How to manually unblock SMB/CIFS access that blocked by Workload security
- Views:
- 158
- Visibility:
- Public
- Votes:
- 0
- Category:
- data-infrastructure-insights
- Specialty:
- bluexp_insights
- Last Updated:
Applies to
NetApp Workload Security
Answer
Manually Restore Users for SMB
Use the following steps to manually restore any users from ONTAP if your Workload Security trial expires, or if the agent/collector is down.
You can get the list of users blocked in Workload Security from the users list page.
-
Login to the ONTAP cluster (where you want to unblock users) with cluster admin credentials. (For Amazon FSx, login with FSx credentials).
-
Run the following command to list all users blocked by Workload Security for SMB in all SVMs:
::> vserver name-mapping show -direction win-unix -replacement " "Vserver: <vservername>
Direction: win-unix
Position Hostname IP Address/Mask
-------- ---------------- ----------------
1 - - Pattern: CSLAB\\US040
Replacement:
2 - - Pattern: CSLAB\\US030
Replacement:
2 entries were displayed.
In the above output, 2 users were blocked (US030, US040) with domain CSLAB.
-
Once we identify the position from the above output, run the following command to unblock the user:
::> vserver name-mapping delete -direction win-unix -position <position>
-
Confirm the users are unblocked by running the command:
::> vserver name-mapping show -direction win-unix -replacement " "
No entries should be displayed for the users previously blocked.
Additional Information