Reference Guide
NOTE: Modifying a SID to UID mapping can impact security. Use with caution.
Usage:
svc_nas_cifssupport --server SERVERNAME | ALL -args="-secmap
-list
[ -user <user_name> -domain <domain_name>
| -domain <domain_name>
| -sid <SID>
| -uid <user_id>
| -gid <group_id> ]
| -create {-name <name> -domain <domain_name> | -sid <SID> }
| -update {-name <name> -domain <domain_name> | -sid <SID> }
| -delete {-name <name> -domain <domain_name> | -sid <SID> }
| -export [-file <filename>]
| -import -file <filename>
| -report"
-list [ -user
<user_name> -
domain
<domain_name> |
-domain
<domain_name> |
-sid <SID> | -uid
<user_id> | -gid
<group_id> ]
List the Secure Mapping entries, filtered by the specified options.
-create {-name
<name> -domain
<domain_name> |
-sid <SID> }
Add a new mapping entry in the Secure Mapping database.
-update {-name
<name> -domain
<domain_name> |
-sid <SID> }
Update a mapping entry from the Secure Mapping database.
-delete {-name
<name> -domain
<domain_name> |
-sid <SID> }
Delete a mapping entry from the Secure Mapping database.
-export [-file
<filename>]
Export Secure Mapping database to the specified file.
-import -file
<filename>
Import Secure Mapping database from the specified file.
-report Display Secure Mapping database health and content.
NOTE: Modifying SID/UID mapping can potentially affect security. Use these options with caution.
-setspn
Manage Windows security principals (SPNs) of the specified computer that is joined to AD.
NOTE:
SPNs are required for domain configurations in which the DNS domain is different than
authentication domain (Kerberos realm). For example, if the DNS server zone includes a DNS
CNAME record that maps compname.<domain1 FQDN> to compname.<server's domain
FQDN>, then the SPN host compname.<domain1 FQDN> must be added for the compname.
Usage:
svc_nas_cifssupport --server SERVERNAME | ALL -args="-setspn
-list compname=<comp_name>
| -add <SPN>
compname=<comp_name>,domain=<full_domain_name>,admin=<admin_name>
| -delete <SPN>"
48
Service Commands