"mgwd: nameserv.ddns.bulk.failure:debug" due to lack of permission

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 295

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: nas

Last Updated:

Applies to

ONTAP 9
DDNS

Issue

Multiple entries in EMS similar to:

[?] Thu Aug 31 09:09:09 -0900 [node-01: mgwd: nameserv.ddns.bulk.failure:debug]: DDNS add operation has failed for all or some of the logical interfaces having FQDN "svm_01.sub.net" for Vserver "svm_01".

Unable to update the DNS entry by manually triggering a DDNS add operation

::> vserver services name-service dns dynamic-update record add -vserver svm_01 -LIF svm_01_data_lif

Error: command failed: failed to send DNS update

Signature in packet trace
- Ensure that ONTAP will send the DDNS add request to only a single DNS server

::> vserver services name-service dns modify -vserver <> -domains <> -name-servers <IP of single DNS server>

capture packet trace, filtering for the single DNS server

::> network trace start -node <> -port <> -address <IP of single DNS server>

reproduce the error
the packet trace shows that the Dynamic update response frame has the flag Refused

Indication in DNS Manager
- open DNS Manager
- right-click the DNS entry
- click Properties
- click Security
- the Security tab shows that the SVM's machine account is not in the list of authorized users