Professional Documents
Culture Documents
P/N 300-002-715
Rev A01
Version 5.5
March 2006
Contents
Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3
Terminology . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .3
User mapping concepts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .6
Configuring user mapping in Windows-only environments . . . . . . . .7
Configuring user mapping in multiprotocol environments . . . . . . . .8
How user mapping works . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .9
System requirements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .10
EMC NAS Interoperability Matrix. . . . . . . . . . . . . . . . . . . . . . . . . . . . .10
User interface choices. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .11
Using Celerra Manager to configure user mapping . . . . . . . . . . . . .11
User mapping roadmap. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .13
Using Internal Usermapper . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .14
Restrictions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .14
Planning considerations . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .15
Using the default single-Celerra Usermapper configuration . . . . . .16
Configuring a multi-Celerra Usermapper environment. . . . . . . . . . .16
Managing Usermapper . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .20
Changing Usermapper default configuration settings . . . . . . . . . . .25
Using External Usermapper . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .27
Using the Active Directory . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .28
Celerra UNIX user management snap-in . . . . . . . . . . . . . . . . . . . . . .28
Celerra UNIX users and groups property page extension . . . . . . . .29
Using local files . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .30
Task 1: Copy files from the Data Mover . . . . . . . . . . . . . . . . . . . . . . .31
Task 2: Add Windows domain name as a group name . . . . . . . . . . .32
Task 3: Add Windows usernames. . . . . . . . . . . . . . . . . . . . . . . . . . . .33
Task 4: Copy files to the Data Mover . . . . . . . . . . . . . . . . . . . . . . . . .34
Using NIS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .35
Using user account migration tools. . . . . . . . . . . . . . . . . . . . . . . . . . . . . .37
Celerra UNIX Attributes Migration tool . . . . . . . . . . . . . . . . . . . . . . .37
NTMigrate . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .37
Configuring the primary group mapping for file system objects . . . . . .38
Using user UNIX GIDs for file system objects . . . . . . . . . . . . . . . . . .38
Determining the GIDs on copied file system objects . . . . . . . . . . . .39
Troubleshooting user mapping . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .41
Error messages. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .41
Known problems and limitations . . . . . . . . . . . . . . . . . . . . . . . . . . . .43
1 of 48
2 of 48
Version 5.5
Introduction
Every user of the Celerra Network Server, either a Windows user or a UNIX user,
must be identified by a unique numeric user identifier (UID) and group identifier
(GID). Windows, however, does not use numeric IDs to identify users. Instead, it
uses strings called security identifiers (SIDs). Therefore, before you configure the
Windows file-sharing service (referred to as CIFS) on your Celerra Network Server,
you must select a method of mapping Windows SIDs to UIDs and GIDs. The
method you use depends on whether you have a Windows-only or UNIX and
Windows (multiprotocol) environment. These methods include:
Active Directory
Local files
This technical module is part of the Celerra Network Server information set and is
intended for system administrators responsible for configuring and managing
Windows user ID mapping.
Terminology
This section defines terms important to understanding user mapping capabilities on
the Celerra Network Server. The Celerra Network Server User Information
Glossary provides a complete list of Celerra terminology.
ACL (Access control list): A list of access control entries (ACEs) that provide
information about the users and groups that are allowed access to an object.
Active Directory: An advanced directory service included with Windows 2000
Version 5.5
3 of 48
Data Mover: A Celerra Network Server cabinet component running the DART
operating system that retrieves files from a storage device and makes the files
available to a network client.
DNS (Domain Name System): A name resolution software that allows users to locate
computers and services on a UNIX network or TCP/IP network by name. The DNS
server maintains a database of domain names, hostnames and their corresponding
IP addresses, and services provided by these hosts.
domain: A logical grouping of Microsoft Windows servers and other computers that
share common security and user account information. All resources such as
computers and users are members of the domain and have an account in the
domain that uniquely identifies them. The domain administrator creates one user
account for each user in the domain, and the users log in to the domain once. Users
do not log in to each individual server.
GID (group identifier): A number assigned to a particular group of users.
Kerberos: An authentication, data integrity, and data privacy encryption mechanism
(inodes) that a user or group of users can create in a production file system. Quotas
control the amount of disk space and the number of files that a user or group of
users can consume.
secondary Usermapper service: In a multi-Celerra environment, an instance of the
Usermapper service that forwards requests for user mappings to the primary
Usermapper service and returns those mappings to the Data Movers in addition to
storing the mappings it processes.
SID (security identifier): A unique identifier that defines a user or group in a
Microsoft Windows environment. Each user or group has its own SID.
UID (user identifier): A number that corresponds to a particular user.
user file: Refers to the passwd file that resides on each Data Mover.
Usermapper: A service that automatically maps distinct Windows users and groups
to distinct UNIX-style UIDs and GIDs.
Usermapper host: A machine that runs an External Usermapper daemon or service.
4 of 48 Version 5.5
Microsoft Windows NT server using a SAM database to manage user and group
accounts and a NetBIOS namespace. In a Windows NT domain, there is one
primary domain controller (PDC) that has a read/write copy of the SAM, and
possibly several backup domain controllers (BDCs) with read-only copies of the
SAM.
WINS (Windows Internet Naming Service): A Microsoft name resolution system that
Version 5.5
5 of 48
Like the Celerra Network Server, UNIX versions 2 and 3 use UIDs and GIDs to
identify users and groups. Consequently, the Celerra Network Server can use the
UIDs and GIDs supplied by UNIX without requiring any additional mappings.
Windows, however, does not use numeric IDs to identify users. Instead, it uses
strings called security identifiers (SIDs). Therefore, before you configure the
Windows file-sharing service (referred to a CIFS) on your Celerra Network Server,
you must select a method of mapping Windows SIDs to UIDs and GIDs. You select
a mapping method based on whether you have a Windows-only or UNIX and
Windows (multiprotocol) environment.
Figure 1 identifies the factors that determine the user mapping technique best
suited for your environment.
6 of 48 Version 5.5
Start
Do users have
both UNIX and
Windows
accounts?
No, Windows-only
Usermapper
Yes
Is Active Directory
Active Directory
or UNIX your primary user
mapping management
environment?
UNIX
Do you have
only one Windows
domain or user names
that are unique across
all your Windows
domains?
Yes
NIS and
cifs.resolver parameter
No
Local files
CNS-000598
Internal Usermapper is part of the Data Mover's software. It does not require a
separate installation and, in the case of a new Celerra Network Server, requires
no additional configuration procedures.
External Usermapper runs as a daemon on a Celerra Control Station. It requires
a separate installation as well as additional configuration and management
procedures.
Version 5.5
7 of 48
Usermapper by default. External Usermapper Version 3.1 and earlier versions are
maintained only for existing customers until they can transition to Internal
Usermapper.
Note: Before you configure and run Usermapper, note these restrictions:
- You should have only one primary Usermapper in a Celerra Network Server environment.
- You should not run External Usermapper and Internal Usermapper simultaneously in the
same Celerra environment.
Note: If a user in a multiprotocol environment will only use a single logon (either through
Windows or UNIX), then it is acceptable to use Usermapper. If a user has only one account,
mapping to an equivalent identity in the other environment is not necessary.
8 of 48 Version 5.5
Version 5.5
9 of 48
System requirements
This section describes the Celerra Network Server software, hardware, network,
and storage configurations required for using user mapping as described in this
technical module.
Table 1
Software
Hardware
Network
Storage
Verify that sufficient space is available in the root file system. Contact your EMC
Customer Support Representative for assistance with determining size
requirements.
10 of 48 Version 5.5
Celerra Monitor
Monitoring Celerra
Naming
service
NIS
To configure the Data Mover as an NIS client, select Celerras > [Celerra_name] >
Network and click the NIS Settings tab.
Usermapper
To configure Usermapper, select Celerras > [Celerra_name] > CIFS and click the
Usermappers tab.
Note: Celerra Manager can be used to configure Internal Usermapper services as
well as upgrade or migrate an existing External Usermapper by transferring the
primary Usermapper service from the Control Station to the Data Mover.
Version 5.5
11 of 48
For more information on using Celerra Manager to configure user mapping, refer to
the Celerra Manager online help.
Note: You can also use the configuration wizards to set up the use of NIS or basic Internal
Usermapper.
12 of 48 Version 5.5
Task
Procedure
Use NIS.
Version 5.5
13 of 48
Restrictions
Before you configure and run Usermapper, note these restrictions:
14 of 48 Version 5.5
Planning considerations
Before you begin using Internal Usermapper, consider the following situations:
Usermapper stops mapping new UIDs and GIDs once the root file system of the
Data Mover on which the Usermapper database is stored becomes 95 percent
full. In this situation, new users will not be allowed access to system objects.
The size of the root file system that is required is based on the number of users
in your Windows environment. Contact your EMC Customer Support
Representative for assistance with determining size requirements.
If you are replicating a Windows environment that uses Usermapper or if you
are using the Symmetrix Remote Data Facility (SRDF), special Usermapper
restrictions may apply. Contact your EMC Customer Support Representative for
more information.
In Internal Usermapper, the UID and GID ranges are fixed in the Usermapper
database and Usermapper automatically assigns new UIDs and GIDs based on
the next available value. Therefore, it does not need to use a Usermapper
configuration file to define UID and GID ranges. However, it is possible to import
an existing usrmap.cfg and use this file to define UID and GID ranges. This is
referred to as the manual mapping method. Once the ranges defined in the
usrmap.cfg file are enabled, Internal Usermappers automatic mapping
method maintains this information and prevents duplicate mappings.
Note: If there is no special reason to use particular UID and GID ranges for your
environments domains, EMC encourages you to use the automatic mapping method
and let Internal Usermapper automatically assign new UIDs and GIDs based on the
next available values. If a future revision to the usrmap.cfg file cannot be avoided,
contact your EMC Customer Support Representative for assistance.
Version 5.5
15 of 48
16 of 48 Version 5.5
Note: If you have a Celerra Network Server environment in which there multiple Celerra
Network Servers that do not share the same Windows domain, each domain should be
configured with its own primary Usermapper service.
The online Celerra man pages or the Celerra Network Server Command Reference
Manual provide a detailed synopsis of the commands and syntax conventions
presented in this section.
Table 4
Task
Action
Procedure
1.
2.
3.
4.
Note: In the following description, the Celerra Network Server that supports the primary
Usermapper service is referred to as Celerra 1 and the Celerra Network Server that runs the
secondary Usermapper service is referred to as Celerra 2.
Output
server_2 : Usrmapper service: Enabled
Service Class: Primary
Version 5.5
17 of 48
Output
server_2 : done
Note: No user mapping requests should be sent to the primary Usermapper service on
Celerra 2 before you have reconfigured it. Consequently, you should not configure CIFS on
the Celerra 2 Data Movers until the Usermapper service is reconfigured as a secondary
service.
18 of 48 Version 5.5
Action
To enable a secondary Usermapper service, use this command syntax:
$ server_usermapper <movername> -enable primary=<ip addr>
Where:
<movername> = name of the specified Data Mover
<ip addr> = network IP address of the Data Mover on which the primary Usermapper service is
runnning
Example:
To enable a secondary Usermapper service on server_2 of Celerra 2, type:
$ server_usermapper server_2 -enable primary=192.168.21.1
Output
server_2 : done
Output
server_2 : Usrmapper service: Enabled
Service Class: Secondary
Primary = 192.168.21.1
Version 5.5
19 of 48
Managing Usermapper
This section describes the tasks you perform to manage Usermapper.
The online Celerra man pages or the Celerra Network Server Command Reference
Manual provide a detailed synopsis of the commands and syntax conventions
presented in this section.
Table 5
Management task
Procedure
Back up Usermapper.
Action
To display the status of the Usermapper service, use this command syntax:
$ server_usermapper <movername>
Where:
<movername> = name of the specified Data Mover
Example:
To display the status of the Usermapper service on server_2, type:
$ server_usermapper server_2
20 of 48 Version 5.5
Output
Note
Action
To display the Usermapper service used by a Data Mover, use this command syntax:
$ server_cifs <movername>
Where:
<movername> = name of the specified Data Mover
Example:
To display the Usermapper service used by server_3, type:
$ server_cifs server_3
Output
server_3 :
96 Cifs threads started
Security mode = NT
Max protocol = NT1
I18N mode = UNICODE
Home Directory Shares DISABLED
Usermapper auto broadcast enabled
Usermapper[0]=[192.168.1.2] state:active (auto discovered)
Usermapper[1]=[192.168.2.2] state:active (auto discovered)
Default WINS servers = 192.168.4.230
Enabled interfaces: (All interfaces are enabled)
Disabled interfaces: (No interface disabled)
Note
This example shows that server_3 is using the Usermapper service located on server_2 at
internal IP addresses 192.168.1.2 and 192.168.2.2, the service is available, and the service was
located using the auto-discovery broadcast.
Version 5.5
21 of 48
22 of 48 Version 5.5
Output
server_2 : done
To import group information into the Usermapper database, use the following
command syntax.
Action
To import group information into the Usermapper database, use this command syntax:
$ server_usermapper <movername> -Import -group <pathname>
Where:
<movername> = name of the specified Data Mover
<pathname> = name and location of the user file to be imported
Example:
To import group information into the Usermapper database on server_2, type:
$ server_usermapper server_2 -Import -group /nas/cifs/usrmapperV3/linux/
usrmap.group
Output
server_2 : done
Version 5.5
23 of 48
To export user information from the Usermapper database, use the following
command syntax.
Action
To export user information from the Usermapper database, use this command syntax:
$ server_usermapper <movername> -Export -user <pathname>
Where:
<movername> = name of the specified Data Mover
<pathname> = name and location of the file to which information is to be exported
Example:
To export user information from the Usermapper database on server_2, type:
$ server_usermapper server_2 -Export -user /home/nasadmin/backup.passwd
Output
server_2 : done
To export group information from the Usermapper database, use the following
command syntax.
Action
To export group information from the Usermapper database, use this command syntax:
$ server_usermapper <movername> -Export -group <pathname>
Where:
<movername> = name of the specified Data Mover
<pathname> = name and location of the file to which information is to be exported
Example:
To export group information from the Usermapper database on server_2, type:
$ server_usermapper server_2 -Export -group /home/nasadmin/backup.group
Output
server_2 : done
24 of 48 Version 5.5
Backing up Usermapper
Use the following procedure to back up your Internal Usermapper configuration.
Step
Action
1.
As root, dump the password and group files to a specified directory by typing:
$ server_usermapper server_2 -Export -user /home/nasadmin/
backup.passwd
$ server_usermapper server_2 -Export -group /home/nasadmin/
backup.group
2.
Make a backup copy of the current usrmap.cfg file (if one is in use) by typing:
$ cp /nas/rootfs/slot_2/.etc/usrmapper/usrmap.cfg /home/nasadmin/
usrmap.cfg
3.
usrmap minuid
usrmap maxuid
usrmap mingid
usrmap maxgid
You can view and dynamically modify parameter values using the server_param
command or the Celerra Manager graphical user interface. This technical module
describes only the command-line procedures. The Celerra Manager Online Help
explains how to use the graphical user interface to modify parameter values. The
Celerra Network Server Parameters Guide describes all Celerra Network Server
parameters.
Version 5.5
25 of 48
To change one of the default Usermapper UID or GID minimum or maximum values
(refer to Table 6), use the following command syntax.
Action
To change one of the default Usermapper UID or GID minimum or maximum values, use this
command syntax:
$ server_parameter <movername> -facility <facility_name> -modify
<param_name> -value <new_value>
Where:
<movername> = name of the specified Data Mover
<facility_name> = name of the facility to which the parameter belongs
<param_name> = name of the parameter
<new_value> = value you want to set for the specified parameter
Example:
To change the minimum UID value, type:
$ server_param server_2 -facility usrmap -modify minuid -value 32
Note: Parameter and facility names are case-sensitive.
Output
server_2 : done
Usermapper parameters
Module
Parameter
Value
Comment/Description
usrmap
minuid
16 - 2^31-1
Default 16
16 - 2^31-1
Default 2^31-1
16 - 2^31-1
Default 16
16 - 2^31-1
Default 2^31-1
usrmap
usrmap
usrmap
maxuid
mingid
maxgid
Note: If you have imported a preexisting configuration file, these UID and GID range limits
only apply when a new Usermapper database entry is created. Once the database is
created, you cannot change maximum UID and GID values.
26 of 48 Version 5.5
Version 5.5
27 of 48
28 of 48 Version 5.5
Version 5.5
29 of 48
If you have added usernames and groupnames to the local files without a domain
association, you can set the cifs.resolver parameter so the Data Mover looks
for the names without appending the domain. "Using NIS" on page 35 provides a
description of using the cifs.resolver parameter.
When editing the passwd and group files, the following rules apply:
All of the entries (Windows names, usernames, domain names, global group
names) in the passwd and group files must be entered in lowercase ASCII
only.
Any spaces in Windows domain or group names should be replaced with =20 so
that they become legal in a UNIX-style passwd or group file.
If you are using UNIX user authentication, issue the server_user command
to generate an encrypted password in the password field, but do not include the
domain as part of the username.
Note: The Configuring Celerra Naming Services technical module provides additional
information on using local files for naming services.
Use this procedure to manually add Windows users and groups to the passwd and
group files on the Data Mover.
The online Celerra man pages or the Celerra Network Server Command Reference
Manual provide a detailed synopsis of the commands and syntax conventions
presented in this section.
Table 7
Task
30 of 48 Version 5.5
Action
Procedure
1.
2.
Table 7
Task
Action
Procedure
3.
4.
CAUTION
This command overwrites existing files of the same name without notification. Use
care when copying files.
Action
To copy the passwd or group file, use the following command syntax for each file:
$ server_file <movername> -get <src_file> <dst_file>
Where:
<movername> = name of the specified Data Mover
<src_file> = name of the source file
<dst_file> = name of the destination file
Example:
To copy the passwd file to /home/nasadmin/passwd, type:
$ server_file server_2 -get passwd /home/nasadmin/passwd
Output
server_2 : done
Version 5.5
31 of 48
32 of 48 Version 5.5
Version 5.5
33 of 48
CAUTION
This command overwrites existing files of the same name without notification. Use
care when copying files.
Action
To copy the passwd or group file, type the following for each file:
$ server_file <movername> -put <src_file> <dst_file>
Where:
<movername> = name of the specified Data Mover
<src_file> = name of the source file
<dst_file> = name of the destination file
Examples:
$ server_file server_2 -put passwd passwd
$ server_file server_2 -put group group
Output
server_2 : done
34 of 48 Version 5.5
Using NIS
If your multiprotocol environment consists primarily of UNIX users and has only one
Windows domain, or usernames that are unique across multiple Windows domains,
you can use NIS to manage user and group mapping.
The Configuring Celerra Naming Services technical module provides information
on configuring a Data Mover to access a NIS server. For information about
manually updating the NIS passwd and group maps, refer to your NIS server
documentation.
Note: All of the entries (Windows names, usernames, domain names, global group names)
in the passwd and group maps must be entered in lowercase ASCII only.
Output
server_2 : done
Version 5.5
35 of 48
cifs.resolver parameter
Module
Parameter
Value
Comment/Description
cifs
resolver
0 (default) or 1
You can view and dynamically modify parameter values using the server_param
command or the Celerra Manager graphical user interface. This technical module
describes only the command-line procedures. The Celerra Manager Online Help
explains how to use the graphical user interface to modify parameter values. The
Celerra Network Server Parameters Guide describes all Celerra Network Server
parameters.
36 of 48 Version 5.5
NTMigrate
NTMigrate
NTMigrate is a tool that migrates Windows users to an existing UNIX UID/GID
database (local passwd file or NIS). NTMigrate collects user information from the
Windows domain and merges it with UNIX password and group files.
NTMigrate is best suited for mapping large Windows domains into UNIX UIDs and
GIDs.
The Using NTMigrate with Celerra technical module provides more information.
Version 5.5
37 of 48
For NFS: When a FSO is created from a UNIX client, the FSO GID is taken from
the GID supplied by the UNIX client (based on the creators primary group).
For CIFS: When a FSO is created from a Windows client, the GID can be
determined in the following ways:
(Default) The file system object GID is taken from the GID associated with
the creators primary group.
The file system object GID is taken from a users UNIX primary group as
defined in the passwd file, NIS, or Active Directory.
38 of 48 Version 5.5
To set the GID mapping for file system objects created on an Windows client to the
Windows users GID stored in the passwd file, NIS, or Active Directory, use the
following command syntax.
Action
To set the GID mapping for file system objects created on an Windows client to the Windows
users GID, use this command syntax:
$ server_parameter <movername> -facility <facility_name> -modify
<param_name> -value <new_value>
Where:
<movername> = name of the specified Data Mover
<facility_name> = name of the facility to which the parameter belongs
<param_name> = name of the parameter
<new_value> = value you want to set for the specified parameter
Example:
To set the GID mapping for file system objects created on an Windows client to the Windows
users GID, type:
$ server_param server_2 -facility cifs -modify acl.useUnixGid -value 1
Note: Parameter and facility names are case-sensitive.
Output
server_2 : done
Module
Parameter
Value
Comment/Description
cifs
acl.useUnixGid
0 (default) or 1
Version 5.5
39 of 48
You can view and dynamically modify parameter values using the server_param
command or the Celerra Manager graphical user interface. This technical module
describes only the command-line procedures. The Celerra Manager Online Help
explains how to use the graphical user interface to modify parameter values. The
Celerra Network Server Parameters Guide describes all Celerra Network Server
parameters.
To change the source of the GID for the copied FSO (that is, determine that the
primary group is derived from the source specified by the acl.useUnixGid
parameter), use the following command syntax.
Action
To determine that the primary group is derived from the source specified by the acl.useUnixGid
parameter, use this command syntax:
$ server_parameter <movername> -facility <facility_name> -modify
<param_name> -value <new_value>
Where:
<movername> = name of the specified Data Mover
<facility_name> = name of the facility to which the parameter belongs
<param_name> = name of the parameter
<new_value> = value you want to set for the specified parameter
Example:
To determine that the primary group is derived from the source specified by the acl.useUnixGid
parameter, type:
$ server_param server_2 -facility cifs -modify acl.takegroupship
-value 1
Note: Parameter and facility names are case-sensitive.
Output
server_2 : done
Module
Parameter
Value
Comment/Description
cifs
acl.takegroupship
0 (default) or 1
40 of 48 Version 5.5
Error messages
Table 11 lists Usermapper error messages and their descriptions. These error
messages are written to the Celerra Network Servers system log (/nas/log/
sys_log). The Celerra Network Server Error Messages Guide contains additional
information on error messages.
Table 11 Usermapper server log error messages
Message text
Description
Corrective action
Cannot connect
(to the server,
primary,
secondary,
etc...)
A connection or connections
among the Usermapper services
and/or Data Movers are down.
Internal error
Invalid input
Version 5.5
41 of 48
Message text
Description
Corrective action
Primary down
RPC error
System error
42 of 48 Version 5.5
Message text
Description
Corrective action
UID account
request error
Known problem
Symptom
Workaround
Error 4020:
<movername>:failed to
complete command
Internal Usermapper stops
mapping new UIDs and
GIDs once the root file
system of the Data Mover
(where the Usermapper
database is stored)
becomes 95% full. New
users will be denied access
to system objects.
Version 5.5
43 of 48
44 of 48 Version 5.5
Facility
name
Facility
ID
Facility
description
USRMAP
93
Monitors
Usermapper events
Event ID
Event
description
Usermapper OK
Usermapper database
created
Usermapper service
enabled
Usermapper service
stopped
Usermapper database
destroyed
Usermapper available
Usermapper unreachable
Related information
For specific information related to the features and functionality described in this
technical module, refer to:
The Celerra Network Server Documentation CD, supplied with your Celerra
Network Server and also available on Powerlink, provides general information on
other EMC Celerra publications.
Version 5.5
45 of 48
46 of 48 Version 5.5
Index
A
Active Directory 28
C
Celerra Manager, using 11
cifs acl.takegroupship parameter 39
cifs acl.useUnixGid parameter 38
configuration
default 16
multicabinet 16
secondary 16
settings, modifying 25
N
NIS 35
P
parameters 25
cifs acl.takegroupship 39
cifs acl.useUnixGid 38
password and group files 30, 35
primary groups 38
R
restrictions 8
S
SID history 15
snap-ins, UNIX User Management 28
database, modifying 24
tools
UNIX Attribute Migration 37
UNIX User Management 28
UNIX Users and Groups property page extension 29
error messages 41
cannot connect 41
internal error 41
no more gids 42
no more uids 42
No record for the domain 41
primary error 41
primary is down 42
request not supported 42
RPC error 42
system error 42
uid account request error 43
events, list of USRMAP 44
exporting database information 23
External Usermapper 27
G
GIDs
on copied files 39
using UNIX GIDs 38
I
importing database information 22
installation 16
Internal Usermapper 14
L
local files 30
M
mapping
primary groups 38
user IDs, resolution order 9
MMC snap-ins 28
multiprotocol environments 8
Configuring Celerra User Mapping
U
UNIX Attributes Migration tool 37
UNIX User and Groups property page extenion 29
UNIX User Manager snap-in 28
user ID resolution
local files 30
NIS 35
UNIX Attributes Migration tool 37
UNIX User and Groups property page extension 29
UNIX User Manager snap-in 28
user IDs, look-up order 9
Usermapper
default configuration 16
error messages 41
exporting database information 23
external 7
importing database information 22
internal 7
modifying
database 24
default settings 25
multicabinet configuration 16
restrictions 8, 14
one primary only 8
secondary configuration 16
using secondary service 16
W
Windows-only environments 7
Version 5.5
47 of 48
48 of 48 Version 5.5