Installing Windows IDMU

The Identity Management for UNIX (IDMU) feature is included in Windows Server. This feature needs to be installed on the primary domain controller, as well as on any backup domain controllers. It is not installed by default. There are two components that need to be installed in order for IDMU to function correctly. This applies to Windows Server 2012 R2 and preceding versions.

Note: IDMU was deprecated in Windows Server 2012 and is not included in Windows Server 2016.

For more information, see instructions on editing RFC 2307 attributes in Configuring ID mappings in Active Directory Users and Computers for Windows Server 2016 (and subsequent) versions.

The only way to achieve Windows-Unix user-mapping in GPFS is with RFC 2307 attributes. These attributes can be administered by using Identity Mapping for Unix (IMU) from Microsoft in Windows Server versions up to and including Windows Server 2012 R2. Beginning Windows Server 2016, these RFC 2307 attributes can be specified by using the Active Directory Users and Computers (ADUC) MMC Snap-in.

To add the IDMU service when Active Directory is running on Windows Server 2008, follow these steps:
  1. Open Server Manager.
  2. Under Roles, select Active Directory Domain Services.
  3. Under Role Services, select Add Role Services.
  4. Under the Identity Management for UNIX role service, select Server for Network Information Services.
  5. Click Next, then Install.
  6. Restart the system when the installation completes.