Skip to main content
NetApp Response to Russia-Ukraine Cyber Threat
In response to the recent rise in cyber threat due to the Russian-Ukraine crisis, NetApp is actively monitoring the global security intelligence and updating our cybersecurity measures. We follow U.S. Federal Government guidance and remain on high alert. Customers are encouraged to monitor the Cybersecurity and Infrastructure Security (CISA) website for new information as it develops and remain on high alert.
NetApp Knowledge Base

Cluster SVM unable to authenticate with Active Directory LDAP

Views:
33
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas
Last Updated:

Applies to

  • ONTAP 9
  • Cluster SVM
  • Active Directory LDAP

Issue

  • Configured Microsoft AD LDAP authentication for Cluster SVM, ONTAP fails to retrieve the UNIX user credential
::> set advanced 
::*> vserver services name-service getxxbyyy getpwbyname -node node1 -vserver ClusterSVM -username ntaptest -show-source true -use-cache false
Error: command failed: Failed to resolve ntaptest. Reason: Entry not found for "username: ntaptest 
  • SecD log shows the below event
Error: Acquire UNIX credentials procedure failed
Entry for user-name: ntaptest not found in the current
source: FILES. Ignoring and trying next available source
[ 6] Using a cached connection to dc01.netapp.local
[ 3301] FAILURE: User 'ntaptest' not found in UNIX authorization source LDAP.
[ 3301] Entry for user-name: ntaptest not found in the current
source: LDAP. Entry for user-name: ntaptest not found in any of the available sources
[ 3303] Unable to retrieve UID for UNIX user ntaptest
Error: command failed: Failed to resolve user name to a UNIX ID. Reason: "SecD Error: object not found".
 
  • uid,uidNumber,gidNumber are emtpy when querying UNIX Attributes from Active Directory with Powershell

PS Z:\> get-ADuser <user>-Properties * | select SamAccountName,gidnumber,uidNumber,uid

Scan to view the article on your device
CUSTOMER EXCLUSIVE CONTENT

Registered NetApp customers get unlimited access to our dynamic Knowledge Base.

New authoritative content is published and updated each day by our team of experts.

Current Customer or Partner?

Sign In for unlimited access

New to NetApp?

Learn more about our award-winning Support