Dell PowerVault NX200 User Manual

Using Your NAS System

31

Option 4: Active Directory Lightweight Directory Services (AD LDS) as

Identity Mapping Source

AD LDS is used for identity mapping on computers that run Windows Server

2008 in an environment where no Active Directory exists to support user

mapping.
Before you start AD LDS mapping:

• Determine the users and groups on the UNIX-based computer that must

be mapped to users and groups on the Windows-based computer.

• Get the UID and GID for each UNIX user, and the GID for each UNIX

group.

• Create a user or group on the Windows-based computer for each UNIX

user or group to be mapped.

NOTE:

Each UID and GID requires a unique mapping. You cannot use one-to-many

or many-to-one mappings.

To configure AD LDS for services for NFS you must:

1 Install the AD LDS server role.
2 Create a new AD LDS instance.
3 Extend the AD LDS schema to support NFS user mapping.
4 Set a default instance name for AD LDS instances.
5 Update the active directory schema.
6 Add user and group account maps from a UNIX-based computer to a

Windows-based computer.

7 Authorize appropriate access to the ADS LDS namespace object.
8 Configure the mapping source.

Installing the AD LDS Server Role
To install the AD LDS server role:

1 Click StartAdministrative Tools Server Manager.
2 In the console tree, right-click the Roles node, and then click Add Roles to

start the

Add Roles Wizard.

3 In the Add Roles Wizard, read the information in the Before You Begin

window and then click

Next.

book.book Page 31 Thursday, September 2, 2010 2:36 PM