Skip to main content
NetApp Knowledge Base

CIFS inaccessible by some clients using DNS name after AD object password reset

Views:
4,099
Visibility:
Public
Votes:
1
Category:
data-ontap-7
Specialty:
7dot
Last Updated:

Applies to

  • Data ONTAP 7-Mode
  • Microsoft Windows
  • CIFS

Issue

  • The 7-Mode Active Directory (AD) computer object password is reset and users are unable to connect to CIFS shares with generic network error "windows Cannot Access the specified device path, path, or file"
  • "CIFS setup" is ran in Data ONTAP -Mode  to re-synchronize the AD object password and this restores access, however some clients are still unable to connect using the DNS name
  • All clients are able to access using the IP address
  • All clients are able to ping the DNS name, which resolves to the correct IP address
  • The Service Principle Names (SPN) and DNS configuration is validated
  • No errors are seen in Windows Event Viewer or EMS in ONTAP
  • Preferred Domain Controllers (DCs)  are set in Data ONTAP 7-Mode and some DCs are rebooted
  • Time is within 5 minutes on AD servers, clients, and the storage system (no time skew)
  • A packet trace is collected to reveal clients receive "KRB5KRB_AP_ERR_MODIFIED" error on SMB session setup
  • This may be accompanied by the following errors in EMS:
    • cifs.server.errorMsg:error]: CIFS: Error for server \<VSERVER>: CIFS Session Setup Error STATUS_MORE_PROCESSING_REQUIRED.
    • cifs.server.errorMsg:error]: CIFS: Error for server \<DC>: Response is incorrectly signed.

 

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.