Test-NfsMappedIdentity

Verifies that a mapped identity is correctly configured.

Syntax

Test-NfsMappedIdentity
    [-MappingStore <MappingStoreType>]
    [-UserIdentifier <Int32>]
    [-GroupIdentifier <Int32>]
    [-AccountName <String>]
    [-AccountType <AccountType>]
    [-SupplementaryGroups <String>]
    [<CommonParameters>]
Test-NfsMappedIdentity
    -MappingStore <MappingStoreType>
    [-Server <String>]
    [-LdapNamingContext <String>]
    [-UserIdentifier <Int32>]
    [-GroupIdentifier <Int32>]
    [-AccountName <String>]
    [-AccountType <AccountType>]
    [-SupplementaryGroups <String>]
    [<CommonParameters>]
Test-NfsMappedIdentity
    -MappingStore <MappingStoreType>
    [-MapFilesPath <String>]
    [-UserIdentifier <Int32>]
    [-GroupIdentifier <Int32>]
    [-AccountName <String>]
    [-AccountType <AccountType>]
    [-SupplementaryGroups <String>]
    [<CommonParameters>]

Description

The Test-NfsMappedIdentity cmdlet verifies a mapped identity and confirms that it is configured correctly. The Test-NfsMappedIdentity cmdlet checks a mapped identity for duplicate user identifiers (UIDs) or group identifiers (GIDs). It also validates that the user accounts are members of the correct group account according to the GIDs that are assigned to them.

Examples

Example 1: Verify a mapped identity that is stored in a AD LDS instance

PS C:\> Test-NfsMappedIdentity -MappingStore "LDAP" -AccountName "JCool" -AccountType "User" -Verbose
VERBOSE: No errors found.

This command verifies a mapped identity that is stored in a AD LDS instance on a server where this command is run..

Parameters

-AccountName

Specifies the SAMAccountName of the Windows user account or group account of a mapped identity.

Type:String
Aliases:aname, an
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-AccountType

Specifies the Windows account type of a mapped identity. Valid values are: User and Group.

Type:AccountType
Aliases:atype, at
Accepted values:User, Group
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-GroupIdentifier

Specifies the group identifier of a mapped identity.

Type:Int32
Aliases:GroupId, gid
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-LdapNamingContext

Specifies the Lightweight Directory Access Protocol (LDAP) naming context of an NFS identity mapping store. You can use this parameter to search for mapped identities in a specified naming context.

Type:String
Aliases:dn
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-MapFilesPath

Specifies the path of the passwd and group map files from which the Test-NfsMappedIdentity cmdlet obtains a mapped identity.

Type:String
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-MappingStore

Specifies the type of identity mapping store from which the Test-NfsMappedIdentity cmdlet gets a mapped identity. When this parameter is not specified, the Test-NfsMappedIdentity cmdlet obtains the store configuration settings from the NFS server configuration. Valid values are: AD, LDAP, and MapFiles.

Type:MappingStoreType
Aliases:store
Accepted values:Ad, Ldap, Mapfiles, Ad, Ldap, Mapfiles
Position:Named
Default value:None
Required:True
Accept pipeline input:True
Accept wildcard characters:False

-Server

Specifies the LDAP server name of the store that NFS server uses. This can be a domain name, Active Directory Lightweight Directory Services (AD LDS) server name, or LDAP server name. When this parameter is not specified, the Test-NfsMappedIdentity cmdlet tries to connect to either the LDAP store on the local computer at port 389 when MappingStore is LDAP, or the Active Directory domain of the computer when MappingStore is Active Directory.

Type:String
Aliases:LdapServer, ADDomainName
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-SupplementaryGroups

Specifies a comma-separated list of group names to verify the group membership of an account.

Type:String
Aliases:sg
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

-UserIdentifier

Specifies the user identifier of a UNIX user account from which the Test-NfsMappedIdentity cmdlet obtains a mapped identity.

Type:Int32
Aliases:UserId, uid
Position:Named
Default value:None
Required:False
Accept pipeline input:True
Accept wildcard characters:False

Outputs

None