PowerShell Logo Small

New-NfsMappedIdentity



This is the built-in help made by Microsoft for the command 'New-NfsMappedIdentity', in PowerShell version 5 - as retrieved from Windows version 'Microsoft Windows Server 2012 R2 Standard' PowerShell help files on 2016-06-23.

For PowerShell version 3 and up, where you have Update-Help, this command was run just before creating the web pages from the help files.

SYNOPSIS

Creates a new NFS mapped identity.

SYNTAX


New-NfsMappedIdentity [-LdapNamingContext <String>] [-MappingStore <MappingStoreType>] [-Password <SecureString>] [-PrimaryGroup <String>] [-Server <String>]
[-SupplementaryGroups <String>] -GroupIdentifier <Int32> -UserIdentifier <Int32> -UserName <String> [-Confirm] [-WhatIf] [<CommonParameters>]
New-NfsMappedIdentity [-LdapNamingContext <String>] [-MappingStore <MappingStoreType>] [-Password <SecureString>] [-Server <String>] -GroupIdentifier <Int32> -GroupName
<String> [-Confirm] [-WhatIf] [<CommonParameters>]



Search powershellhelp.space

DESCRIPTION


The New-NfsMappedIdentity cmdlet creates a new Network File System (NFS) mapped identity between a UNIX user account or group account and a Windows user account or group
account. If a specified user account or group account does not exist, the New-NfsMappedIdentity cmdlet can create the account, set its user ID (UID) and group ID (GID)
attributes, and update user membership in the group.


A mapped identity associates a Windows user account or group account to a UNIX user account or group account. A UID or GID identifies a UNIX account namespace. These
elements are associated with the corresponding elements of a Windows account namespace: a user name or a group name. By using a mapped identity, a user who is logged on to a
UNIX domain can access shared resources in a Windows domain without having to log on to the Windows domain.


For more information about NFS, see Network File System. For more information about NFS account mapping, see NFS Account Mapping Guide and Identity Management for UNIX.



<

RELATED LINKS

Online Version: http://go.microsoft.com/fwlink/?linkid=287518
Get-NfsMappedIdentity
Remove-NfsMappedIdentity
Resolve-NfsMappedIdentity
Set-NfsMappedIdentity
Test-NfsMappedIdentity
Get-NfsMappingStore
Install-NfsMappingStore
Set-NfsMappingStore
Test-NfsMappingStore

REMARKS

<

Examples


Example 1: Create a mapped identify for a UNIX user account and a Windows user account

PS C:\> New-NfsMappedIdentity -MappingStore "AD" –Server "Contoso" -UserName "JBrown" -UserIdentifier 500 –GroupIdentifier 41



This command creates a mapped identity for a UNIX user that has a UID of 500, and maps it to the Windows account name Contoso\JBrown in a Windows group that has the group
identifier of 41. The command stores the mapped identity in the configured Active Directory domain of the local computer. If the user account does not already exist, the
command creates it.




Example 2: Create a mapped identity for a UNIX group account and a Windows group account

PS C:\> New-NfsMappedIdentity -MappingStore "Ldap" -GroupName "Operators" -GroupIdentifier 501 -Server "LdapServer01:389" -NfsServer "NFSServer-012"



This command creates a mapped identity for a UNIX group that has a group identifier of 501 and maps it to the Windows group account that is named Operators. The mapped
identity is stored in the configured LDAP store on the computer that is named LdapServer01, that the NFS server “NFSServer-012” uses. The command also creates a local group
account named Operators on the NFS server NFSServer-012 if it does not already exist.




Example 3: Create an identity mapping and create the user account and group account if they do not exist

PS C:\> New-NfsMappedIdentity -MappingStore "AD" –Server "Contoso" -UserName "JCool" -UserIdentifier 500 -GroupIdentifier 501 -PrimaryGroup "Operators"



This command creates a mapped identity for a UNIX user whose UID is 500 and maps it to the Windows account named Contoso\JCool. The mapped identity is stored in the Active
Directory domain named Contoso. If the user account Contoso\JCool does not exist, the command creates the user account. If the group account Operators does not exist, the
command creates the group, assigns GID 501 to the group, and adds the user account Contoso\JCool to the group.