I think in the context of using Samba alone that's great news.
Historically organizations have come to us for the very same reasons you just outlined (but not just in context of an SMB service).
I certainly don't want to turn this post into a marketing commercial for Centrify, but I think you know what I mean - it's not only about being able to effectively do identity generation in a complex AD environment, but it's also about:
- Identity Consolidation (AD, LDAP, Google Directory, Azure Directory, SCIM-based Directories)
- Centralized Administration and Delegation
- Multi-Factor Authentication (Modern, Legacy and Smart Card)
- Role-based Access Control (In UNIX, Linux and Windows)
- Privilege Elevation
- Enrichment of Security Operations (SIEM, Reports, etc)
- SSO Plugins for Apache, Java, SAP, DB2
- Hadoop Distribution integration
- Mixed Kerberos Environments
- DevOps and Automation
- Operating under the assumption of Node Breach (e.g. Zero Trust)
- Being able to use AD identity in Private and Public clouds without the need to carry your AD Infrastructure with you (Identity Broker).
- Enabling ITSM, Workflow and Governance Solutions to do a better job.
- Out-executing Identity as a Service providers and making them add more value.
- Out-executing vault vendors at their own game and proving that least privilege is the best approach for security (not everything is a nail/not everything is solved with password management)
I hope you see our perspective here. We solved the problem that Samba is addressing years ago and we are hoping to continue to solve the newer challenges like AI-driven Access Control (as our contribution for Skynet domination .<= It's the weekend, had to throw that joke in . 
).
Cheers!!!