Skip to main content
NetApp Knowledge Base

secd.ldap.noservers because LDAP server(s) overloaded

  1. Last updated
    Jun 5, 2025
  2. Save as PDF
Views:
14
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas
Last Updated:
6/5/2025, 3:32:58 PM

Applies to

  • ONTAP 9
  • LDAP

Issue

  • EMS says secd.ldap.noServers

    • 4/2/2025 01:00:10 node-03 EMERGENCY secd.ldap.noServers: None of the LDAP servers configured for Vserver (svm1) are currently accessible via the network for LDAP service type (Service: LDAP (NIS & Name Mapping), Operation: MapNameWindowsToUnix).

  • SECD says LDAP server does not send bind response 
    • 00000008.0249fc2b 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [000.004.377]  info :  Successfully connected to ip y.y.y.y, port 389 using TCP { in _connect() at src/connection_manager/secd_connection_shim.cpp:548 }
00000008.0249fc2c 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [003.005.541]  debug:  ldap_sasl_bind_s returned -5  { in ldapSaslBindSpnego() at src/connection_manager/secd_connection.cpp:854 }
00000008.0249fc2d 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [003.005.582]  ERR  :  RESULT_ERROR_LDAPSERVER_TIMEOUT:7646 in ldapSaslBindSpnego() at src/connection_manager/secd_connection.cpp:864
00000008.0249fc2e 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [003.005.590]  ERR  :  ldapSaslBindSpnego: LDAP Error: (-5): 'Timed out': 
00000008.0249fc2f 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [003.005.604]  ERR  :  RESULT_ERROR_LDAPSERVER_TIMEOUT:7646 in ldapSaslBind() at src/connection_manager/secd_connection.cpp:1098
00000008.0249fc30 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [003.005.608]  debug:  Attempting a simple bind as ""  { in ldapConnectNIS() at src/connection_manager/secd_connection.cpp:1393 }
00000008.0249fc31 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [006.006.565]  debug:  Simple bind failed, LDAP Error: (-5): Timed out.  Attempting anonymous bind.  { in ldapConnectNIS() at src/connection_manager/secd_connection.cpp:1438 }
00000008.0249fc32 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [009.008.016]  ERR  :  RESULT_ERROR_LDAPSERVER_TIMEOUT:7646 in ldapConnectNIS() at src/connection_manager/secd_connection.cpp:1452
00000008.0249fc33 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [009.008.026]  ERR  :  ldapConnectNIS: LDAP Error: (-5): 'Timed out': 
00000008.0249fc34 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [009.008.031]  ERR  :  RESULT_ERROR_LDAPSERVER_TIMEOUT:7646 in connect() at src/connection_manager/secd_connection.cpp:2642
00000008.0249fc35 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [009.008.044]  ERR  :  Vserver 5 could not connect or authenticate to ldap server (linux-ldap-auth) at address y.y.y.y with error Timed out.  { in connect() at src/connection_manager/secd_connection.cpp:2673 }
  • Packet trace says LDAP server does not send bind response 
    • 2905 2025-04-04 05:00:01.380793 5.453313000 x.x.x.x y.y.y.y TCP 36424 → 389 [SYN] Seq=0 Win=65535 Len=0 MSS=1460 WS=256 SACK_PERM TSval=3864138879 TSecr=0
2906 2025-04-04 05:00:01.381032 0.000239000 y.y.y.y x.x.x.x TCP 389 → 36424 [SYN, ACK] Seq=0 Ack=1 Win=65160 Len=0 MSS=1460 SACK_PERM TSval=987395845 TSecr=3864138879 WS=512
2907 2025-04-04 05:00:01.381064 0.000032000 x.x.x.x y.y.y.y TCP 36424 → 389 [ACK] Seq=1 Ack=1 Win=65792 Len=0 TSval=3864138879 TSecr=987395845
2908 2025-04-04 05:00:01.381102 0.000038000 x.x.x.x y.y.y.y LDAP bindRequest(1) "<ROOT>" , NTLMSSP_NEGOTIATEsasl
2909 2025-04-04 05:00:01.381362 0.000260000 y.y.y.y x.x.x.x TCP 389 → 36424 [ACK] Seq=1 Ack=132 Win=65536 Len=0 TSval=987395845 TSecr=3864138879
2910 2025-04-04 05:00:04.383387 3.002025000 x.x.x.x y.y.y.y LDAP bindRequest(2) "<ROOT>" simple
2911 2025-04-04 05:00:04.384103 0.000716000 y.y.y.y x.x.x.x TCP 389 → 36424 [ACK] Seq=1 Ack=146 Win=65536 Len=0 TSval=987398848 TSecr=3864141881
2912 2025-04-04 05:00:07.384161 3.000058000 x.x.x.x y.y.y.y LDAP bindRequest(3) "<ROOT>" simple
2913 2025-04-04 05:00:07.384456 0.000295000 y.y.y.y x.x.x.x TCP 389 → 36424 [ACK] Seq=1 Ack=160 Win=65536 Len=0 TSval=987401848 TSecr=3864144882
2914 2025-04-04 05:00:10.408839 3.024383000 x.x.x.x y.y.y.y LDAP unbindRequest(4)
2915 2025-04-04 05:00:10.408848 0.000009000 x.x.x.x y.y.y.y TCP 36424 → 389 [FIN, ACK] Seq=167 Ack=1 Win=65792 Len=0 TSval=3864147907 TSecr=987401848
2916 2025-04-04 05:00:10.409043 0.000195000 y.y.y.y x.x.x.x TCP 389 → 36424 [ACK] Seq=1 Ack=167 Win=65536 Len=0 TSval=987404873 TSecr=3864147907
2917 2025-04-04 05:00:10.449107 0.040064000 y.y.y.y x.x.x.x TCP 389 → 36424 [ACK] Seq=1 Ack=168 Win=65536 Len=0 TSval=987404913 TSecr=3864147907
2918 2025-04-04 05:00:10.718813 0.269706000 y.y.y.y x.x.x.x TCP 389 → 36424 [FIN, ACK] Seq=1 Ack=168 Win=65536 Len=0 TSval=987405183 TSecr=3864147907
2919 2025-04-04 05:00:10.718853 0.000040000 x.x.x.x y.y.y.y TCP 36424 → 389 [ACK] Seq=168 Ack=2 Win=65536 Len=0 TSval=3864148217 TSecr=987405183

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.