Skip to main content
NetApp adopts Microsoft’s Business-to-Customer (B2C) Identity Management
Effective December 3 - NetApp adopts Microsoft’s Business-to-Customer (B2C) identity management to simplify and provide secure access to NetApp resources. For accounts that did not pre-register (prior to Dec 3) access to your NetApp data may take up to 1 hour as your legacy NSS ID is synchronized to the new B2C identity. To learn more, Read the FAQ and Watch the video. Need assistance? Complete this form and select “Registration Issue” as the Feedback Category. 
NetApp Knowledge Base

What is the maximum Kerberos token size (MaxTokenSize) that ONTAP can process?

Views:
484
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas
Last Updated:

 

Applies to

  • Clustered Data ONTAP
  • ONTAP 9

Answer

The Kerberos cryptographic authentication token allows the storage system to verify the identity and permissions of users and workstations. Group information for a particular user is stored in this token. If the user is part of a significant amount of groups, this token may exceed the 12K default set by Microsoft.

ONTAP also has limitations for this token based on the version:

  • Clustered Data ONTAP 8.2.2 and earlier - 16K
  • Clustered Data ONTAP 8.2.2 and later - 32K
  • Clustered Data ONTAP 8.3 and later - 64K
  • ONTAP 9.0 and later - 64K

Additional Information

Add your text here.