Okay, so I've been trying to set up an Active Directory domain controller using samba, and I have successfully done so. I've created the domain, and joined a few Windows machines to said domain. Before I try and dive into AD however, I wanted to map a few drives so that each user could have H: and G: drives etc. Also, I'd like to do this from the same machine as the DC if that's possible.

I tried to make a share called Data, open a run dialog and type \MyDomain.lan, and I see the sysvol, netlogons, and my Data share. This is where the authentication fails. All my AD users get denied. Is there some configuration file I'm missing? Or can what I want to achieve just not be done?

Here are the contents of my files: /etc/samba/smb.conf

# Global parameters
[global]
        workgroup = ELSPETH
        realm = ELSPETH.LAN
        netbios name = DC01
        server role = active directory domain controller
        dns forwarder = 192.168.1.1

[netlogon]
        path = /var/lib/samba/sysvol/elspeth.lan/scripts
        read only = No

[sysvol]
        path = /var/lib/samba/sysvol
        read only = No

[Groups]
        directory mode = 0770
        read only = No
        path = /home/samba/hdd/drive2/Users
        csc policy = documents
        valid users = @"Domain Users"

/etc/krb5.conf

[libdefaults]
    default_realm = ELSPETH.LAN
    dns_lookup_realm = false
    dns_lookup_kdc = true

/etc/nsswitch.conf

passwd:         compat winbind
group:          compat winbind
shadow:         compat winbind

hosts:          files dns
networks:       files

protocols:      db files
services:       db files
ethers:         db files
rpc:            db files

netgroup:       nis

Any pointers would be great. I think at this point I have too many tabs open with tutorials and they're starting to confuse me, haha.