Exciting new changes are coming to the Knowledge Base site soon!
Starting April 4, 2023, you will notice Support-Specific categorization and improvements to the search filters on the site. In May, we will be launching a new and enhanced Site UI and Navigation. To know more, read our Knowledge Article.

Home
Advice and Troubleshooting
Data Storage Software
ONTAP OS
Why do I see the secd.ldap.noServers in the EMS log?

Why do I see the secd.ldap.noServers in the EMS log?

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 292

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: nas

Last Updated:

Applies to

ONTAP 9
LDAP with Start-TLS
CVE-2017-8563 / ADV190023

Answer

Microsoft added a security enhancement for LDAP with StartTLS where Domain Controllers require channel binding tokens

This feature is currently not supported in ONTAP 9
This Feature Request - 1136213 is open with NetApp Engineering to implement the LDAP Channel Binding functionality

Additional Information

For more information / workaround please see: Microsoft Security Advisory: ADV190023 impact on NetApp appliance running CIFS\NFS utilizing Microsoft Active Directory LDAP servers