-maproot
anything that's written by root will show up as 'nobody'. In the absence of -maproot and -mapall options, remote accesses by root
will result in using a credential of -2:-2. All other users will be
mapped to their remote credential.
nobody:*:65534:65534:Unprivileged user:/nonexistent:/usr/sbin/nologin
nobody:*:65534:
nogroup:*:65533:
-maproot=0
. But beware of the security implications.