VSCAN software McAfee (Trellix) ENSSP fails to release locks on files resulting CIFS client getting Access Denied

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 870

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: nas

Last Updated:

Applies to

ONTAP 9
McAfee EndPoint Security Storage 2.1 (ENSSP)
McAfee EndPoint Security Storage 2.2 (ENSSP)
Vscan

Issue

CIFS client gets access denied when trying to access the file
After enabling sectrace vserver sectrace trace-result show shows reason Access is denied because a delete is pending on this object for the file that client gets access denied

::> vserver sectrace trace-result show Vserver: svm1

Node Index Filter Details Reason --------------- ----- -------------------------- ------------------------------ NODE-A 1 Security Style: - Access is denied because a delete is pending on this object Protocol: cifs Volume: - Share: vol1$ Path: /q03/sftp/request/testfile.Req Win-User: NASLAB\user1 UNIX-User: root Session-ID: 3419639492094821024

vserver lock show shows File is locked by VSCAN server which performs the scan of the file

::> vserver lock show -vserver svm1 -volume vol1 -path /vol1/q03/sftp/request/testfile.Req Vserver: svm1 Volume Object Path LIF Protocol Lock Type Client -------- ------------------------- ----------- --------- ----------- ---------- vol1 /vol1/q03/sftp/request/testfile.Req lif1 cifs op-lock 10.xx.xx.96 Oplock Level: null share-level 10.xx.xx.96 Sharelock Mode: none-deny_none

NOTE : Here 10.xx.xx.96 is the vscan server IP address