask clients to encrypt requests.
 140 When set to \fBenabled\fR, the server will ask clients to encrypt requests,
 141 but will not require that they do so. Any message that can be encrypted
 142 will be encrypted.
 143 When set to \fBrequired\fR, the server will deny access to or disconnect
 144 any client that does not support encryption or fails to encrypt requests
 145 that they should.
 146 .sp
 147 In other words, the \fBenabled\fR behavior is that any message that CAN
 148 be encrypted SHOULD be encrypted, while the \fBrequired\fR behavior is that any
 149 message that CAN be encrypted MUST be encrypted.


































 150 .RE
 151 
 152 .sp
 153 .ne 2
 154 .na
 155 \fB\fBipv6_enable\fR\fR
 156 .ad
 157 .sp .6
 158 .RS 4n
 159 Enables IPv6 Internet protocol support within the CIFS Service. Valid values
 160 are \fBtrue\fR and \fBfalse\fR. The default value is \fBfalse\fR.
 161 .RE
 162 
 163 .sp
 164 .ne 2
 165 .na
 166 \fB\fBkeep_alive\fR\fR
 167 .ad
 168 .sp .6
 169 .RS 4n

   1 '\" te
   2 .\" Copyright (c) 2009, Sun Microsystems, Inc. All Rights Reserved.
   3 .\" Copyright 2017, Nexenta Systems, Inc. All Rights Reserved.
   4 .\" Copyright 2020, RackTop Systems, Inc. All Rights Reserved.
   5 .\" The contents of this file are subject to the terms of the
   6 .\" Common Development and Distribution License (the "License").
   7 .\" You may not use this file except in compliance with the License.
   8 .\"
   9 .\" You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
  10 .\" or http://www.opensolaris.org/os/licensing.
  11 .\" See the License for the specific language governing permissions
  12 .\" and limitations under the License.
  13 .\"
  14 .\" When distributing Covered Code, include this CDDL HEADER in each
  15 .\" file and include the License file at usr/src/OPENSOLARIS.LICENSE.
  16 .\" If applicable, add the following below this CDDL HEADER, with the
  17 .\" fields enclosed by brackets "[]" replaced with your own identifying
  18 .\" information: Portions Copyright [yyyy] [name of copyright owner]
  19 .\"
  20 .TH SMB 4 "Apr 23, 2015"
  21 .SH NAME
  22 smb \- configuration properties for Solaris CIFS server
  23 .SH DESCRIPTION
  24 .LP

 131 .na
 132 \fB\fBencrypt\fR\fR
 133 .ad
 134 .sp .6
 135 .RS 4n
 136 Controls SMB3 Encryption. For requests on a particular share, the server's
 137 behavior is controlled by the stricter of this option and the per-share
 138 "encrypt" option.
 139 .sp
 140 When set to \fBdisabled\fR, the server will not ask clients to encrypt requests.
 141 When set to \fBenabled\fR, the server will ask clients to encrypt requests,
 142 but will not require that they do so. Any message that can be encrypted
 143 will be encrypted.
 144 When set to \fBrequired\fR, the server will deny access to or disconnect
 145 any client that does not support encryption or fails to encrypt requests
 146 that they should.
 147 .sp
 148 In other words, the \fBenabled\fR behavior is that any message that CAN
 149 be encrypted SHOULD be encrypted, while the \fBrequired\fR behavior is that any
 150 message that CAN be encrypted MUST be encrypted.
 151 .RE
 152 
 153 .sp
 154 .ne 2
 155 .na
 156 \fB\fBencrypt_cipher\fR\fR
 157 .ad
 158 .sp .6
 159 .RS 4n
 160 Specifies SMB 3.1.1 Encryption Cipher. This property is only used when
 161 encryption is On (see \fBencrypt\fR property) and negotiated SMB dialect
 162 is 3.1.1 or higher (see \fBmax_protocol\fR property). Otherwise it is ignored.
 163 If the property is not set the default encryption algorith is AES-128-GCM.
 164 .sp
 165 The property can be set to one of these values:
 166 .sp
 167 .ne 2
 168 .na
 169 \fBaes128-ccm\fR
 170 .ad
 171 .RS 13n
 172 AES-128-CCM. This is the only cipher used for SMB 3.0.2 dialect. It is
 173 deprecated by AES-128-GCM cipher.
 174 .RE
 175 
 176 .sp
 177 .ne 2
 178 .na
 179 \fBaes128-gcm\fR
 180 .ad
 181 .RS 13n
 182 AES-128-GCM. This is default cipher for SMB 3.1.1 dialect.
 183 .RE
 184 
 185 .RE
 186 
 187 .sp
 188 .ne 2
 189 .na
 190 \fB\fBipv6_enable\fR\fR
 191 .ad
 192 .sp .6
 193 .RS 4n
 194 Enables IPv6 Internet protocol support within the CIFS Service. Valid values
 195 are \fBtrue\fR and \fBfalse\fR. The default value is \fBfalse\fR.
 196 .RE
 197 
 198 .sp
 199 .ne 2
 200 .na
 201 \fB\fBkeep_alive\fR\fR
 202 .ad
 203 .sp .6
 204 .RS 4n