This is the built-in help made by Microsoft for the command 'New-NfsMappedIdentity', in PowerShell version 3 - as retrieved from
Windows version 'Microsoft Windows Server 2012 Standard' PowerShell help files on 2016-06-23.
For PowerShell version 3 and up, where you have Update-Help, this command was run just before creating the web pages from the help files.
Creates a new NFS mapped identity.
New-NfsMappedIdentity [-PrimaryGroup <String>] [-SupplementaryGroups <String>] -NfsServer [<String>] -NfsServerPassword [<SecureString>]
-NfsServerUser [<String>] -UserIdentifier <Int32> -UserName <String> [-Confirm [<SwitchParameter>]] [-WhatIf [<SwitchParameter>]]
[<CommonParameters>]
New-NfsMappedIdentity [-LdapNamingContext <String>] [-MappingStore {Ad | Ldap | Mapfiles}] [-NfsServer [<String>]] [-NfsServerPassword
[<SecureString>]] [-NfsServerUser [<String>]] [-Password <SecureString>] [-Server <String>] -GroupIdentifier <Int32> [-Confirm
[<SwitchParameter>]] [-WhatIf [<SwitchParameter>]] [<CommonParameters>]
New-NfsMappedIdentity -GroupName <String> -NfsServer [<String>] -NfsServerPassword [<SecureString>] -NfsServerUser [<String>] [-Confirm
[<SwitchParameter>]] [-WhatIf [<SwitchParameter>]] [<CommonParameters>]
The New-NfsMappedIdentity cmdlet creates a new Network File System (NFS) mapped identity between a UNIX user account or group account and a
Windows user account or group account. If a specified user account or group account does not exist, the New-NfsMappedIdentity cmdlet can
create the account, set its user ID (UID) and group ID (GID) attributes, and update user membership in the group.
A mapped identity associates a Windows user account or group account to a UNIX user account or group account. A UID or GID identifies a UNIX
account namespace. These elements are associated with the corresponding elements of a Windows account namespace: a user name or a group name.
By using a mapped identity, a user who is logged on to a UNIX domain can access shared resources in a Windows domain without having to log on
to the Windows domain.
For more information about NFS, see Network File System. For more information about NFS account mapping, see NFS Account Mapping Guide and
Identity Management for UNIX.
<
Get-NfsMappedIdentity
Remove-NfsMappedIdentity
Resolve-NfsMappedIdentity
Set-NfsMappedIdentity
Test-NfsMappedIdentity
Get-NfsMappingStore
Install-NfsMappingStore
Set-NfsMappingStore
Test-NfsMappingStore
<
Example 1: Create a mapped identify for a UNIX user account and a Windows user account
PS C:\> New-NfsMappedIdentity -MappingStore "AD" –Server "Contoso" -UserName "JBrown" -UserIdentifier 500 –GroupIdentifier 41
This command creates a mapped identity for a UNIX user that has a UID of 500, and maps it to the Windows account name Contoso\JBrown in a
Windows group that has the group identifier of 41. The command stores the mapped identity in the configured Active Directory domain of the
local computer. If the user account does not already exist, the command creates it.
Example 2: Create a mapped identity for a UNIX group account and a Windows group account
PS C:\> New-NfsMappedIdentity -MappingStore "Ldap" -GroupName "Operators" -GroupIdentifier 501 -Server "LdapServer01:389" -NfsServer
"NFSServer-012"
This command creates a mapped identity for a UNIX group that has a group identifier of 501 and maps it to the Windows group account that is
named Operators. The mapped identity is stored in the configured LDAP store on the computer that is named LdapServer01, that the NFS server
“NFSServer-012” uses. The command also creates a local group account named Operators on the NFS server NFSServer-012 if it does not already
exist.
Example 3: Create an identity mapping and create the user account and group account if they do not exist
PS C:\> New-NfsMappedIdentity -MappingStore "AD" –Server "Contoso" -UserName "JCool" -UserIdentifier 500 -GroupIdentifier 501 -PrimaryGroup
"Operators"
This command creates a mapped identity for a UNIX user whose UID is 500 and maps it to the Windows account named Contoso\JCool. The mapped
identity is stored in the Active Directory domain named Contoso. If the user account Contoso\JCool does not exist, the command creates the
user account. If the group account Operators does not exist, the command creates the group, assigns GID 501 to the group, and adds the user
account Contoso\JCool to the group.