Skip to main content
NetApp Knowledge Base

Will ONTAP be negatively impacted by Microsoft update that caused Samba Bug 15786?

  1. Last updated
  2. Save as PDF
Views:
945
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas
Last Updated:

Applies to

  • ONTAP 9
  • Samba
  • CIFS/SMB
  • Active Directory
  • Netlogon
  • Microsoft KB5062572
  • Microsoft KB5062557

Answer

  • NetApp Support currently does not expect ONTAP to be negatively impacted by Microsoft's July 8, 2025 security update for Active Directory Domain Controllers for Windows Server versions prior to 2025, which caused Samba bug 15786
    • As part of the update a security hardening change to the Microsoft RPC Netlogon protocol is applied, causing Domain Controllers to reject certain anonymous Netlogon RPC requests
  • The Microsoft update breaks the AD idmapping functionality, which ONTAP does not use
  • Internal testing by NetApp Support showed no impact from the Microsoft update
  • ONTAP has its own unique Unix to Windows or Windows to Unix user mapping functionality which doesn't apply to the Samba usermap feature that mentioned in KB5062557.

Additional Information

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.