First draft generated by LLM

templates/krb5.conf.j2

@@ -0,0 +1,17 @@
+[libdefaults]
+    default_realm = {{ samba_realm }}
+    dns_lookup_realm = false
+    dns_lookup_kdc = true
+    ticket_lifetime = 24h
+    forwardable = yes
+    rdns = false
+
+[realms]
+    {{ samba_realm }} = {
+        kdc = {{ samba_hostname }}
+        admin_server = {{ samba_hostname }}
+    }
+
+[domain_realm]
+    .{{ samba_realm | lower }} = {{ samba_realm }}
+    {{ samba_realm | lower }} = {{ samba_realm }}

templates/resolv.conf.j2

@@ -0,0 +1,5 @@
+# Managed by Ansible - Samba AD DC DNS
+
+{% for ns in samba_dns_nameservers %}
+nameserver {{ ns }}
+{% endfor %}

templates/smb.conf.j2

@@ -0,0 +1,15 @@
+[global]
+    workgroup = {{ samba_domain }}
+    realm = {{ samba_realm }}
+    netbios name = {{ samba_hostname | upper }}
+    server role = active directory domain controller
+    dns forwarder = 8.8.8.8
+    idmap_ldb:use rfc2307 = yes
+
+[sysvol]
+    path = /var/lib/samba/sysvol
+    read only = no
+
+[netlogon]
+    path = /var/lib/samba/sysvol/{{ samba_realm | lower }}/scripts
+    read only = no