Server for NFS uses reverse mapping to map permissions between a security descriptor on the Server for NFS computer and a UID/GID/Mode triplet on the NFS client. To specify a mapping between the UNIX client user identifier (UID) and group identifier (GID) and their corresponding Windows users and groups, use the User Name Mapping administration in Services for UNIX Administration.
A given UID can be mapped to any Windows user. This mapping specifies the UID or GID to use when a mapped user or group is found to be the owner of a file. If the given UID is not mapped, the Anonymous logon account is used. Results can be unpredictable when this happens. All UIDs should be mapped to a valid Windows account.
A given GID can be mapped to any Windows group. If the given GID is not mapped, a group entry for NullGroup is placed in the discretionary access control list (DACL).
In the examples, assume the following client and server configurations: