1. Managing SMB File Sharing and Windows Interoperability in Oracle Solaris 11.4
  2. Setting Up Identity Mapping Between Windows and Oracle Solaris Systems
  3. Managing Rule-Based Identity Mapping for Users and Groups
  4. Viewing Mapping Information
  5. Viewing All Established Mappings

Viewing All Established Mappings

Use the idmap dump command to view all of the SID-to-UID and SID-to-GID mappings that are stored in the cache.

By default, the idmap dump command lists only the mappings themselves. The -v option includes additional information about how the identity mapping was generated, which can help with troubleshooting. The -n option shows names instead of IDs. 

$ idmap dump -n
winuser:user3@a.user1.example.com <= uid:2147909633
winuser:user4@a.user1.example.com <= uid:2147909634
wingroup:Group Policy Creator Owners@a.user1.example.com == gid:2147917831
wingroup:Domain Admins@a.user1.example.com == gid:2147917832
wingroup:Enterprise Admins@a.user1.example.com == gid:2147917833
wingroup:Schema Admins@a.user1.example.com == gid:2147917834
wingroup:Netmon Users@a.user1.example.com == gid:2147917836
wingroup:Administrators@BUILTIN == gid:2147917837
usid:S-1-5-21-156362980-169493972-3399456007-500 == uid:2147917825
usid:S-1-5-21-156362980-169493972-3399456007-520 == gid:2147917826
usid:S-1-5-21-156362980-169493972-3399456007-512 == gid:2147917827
usid:S-1-5-21-156362980-169493972-3399456007-519 == gid:2147917828
usid:S-1-5-21-156362980-169493972-3399456007-518 == gid:2147917829
wingroup:Network == gid:2147557379
wingroup:Authenticated Users == gid:2147917830
winuser:administrator@solar == uid:2147926017
winuser:Administrator@a.user1.example.com == uid:2147557377
usid:S-1-5-21-156362980-169493972-3399456007-513 == gid:2147557378

  • To list only the user mappings:

    $ idmap dump -n | grep uid
winuser:user3@a.user1.example.com <= uid:2147909633
winuser:user4@a.user1.example.com <= uid:2147909634
usid:S-1-5-21-156362980-169493972-3399456007-500 == uid:2147917825
winuser:administrator@solar == uid:2147926017
winuser:Administrator@a.user1.example.com == uid:2147557377

  • To list only the group mappings:

    $ idmap dump -n | grep gid
wingroup:Group Policy Creator Owners@a.user1.example.com == gid:2147917831
wingroup:Domain Admins@a.user1.example.com == gid:2147917832
wingroup:Enterprise Admins@a.user1.example.com == gid:2147917833
wingroup:Schema Admins@a.user1.example.com == gid:2147917834
wingroup:Netmon Users@a.user1.example.com == gid:2147917836
wingroup:Administrators@BUILTIN == gid:2147917837
usid:S-1-5-21-156362980-169493972-3399456007-520 == gid:2147917826
usid:S-1-5-21-156362980-169493972-3399456007-512 == gid:2147917827
usid:S-1-5-21-156362980-169493972-3399456007-519 == gid:2147917828
usid:S-1-5-21-156362980-169493972-3399456007-518 == gid:2147917829
wingroup:Network == gid:2147557379
wingroup:Authenticated Users == gid:2147917830
usid:S-1-5-21-156362980-169493972-3399456007-513 == gid:2147557378