Movatterモバイル変換

Document Information

Preface

Introduction

System Administration Commands - Part 1

System Administration Commands - Part 2

mail.local(1M)

makedbm(1M)

makemap(1M)

makeuuid(1M)

masfcnv(1M)

mdlogd(1M)

mdmonitord(1M)

mdnsd(1M)

medstat(1M)

metaclear(1M)

metadb(1M)

metadetach(1M)

metadevadm(1M)

metahs(1M)

metaimport(1M)

metainit(1M)

metaoffline(1M)

metaonline(1M)

metaparam(1M)

metarecover(1M)

metarename(1M)

metareplace(1M)

metaset(1M)

metassist(1M)

metastat(1M)

metasync(1M)

metattach(1M)

mib2mof(1M)

mibiisa(1M)

mkbootmedia(1M)

mkdevalloc(1M)

mkdevmaps(1M)

mkfifo(1M)

mkfile(1M)

mkfs(1M)

mkfs_pcfs(1M)

mkfs_udfs(1M)

mkfs_ufs(1M)

mknod(1M)

mkntfs(1M)

mkpwdict(1M)

modinfo(1M)

modload(1M)

modunload(1M)

mofcomp(1M)

mofreg(1M)

monacct(1M)

monitor(1M)

mount(1M)

mountall(1M)

mountd(1M)

mount_hsfs(1M)

mount_nfs(1M)

mount_pcfs(1M)

mount_smbfs(1M)

mount_tmpfs(1M)

mount_udfs(1M)

mount_ufs(1M)

mpathadm(1M)

mpstat(1M)

msgid(1M)

mvdir(1M)

named(1M)

named-checkconf(1M)

named-checkzone(1M)

named-compilezone(1M)

ncaconfd(1M)

ncheck(1M)

ncheck_ufs(1M)

ndd(1M)

ndmpadm(1M)

ndmpd(1M)

ndmpstat(1M)

netadm(1M)

netcfg(1M)

netcfgd(1M)

netservices(1M)

netstat(1M)

netstrategy(1M)

newaliases(1M)

newfs(1M)

newkey(1M)

nfs4cbd(1M)

nfsd(1M)

nfslogd(1M)

nfsref(1M)

nfsstat(1M)

nscadm(1M)

nscd(1M)

nscfg(1M)

nslookup(1M)

nsupdate(1M)

ntfscat(1M)

ntfsclone(1M)

ntfscluster(1M)

ntfscmp(1M)

ntfscp(1M)

ntfsfix(1M)

ntfsinfo(1M)

ntfslabel(1M)

ntfsls(1M)

ntfsprogs(1M)

ntfsresize(1M)

ntfsundelete(1M)

nulladm(1M)

nwamd(1M)

obpsym(1M)

oplhpd(1M)

parted(1M)

pbind(1M)

pcitool(1M)

pginfo(1M)

pgstat(1M)

picld(1M)

ping(1M)

pkg2du(1M)

pkgadd(1M)

pkgadm(1M)

pkgask(1M)

pkgchk(1M)

pkgcond(1M)

pkgrm(1M)

plockstat(1M)

pntadm(1M)

polkit-is-privileged(1M)

pooladm(1M)

poolbind(1M)

poolcfg(1M)

poold(1M)

poolstat(1M)

ports(1M)

poweradm(1M)

poweroff(1M)

powertop(1M)

pppd(1M)

pppoec(1M)

pppoed(1M)

pppstats(1M)

praudit(1M)

prctmp(1M)

prdaily(1M)

projadd(1M)

projdel(1M)

projmod(1M)

prstat(1M)

prtacct(1M)

prtconf(1M)

prtdiag(1M)

prtdscp(1M)

prtfru(1M)

prtpicl(1M)

prtvtoc(1M)

psradm(1M)

psrinfo(1M)

psrset(1M)

pwck(1M)

pwconv(1M)

quot(1M)

quota(1M)

quotacheck(1M)

quotaoff(1M)

quotaon(1M)

raidctl(1M)

ramdiskadm(1M)

rarpd(1M)

rcapadm(1M)

rcapd(1M)

rctladm(1M)

rdate(1M)

rdisc(1M)

reboot(1M)

rem_drv(1M)

remove_allocatable(1M)

removef(1M)

reparsed(1M)

repquota(1M)

restricted_shell(1M)

rexd(1M)

rexecd(1M)

rlogind(1M)

rmmount(1M)

rmt(1M)

rmvolmgr(1M)

rndc(1M)

rndc-confgen(1M)

roleadd(1M)

roledel(1M)

rolemod(1M)

root_archive(1M)

route(1M)

routeadm(1M)

routed(1M)

rpcbind(1M)

rpc.bootparamd(1M)

rpcinfo(1M)

rpc.mdcommd(1M)

rpc.metad(1M)

rpc.metamedd(1M)

rpc.metamhd(1M)

rpc.rexd(1M)

rpc.rstatd(1M)

rpc.rusersd(1M)

rpc.rwalld(1M)

rpc.smserverd(1M)

rpc.sprayd(1M)

rpc.yppasswdd(1M)

rpc.ypupdated(1M)

rquotad(1M)

rsh(1M)

rshd(1M)

rstatd(1M)

rtc(1M)

rtquery(1M)

runacct(1M)

rusersd(1M)

rwall(1M)

rwalld(1M)

rwhod(1M)

sa1(1M)

sa2(1M)

sadc(1M)

sar(1M)

sasinfo(1M)

savecore(1M)

sbdadm(1M)

scadm(1M)

sckmd(1M)

scmadm(1M)

sconadm(1M)

sdpadm(1M)

sendmail(1M)

sf880drd(1M)

sftp-server(1M)

shadowd(1M)

shadowstat(1M)

share(1M)

shareall(1M)

sharectl(1M)

share_nfs(1M)

share_smb(1M)

showmount(1M)

shutacct(1M)

shutdown(1M)

slpd(1M)

smattrpop(1M)

smbadm(1M)

smbd(1M)

smbiod(1M)

smbiod-svc(1M)

smbios(1M)

smbstat(1M)

smrsh(1M)

smtnrhdb(1M)

smtnrhtp(1M)

smtnzonecfg(1M)

smtp-notify(1M)

sndradm(1M)

sndrd(1M)

sndrsyncd(1M)

snmpdx(1M)

snmp-notify(1M)

snmpXwbemd(1M)

snoop(1M)

soconfig(1M)

soladdapp(1M)

soldelapp(1M)

solstice(1M)

sppptun(1M)

spray(1M)

sprayd(1M)

srptadm(1M)

sshd(1M)

ssh-keysign(1M)

startup(1M)

statd(1M)

stclient(1M)

stmfadm(1M)

stmsboot(1M)

strace(1M)

strclean(1M)

strerr(1M)

sttydefs(1M)

su(1M)

sulogin(1M)

svadm(1M)

svcadm(1M)

svccfg(1M)

svc.configd(1M)

svc.ipfd(1M)

svc.startd(1M)

swap(1M)

sync(1M)

syncinit(1M)

syncloop(1M)

syncstat(1M)

sysconfig(1M)

sysdef(1M)

syseventadm(1M)

syseventconfd(1M)

syseventd(1M)

syslogd(1M)

talkd(1M)

tapes(1M)

tcxconfig(1M)

telnetd(1M)

tftpd(1M)

th_define(1M)

th_manage(1M)

tic(1M)

tncfg(1M)

tnchkdb(1M)

tnctl(1M)

tnd(1M)

tninfo(1M)

tpmadm(1M)

traceroute(1M)

trapstat(1M)

ttymon(1M)

tunefs(1M)

turnacct(1M)

txzonemgr(1M)

tzreload(1M)

tzselect(1M)

uadmin(1M)

ucodeadm(1M)

ufsdump(1M)

ufsrestore(1M)

umount(1M)

umountall(1M)

umount_smbfs(1M)

unlink(1M)

unshare(1M)

unshareall(1M)

unshare_nfs(1M)

System Administration Commands - Part 3

nfsmapid

- NFS user and group id mapping daemon

Synopsis

/usr/lib/nfs/nfsmapid

Description

Thenfsmapid daemon maps to and from NFS version 4owner andowner_group identification attributes and local UID and GID numbers used by boththe NFS version 4 client and server.

nfsmapid uses thepasswd andgroup entries in the/etc/nsswitch.conf file todirect how it performs the mappings.

Thenfsmapid daemon has no external, customer-accessible interfaces. You can, however, administrativelyconfigurenfsmapid in one of the following ways:

• Specify thenfsmapid_domain parameter in the SMF for NFS using thesharectl(1M) command.

• Specify the_nfsv4idmapdomain DNS resource record.

The currently selected NFSv4 domain is available in the file/var/run/nfs4_domain.

Please refer to theOracle Solaris Administration: Network ServicesOracle Solaris Administration: Network Services for further details.

SMF Management

Thenfsmapid service is managed by the service management facility,smf(5), underthe service identifier:

svc:/network/nfs/mapid

Administrative actions on this service, such as enabling, disabling, or requesting restart,can be performed usingsvcadm(1M). The service's status can be queried using thesvcs(1) command.

If it is disabled, it will be enabled bymount_nfs(1M),share_nfs(1M), andautomountd(1M), unless itsapplication/auto_enable property is set tofalse.

nfsmapid caches a user's UID and GID. If a user subsequently changesa UID or GID, using one of the utilities listed below, thenfsmapid cache becomes stale. At this point, any NFS operation that getsor set attributes will result in the exchange of this stale information. Toresolve this situation, restartnfsmapid, as follows:

#svcadm restart svc:/network/nfs/mapid:default

The startup SMF parameter designating a domain name (nfsmapid_domain) can be manipulatedwith thesharectl(1M) command.

nfsmapid_domain

The setting for the NFS SMF parameternfsmapid_domain overrides the domain used bynfsmapid for building and comparing outbound and inbound attribute strings, respectively. Also, this setting overrides any other mechanism for setting the NFSv4 domain. In the absence of anfsmapid_domain setting, thenfsmapid daemon determines the NFSv4 domain as follows:

• If a properly configured/etc/resolv.conf (seeresolv.conf(4)) exists,nfsmapid queries specified nameserver(s) for the domain.

• If a properly configured/etc/resolv.conf (seeresolv.conf(4)) exists, but the queried name server does not have a proper record of the domain name,nfsmapid attempts to obtain the domain name through theBIND interface (seeresolver(3RESOLV)).

• If no/etc/resolv.conf exists,nfsmapid falls back on using the configured domain name (seedomainname(1M)), which is returned with the leading domain suffix removed. For example, forwidgets.sales.acme.com,sales.acme.com is returned.

• If/etc/resolv.conf does not exist, no domain name has been configured (or no/etc/defaultdomain exists),nfsmapid falls back on obtaining the domain name from the host name, if the host name contains a fully qualified domain name (FQDN).

If a domain name is still not obtained following all of thepreceding steps,nfsmapid will have no domain configured. This results in thefollowing behavior:

• Outboundowner andowner_group attribute strings are encoded as literal ID's. For example, the UID 12345 is encoded as12345.

• nfsmapid ignores thedomain portion of the inbound attribute string and performs name service lookups only for the user or group. If the user/group exists in the local system name service databases, then the proper UID/GID will be mapped even when no domain has been configured.

This behavior implies that the same administrative user/group domain exists between NFSv4client and server (that is, the same UID/GIDs for users/groups on bothclient and server). In the case of overlapping ID spaces, the inboundattribute string could potentially be mapped to the wrong id. However, this isnot functionally different from mapping the inbound string tonobody, yet providesgreater flexibility. SeeEXAMPLES, below.

The utilities that allow you to change UID and GID are:

• usermod(1M)

• userdel(1M)

• groupmod(1M)

• groupdel(1M)

Files

/var/run/nfs4_domain

Contains the domain name currently used by NFSv4.

Examples

Example 1 Setting Domain Name

The following command usessharectl to set the domain name.

#sharectl set -p nfsmapid_domain=sun.com nfs

Thenfsmapid_domain property is described underNOTES, below.

Example 2 Obtaining Domain Name

The following command usessharectl to obtain the current domain name.

#sharectl get -p nfsmapid_domain nfsnfsmapid_domain=sun.com

Attributes

Seeattributes(5) for descriptions of the following attributes:

See Also

svcs(1),automountd(1M),domainname(1M),groupdel(1M),groupmod(1M),mount_nfs(1M),svcadm(1M),share_nfs(1M),sharectl(1M),userdel(1M),usermod(1M),resolver(3RESOLV),nfs(4),resolv.conf(4),attributes(5),smf(5)

Oracle Solaris Administration: Network Services

Notes

Thenfsmapid daemon might not exist in a future release of Solaris.