Skip to main content
Effective December 3 - NetApp adopts Microsoft’s Business-to-Customer (B2C) identity management to simplify and provide secure access to NetApp resources. For accounts that did not pre-register (prior to Dec 3) access to your NetApp data may take up to 1 hour as your legacy NSS ID is synchronized to the new B2C identity. To learn more, Read the FAQ and Watch the video.
NetApp Knowledge Base

Where can I see what client IP addresses were denied by export policies?

Views:
11
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas
Last Updated:

Applies to

  • ONTAP 9
  • Export policies (for both NFS and CIFS)

Answer

  • Access denials due to export policy evaluations are logged in the mgwd.log file
  • To view this log file:
    • Navigate to the SPI at https://<cluster_mgmt_interface>/spi
    • Login with cluster admin credentials
    • For the node that the client attempted to connect to, select logs
    • select mlog
    • Locate the mgwd.log file and select it to download
    • Searching for the phrase "Authoritatively returning zero rules" within the document should identify any instance where a client was not authorized access when evaluated against the export policy rules for a volume

Additional Information

additionalInformation_text