User and Group Mappings

In order to provide security for DataSafe NAS files accessed from a UNIX environment, the NFS service requires the system administrator to map UNIX user or group accounts to their twin accounts on the DataSafe NAS. Users then have equivalent access rights under UNIX as they have under Microsoft Windows. Alternatively, sites with less stringent security needs can bypass the mapping procedure and treat all UNIX users as anonymous users.

User And Group Mappings lets you create maps between Windows and UNIX user and group accounts even though the user and group names in both environments may not be identical. Perhaps most important, User and Group Mappings lets you maintain a single mapping database for the entire enterprise.

In addition to one-to-one mapping between Windows and UNIX user and group accounts, User and Group Mappings permits one-to-many mapping. This lets you associate multiple UNIX accounts with a single Windows account, or multiple Windows accounts with a single UNIX account. This can be useful, for example, when you do not need to maintain separate UNIX accounts for individuals and would rather use a few accounts to provide different classes of access permissions.

You can use simple maps, which map Windows and UNIX accounts with identical names. You can also create advanced maps to associate Windows and UNIX accounts with different names, which you can use in conjunction with simple maps. Furthermore, with User and Group Mappings, you can obtain UNIX user, password, and group information from one or more NIS servers, or from imported password and group files.

DataSafe NAS User’s Manual

69

Page 74
Image 74
Iomega Network Device manual User and Group Mappings