Administrator Guide

Adding user account maps

About this task

To add user account maps:

1 In ADSI Edit, expand the Default naming context node, and then expand the partition name.

2 Right-click CN=Users, click New, and then click Object.

3 In the Create Object dialog box, select the User class, and then click Next.

4 In the Value text box, type the user name, and then click Next.

NOTE: The user name is not associated with the Windows-or UNIX user, and can be a random entry.

5 Click the More Attributes button to edit the uidNumber, gidNumber, and sAMAccountName attributes of this user account.

NOTE: The uidNumber and gidNumber represent the UID and GID of the UNIX user who is being mapped, and

sAMAccountName must match the name of a local Windows user on the computer that is running Server for NFS. If,

after selecting the More Attributes button, the uidNumber and gidNumber do not appear, exit and start the ADSI Edit

MMC.

6 Click OK.

3 In the Create Object dialog box, select the Group class, and then click Next.

NOTE

: Ensure that the group object’s name matches the name of the group account for which group account mapping

is required.

4 Set the gidNumber and sAMAccountName attributes for the new group object.

NOTE

: The gidNumber is the GID of the UNIX group that is being mapped, and sAMAccountName must match the

name of a local group on the Windows-based computer that is running Server for NFS. If, after selecting the More

Attributes button, the uidNumber and gidNumber do not appear, exit and start ADSI Edit MMC.

5 Click OK, and click Finish to close the wizard.

The Window CLI icon is displayed under Programs.

2 Right-click Command Prompt, and select Run as administrator to open an elevated CLI.

3 Navigate to the C:\WINDOWS\ADAM directory, and run the dsacls command to grant the Everyone group read access to the

mapping data store as follows: