Skip to main content
NetApp Knowledge Base

Search

  • Filter results by:
    • View attachments
    Searching in
    About 19 results
    • Joining Active Directory(AD) domain fails with “Operation timed out”
      https://kb.netapp.com/on-prem/ontap/da/NAS/NAS-KBs/Joining_Active_Directory_AD_domain_fails_with_Operation_timed_out
      CIFS server joining AD domain fails with “TCP connection to ip, port 445 via interface failed: Operation timed out”. [    59] Created a machine account in the domain [  2060] TCP connection to ip , po...CIFS server joining AD domain fails with “TCP connection to ip, port 445 via interface failed: Operation timed out”. [    59] Created a machine account in the domain [  2060] TCP connection to ip , port 445 via interface failed: Operation timed out. [  2061] Unable to connect to LSA service on **[  2061] FAILURE: Unable to make a connection (LSA:), Error: command failed: Failed to create the Active Directory machine account "xxxxxx". Reason: SecD Error: no server available.
    • FAILURE: Unable to contact DNS to discover domain controllers
      https://kb.netapp.com/on-prem/ontap/da/NAS/NAS-KBs/FAILURE_Unable_to_contact_DNS_to_discover_domain_controllers
      FAILURE: Unable to contact DNS, domain controller unavailable, could not be contacted
    • "LDAP Error: Cannot contact the LDAP server" when attempting to join a SVM to an AD domain
      https://kb.netapp.com/on-prem/ontap/da/NAS/NAS-KBs/LDAP_Error__Cannot_contact_the_LDAP_server_when_attempting_to_join_a_SVM_to_an_AD_domain
      Applies to ONTAP 9 CIFS/SMB Issue The error LDAP Error: Cannot contact the LDAP server is present when joining an SVM to a Active Directory (AD) domain
    • What version of SMB that will be used for communication between ONTAP and a DC?
      https://kb.netapp.com/on-prem/ontap/da/NAS/NAS-KBs/What_version_of_SMB_that_will_be_used_for_communication_between_Ontap_and_a_DC
      The version of SMB that will be negotiated for communication between ONTAP and the DC will depend on the values for the following parameters to the vserver cifs security settings If the value of encry...The version of SMB that will be negotiated for communication between ONTAP and the DC will depend on the values for the following parameters to the vserver cifs security settings If the value of encryption-required-for-dc-connections is true then only SMB3 will be available for the session The default value for each of this options depends on the release of ONTAP, as of 9.8, SMB1 is false, SMB2 is system-default (true), and encryption is false
    • Admins cannot login to Admin SVM with AD account
      https://kb.netapp.com/on-prem/ontap/da/NAS/NAS-KBs/Admins_cannot_login_to_Admin_SVM_with_AD_account
      Applies to ONTAP 9 Active Directory (AD) Domain Tunnel Advanced Encryption Standard (AES) Issue Fail to connect to the Admin cluster using AD account Vserver is configured as tunnel for AD Access to t...Applies to ONTAP 9 Active Directory (AD) Domain Tunnel Advanced Encryption Standard (AES) Issue Fail to connect to the Admin cluster using AD account Vserver is configured as tunnel for AD Access to the cluster AES is configured on the AD for the secure netlogon
    • CIFS inaccessible by some clients using DNS name after AD object password reset
      https://kb.netapp.com/Legacy/ONTAP/7Mode/CIFS_inaccessible_by_some_clients_using_DNS_name_after_AD_object_password_reset
      The 7-Mode Active Directory (AD) computer object password is reset and users are unable to connect to CIFS shares with generic network error "windows Cannot Access the specified device path, path, or ...The 7-Mode Active Directory (AD) computer object password is reset and users are unable to connect to CIFS shares with generic network error "windows Cannot Access the specified device path, path, or file" "CIFS setup" is ran in Data ONTAP -Mode to re-synchronize the AD object password and this restores access, however some clients are still unable to connect using the DNS name All clients are able to ping the DNS name, which resolves to the correct IP address
    • Do I need to "modify" the SVM with the correct OU from the Active Directory?
      https://kb.netapp.com/on-prem/ontap/da/NAS/NAS-KBs/Do_I_need_to_modify_the_SVM_with_the_correct_OU_from_the_Active_Directory
      Applies to Active Directory No, this information is not used for normal operations. ONTAP does not rely on this information, it is for your knowledge to know where the account was located upon creatio...Applies to Active Directory No, this information is not used for normal operations. ONTAP does not rely on this information, it is for your knowledge to know where the account was located upon creation. Note: NetApp does not provide a way to maintain a sync for the location of the object. Consider manually modifying the server object with cifs modify Moving CIFS servers to different OUs vserver cifs modify Organizational Unit (OU) is not updated in ONTAP after Active Directory object move
    • How to verify whether the Signing/Seal and LDAPS are enabled from Secd log
      https://kb.netapp.com/on-prem/ontap/da/NAS/NAS-KBs/How_to_verify_whether_the_Signing_Seal_and_LDAPS_are_enabled_from_Secd_log
      Applies to ONTAP 9 Description How to verify whether the Signing/Seal & LDAPS are enabled from Secd log.
    • How to activate Central Policy tab after enabling Dynamic Access Control (DAC)
      https://kb.netapp.com/on-prem/ontap/da/NAS/NAS-KBs/How_to_activate_Central_Policy_tab_after_enabling_Dynamic_Access_Control_DAC
      Applies to ONTAP 9 CIFS Description Secure file access on CIFS servers by using: AD : Windows Active Directory CAP: Windows Central Access Policy DAC: Windows Dynamic Access Control GPO: Windows Group...Applies to ONTAP 9 CIFS Description Secure file access on CIFS servers by using: AD : Windows Active Directory CAP: Windows Central Access Policy DAC: Windows Dynamic Access Control GPO: Windows Group Policy Object In the advanced security properties of the CIFS share, the tab "Central Policy" is not visible
    • System Manager AD login hangs when using a read-only domain group
      https://kb.netapp.com/Legacy/OnCommand_Suite/System_Manager_AD_login_hangs_when_using_a_read-only_domain_group
      Applies to System Manager Active Directory (AD) ONTAP 9 Issue System Manager AD login hangs for a user part of a domain group with a read-only role
    • How to determine SMB protocol used for domain controller connection within an ONTAP SVM
      https://kb.netapp.com/on-prem/ontap/da/NAS/NAS-KBs/How_to_determine_SMB_protocol_used_for_domain_controller_connection_within_an_ONTAP_SVM
      Applies to ONTAP 9.2 and greater CIFS Active Directory Description ONTAP supports both SMB1 and SMB2 connections to domain controllers that are configured per SVM. This domain controller configuration...Applies to ONTAP 9.2 and greater CIFS Active Directory Description ONTAP supports both SMB1 and SMB2 connections to domain controllers that are configured per SVM. This domain controller configuration is different then the SVM client serving SMB configuration available.