Dell PowerVault NX300 User Manual

Using Your NAS System

31

Option 4: Active Directory Lightweight Directory Services (AD LDS) as

Identity Mapping Source

AD LDS is used for identity mapping on computers that run Windows

Server 2008 R2 in an environment where no Active Directory exists to

support user mapping.
Before you start AD LDS mapping:

• Determine the users and groups on the UNIX-based computer that must

be mapped to users and groups on the Windows-based computer.

• Get the UID and GID for each UNIX user, and the GID for each UNIX

group.

• Create a user or group on the Windows-based computer for each UNIX

user or group to be mapped.

NOTE:

Each UID and GID requires a unique mapping. You cannot use one-to-many

or many-to-one mappings.

To configure AD LDS for services for NFS you must:

1 Install the AD LDS server role.
2 Create a new AD LDS instance.
3 Extend the AD LDS schema to support NFS user mapping.
4 Set a default instance name for AD LDS instances.
5 Update the active directory schema.
6 Add user and group account maps from a UNIX-based computer to a

Windows-based computer.

7 Authorize appropriate access to the ADS LDS namespace object.
8 Configure the mapping source.

Installing the AD LDS Server Role

1 Click StartAdministrative Tools Server Manager.
2 In the console tree, right-click the Roles node, and click Add Roles to start

the

Add Roles Wizard.

book.book Page 31 Thursday, May 19, 2011 10:45 AM