How name mapping works
When ONTAP has to map credentials for a user, it first checks the local name mapping database and LDAP server for an existing mapping. Whether it checks one or both and in which order is determined by the name service configuration of the SVM.
For Windows to Linux mapping
If no mapping is found, ONTAP checks whether the lowercase Windows user name is a valid user name in the Linux domain. If this does not work, it uses the default Linux user provided that it is configured. If the default Linux user is not configured and ONTAP cannot obtain a mapping this way either, mapping fails and an error is returned.
For Linux to Windows mapping
If no mapping is found, ONTAP tries to find a Windows account that matches the Linux name in the SMB domain. If this does not work, it uses the default SMB user, provided that it is configured. If the default CIFS user is not configured and ONTAP cannot obtain a mapping this way either, mapping fails and an error is returned.
Machine accounts are mapped to the specified default Linux user by default. If no default Linux user is specified, machine account mappings fail.
Beginning with ONTAP 9.5, you can map machine accounts to users other than the default Linux user.
In ONTAP 9.4, you cannot map machine accounts to other users.
Even if name mappings for machine accounts are defined, the mappings are ignored.