Help
Map Rights
Using this feature, you can map rights to AD users on a specific NSS volume. While doing so, you can choose to remove eDirectory trustees from the NSS file system and migrate the eDirectory IDs (owner, modifier, archiver, metadata modifier, and deletor) to AD users.
    To map rights:
  1. Click refresh.
  2. Select a volume on which you want to map rights to AD users, then select the source of user mapping: NetIQ IDM or User Map.

    Note: When IDM is used, the connection to eDirectory is established with secure SSL port 636. For information on creating user map using IDM, see NetIQ Identity Manager Documentation.

  3. If you have selected User Map, select the appropriate user map name, then click SHOW. The user map is displayed along with the rights that will be assigned to the AD users. You can hide the user map and rights details using the HIDE button.

    Note: You can also select multiple user maps and apply rights. If the user maps are old, you are prompted to refresh them. For more information, see Refreshing a User Map.

  4. Enable the following options as needed:
    • Apply To Salvage: Applies rights to AD users on salvaged files and folders.
    • Remove eDirectory Trustees: After assigning AD users as trustees, the eDirectory user as a trustee will be removed from the NSS file system.
    • Migrate IDs: Assign eDirectory trustee IDs (owner, modifier, archiver, metadata modifier, and deletor) to AD users.
  5. Click APPLY.
In the MAP RIGHTS page, you can delete, view status, view logs, and download logs of a mapped rights job.
  • Delete: Select a job, then click delete.
    Note: After deleting a mapped rights job, it can no longer be used to resynchronize the rights on the volume. Resynching of mapped rights is possible only using the user-rights-map command line utility.
  • View Status: Select a job, then point the cursor to progress to view the updated status of the job.
  • View and Download Log: Select a job, then click View. The Log Viewer page is displayed. Click DOWNLOAD to copy the log file.