Search

CIFS users who should be denied access are granted access
https://kb.netapp.com/on-prem/ontap/da/NAS/NAS-KBs/CIFS_users_who_should_be_denied_access_are_granted_access
Applies to ONTAP 9 CIFS Issue A non-default membership in Builtin\Administrators group allows users to achieve administrative access to CIFS resources
A user or group that is a member of local "BUILTIN\Administrators" group does not get assigned predefined default privileges
https://kb.netapp.com/on-prem/ontap/da/NAS/NAS-KBs/A_user_or_group_that_is_a_member_of_local_BUILTIN_Administrators_group_does_not_get_assigned_predefined_default_privileges
Applies to ONTAP 9.x For a user/group that is member of local BUILTIN\Administrators group, the user credentials do not list the predefined default privileges This can result in errors for example whe...Applies to ONTAP 9.x For a user/group that is member of local BUILTIN\Administrators group, the user credentials do not list the predefined default privileges This can result in errors for example when changing the ownership of files from Windows security tab Below command will only list the "SeChangeNotifyPrivilege" privilege ::> set advanced ::*> vserver services access-check authentication show-creds -node node1 -vserver SVM1 -win-name DOMAIN\user Privileges (0x22a0): SeChangeNotifyPrivilege