Test-NfsMappedIdentity

Test-NfsMappedIdentity

Verifies that a mapped identity is correctly configured.

Syntax

Parameter Set: DefaultSettings
Test-NfsMappedIdentity [-MappingStore <MappingStoreType> {Ad | Ldap | Mapfiles} ] [ <CommonParameters>]

Parameter Set: AdAdlds
Test-NfsMappedIdentity -MappingStore <MappingStoreType> {Ad | Ldap | Mapfiles} [-LdapNamingContext <String> ] [-Server <String> ] [ <CommonParameters>]

Parameter Set: AllParameterSets
Test-NfsMappedIdentity [-AccountName <String> ] [-AccountType <AccountType> {User | Group} ] [-GroupIdentifier <Int32> ] [-SupplementaryGroups <String> ] [-UserIdentifier <Int32> ] [ <CommonParameters>]

Parameter Set: MapFiles
Test-NfsMappedIdentity -MappingStore <MappingStoreType> {Ad | Ldap | Mapfiles} [-MapFilesPath <String> ] [ <CommonParameters>]

Detailed Description

The Test-NfsMappedIdentity cmdlet verifies a mapped identity and confirms that it is configured correctly. The Test-NfsMappedIdentity cmdlet checks a mapped identity for duplicate user identifiers (UIDs) or group identifiers (GIDs). It also validates that the user accounts are members of the correct group account according to the GIDs that are assigned to them.

Parameters

-AccountName<String>

Specifies the SAMAccountNam of the Windows user account or group account of a mapped identity.

-AccountType<AccountType>

Specifies the Windows account type of a mapped identity. Supported values are: User and Group.

-GroupIdentifier<Int32>

Specifies the group identifier of a mapped identity.

-LdapNamingContext<String>

Specifies the Lightweight Directory Access Protocol (LDAP) naming context of an NFS identity mapping store. You can use this parameter to search for mapped identities in a specified naming context.

-MapFilesPath<String>

Specifies the path of the passwd and group map files from which the Test-NfsMappedIdentity cmdlet obtains a mapped identity.

-MappingStore<MappingStoreType>

Specifies the type of identity mapping store from which the Test-NfsMappedIdentity cmdlet gets a mapped identity. When this parameter is not specified, the Test-NfsMappedIdentity cmdlet obtains the store configuration settings from the NFS server configuration. Valid values are: AD, LDAP, and MapFiles.

-Server<String>

Specifies the LDAP server name of the store that NFS server uses. This can be a domain name, Active Directory Lightweight Directory Services (AD LDS) server name, or LDAP server name. When this parameter is not specified, the Test-NfsMappedIdentity cmdlet tries to connect to either the LDAP store on the local computer at port 389 when MappingStore is LDAP, or the Active Directory domain of the computer when MappingStore is Active Directory.

-SupplementaryGroups<String>

Specifies a comma-separated list of group names to verify the group membership of an account.

-UserIdentifier<Int32>

Specifies the user identifier of a UNIX user account from which the Test-NfsMappedIdentity cmdlet obtains a mapped identity.

<CommonParameters>

This cmdlet supports the common parameters: -Verbose, -Debug, -ErrorAction, -ErrorVariable, -OutBuffer, and -OutVariable. For more information, see    about_CommonParameters (https://go.microsoft.com/fwlink/p/?LinkID=113216).

Inputs

The input type is the type of the objects that you can pipe to the cmdlet.

Outputs

The output type is the type of the objects that the cmdlet emits.

• Nothing

Examples

Example 1: Verify a mapped identity that is stored in a configured AD LDS instance

This command verifies a mapped identity that is stored in a AD LDS instance on a server where this command is run..

PS C:\> Test-NfsMappedIdentity -MappingStore "LDAP" -AccountName "JCool" -AccountType "User" -Verbose

Related topics

Get-NfsMappedIdentity

New-NfsMappedIdentity

Remove-NfsMappedIdentity

Resolve-NfsMappedIdentity

Set-NfsMappedIdentity

Get-NfsMappingStore

Install-NfsMappingStore

Set-NfsMappingStore

Test-NfsMappingStore