CONTAP-79128: The default site is always used for trusted domain controller discovery in the CIFS discovery mode "site"

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 663

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: nas

Last Updated:

Issue

In a trusted domain configuration, with the CIFS default site configured, DNS queries for trusted domains includes the site name from the home domain
Examples:

cluster::> cifs domain trusts show -node node-01 -vserver SVM01
Node: node-01
Vserver: SVM01
Home Domain Name: DEMO.DOMAINA.LOCAL
Trusted Domain Name: NAS.LOCAL, DEMO.DOMAINA.LOCAL
cluster::> cifs show -vserver SVM01
Vserver: SVM01
CIFS Server NetBIOS Name: SVM01
NetBIOS Domain/Workgroup Name: DEMO
Fully Qualified Domain Name: DEMO.DOMAINA.LOCAL
Organizational Unit: CN=Computers
Default Site Used by LIFs Without Site Membership: test <<< !
[...]
cluster::> event log show -event dns
Time Node Severity Event
------------------- ---------------- ------------- ---------------------------
10/24/2022 13:41:22 node-01 ERROR secd.dns.srv.lookup.failed: DNS server failed to look up service
(_kerberos._tcp.test._sites.NAS.LOCAL) for vserver (SVM01) with error (No server(s) found).

Note: The above EMS message contains default site "test" incorrectly.

ONTAP is on a fixed version of CONTAP-67647: DNS service lookup failures occur periodically for trusted domains