Network Storage Protocols Discussions

Possible to map whole AD Group to unix user or group?

leonid_karchevsky

I need to provide access to Windows AD users (that are members of "ContribFTP") to a UNIX Volume (via CIFS share).

I want to map all of them to a specific UNIX user ("uxuser" for example).

It works great when I put users individually into /etc/usermap.cfg (i.e. *\user1 => uxuser), but I don't want to put every user in usermap.cfg and maintain it every time we add new user.

Is it possible to map ALL users inside "ContribFTP" group to "uxuser" ?

Adding entry to /etc/usermap.cfg:

*\contribftp => uxuser

doesn't work

If it's impossible, what about Windows (AD) group to UNIX group mapping? I didn't see such file (i.e. /etc/groupmap.cfg) anywhere...

1 REPLY 1

aborzenkov

As far as I know it is not possible. Also Windows does not really have notion of “primary group” for a user.

Announcements
NetApp on Discord Image

We're on Discord, are you?

Live Chat, Watch Parties, and More!

Explore Banner

Meet Explore, NetApp’s digital sales platform

Engage digitally throughout the sales process, from product discovery to configuration, and handle all your post-purchase needs.

NetApp Insights to Action
I2A Banner
Public