Allowing root access to resources

You can allow UNIX users to have root access to resources.

Assign the client computer root access when the share is exported. See Configure access for a client computer or group.
Map the UNIX user root (UID 0) to the Windows user Administrator. Also, map the group to which root belongs to the Windows group Administrators.
Map the UNIX group to which permission will be granted to a Windows group.

For example, consider a situation in which the directory Testdir is owned by Administrators. This directory was created with an account that is a member of the Windows group Administrators. The permissions listed were set after the directory was created. At the UNIX client, the permissions look like this:

ls -ld /testdir drwxrwxr-x 2 root root 64 Nov 3 12:11 /testdir/

When the directory is owned by Administrators, Server for NFS reports a user identifier (UID) and group identifier (GID) pair of 0,0. If you follow the procedure above, a chgrp command on the UNIX computer will succeed and will appear as follows:

chgrp users /testdir ls -ld /testdir drwxrwxr-x 2 root users 64 Nov 3 12:11 /testdir/

When chgrp is run on the UNIX client, only three network file system (NFS) permissions are written as Windows permissions, and the owner of the directory is now Administrator. By default, Server for NFS removes all discretionary access control lists (DACL) entries, then writes the three regular NFS entries (owner, group, and other).