Periodic secd.ldap.noServers error messages in EMS after using start-TLS on port 636
Applies to
- ONTAP 9.5
- CIFS/SMB
- Active Directory (AD) LDAP server
- LDAP client configuration
Issue
- No impact on data access
- Every four hours EMS logs:
4/29/2020 14:22:14 node-01 EMERGENCY secd.ldap.noServers: None of the LDAP servers configured for Vserver (vserver1) are currently accessible via the network for LDAP service type (Service: LDAP (Active Directory), Operation: SiteDiscovery).
cifs security
option -use-start-tls-for-ad-ldap is set totrue
- LDAP server port specified in ONTAP ldap client configuration is set to
636
as per vserver services name-service ldap client show -fields port - Setting preferred DC does not resolve issue
- Configuring domain discovery to
none
does not resolve the issue