Coming soon...New Support-Specific categorization of Knowledge Articles in the NetApp Knowledge Base site to improve navigation, searchability and your self-service journey.

Home
Advice and Troubleshooting
Data Storage Software
ONTAP OS
In a CIFS environment, with only RODC, Kerberos communication is not working

In a CIFS environment, with only RODC, Kerberos communication is not working

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 96

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: nas

Last Updated:

Applies to

ONTAP 9
CIFS
Domain Controller (DC)
- ReadOnlyDC (RODC)
- ReadWriteDC (RWDC)
Kerberos
Demilitarized zone (DMZ)

Issue

In a CIFS environment, with only RODC, Kerberos communication is not working
- secd: secd.unexpectedFailure:debug: vserver (<vserver>) Unexpected failure. Error: Lookup of CIFS account SID procedure failed Successfully connected to ip <rodc>, port 445 using TCP Improper format of Kerberos configuration file (KRB5_CONFIG_BADFORMAT) Failed to initiate Kerberos authentication. Trying NTLM. Encountered NT error (NT_STATUS_MORE_PROCESSING_REQUIRED) for SMB command SessionSetup Successfully authenticated with DC <rodc> Could not find Windows SID '<sid>' FAILURE: SID lookup failed