CIFS access denied errors in ONTAP 9 after enabling SMB encryption
Applies to
- CIFS/SMB
- ONTAP 9
- Linux/Unix
- Windows
Issue
- After enabling "
-is-smb-encryption-required
" CIFS security option, some clients are no longer able to access CIFS shares and seeing access denied errors. - The issue impacts clients running Windows versions earlier than 8, Server 2012, RHEL version below 7.5, while newer clients are still able to access shares.
- The issue impacts shares that have CIFS share property '
encrypt-data
' enabled as well. - In trace, we're seeing "
STATUS_ACCESS_DENIED
" being returned to Session Setup Requests. - EMS may report
Nblade.cifsEncSessAccessDenied or Nblade.cifsEncShrAccessDenied