idmap

Idmap, short for identity mapping, is a mechanism for translating identity information between different naming systems. In mixed Windows and Unix environments, it is used to map Windows Security Identifiers (SIDs) to Unix-style user and group IDs (UIDs and GIDs). This mapping enables correct file ownership and access control on POSIX filesystems when accessing resources from a Windows domain or a Samba domain.

In Samba and related systems, idmap is a framework consisting of a daemon (idmapd) and multiple backend

Configuration is typically done in smb.conf or idmap.conf, with per-domain settings such as idmap config DOMAIN:backend

Idmap is essential for cross-platform interoperability, ensuring that file ownership and permissions reflect the correct identities