CIFS authentication fails during tkeover due to DNS communication failure on node-02

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 53

Visibility:: Public

Votes:: 0

Category:: fas-systems

Specialty:: nas

Last Updated:

Applies to

ONTAP 9
CIFS

Issue

After controller takeover from node-01 to node02, CIFS authentication fails on node-02 due to inability to communicate with DNS server
This results in CIFS service disruption

Example:

9/1/2025 08:54:09 node-02 ERROR secd.cifsAuth.problem: vserver (svm1) General CIFS authentication problem. Error: User authentication procedure failed

CIFS SMB2 Share mapping - ClientIp=10.xxx.xxx.xxx

[0ms] Login attempt by domain user 'DOMAIN\User1' using NTLMv2 style security

[2006] Failed to connect to 10.xxx.xxx.xxx for DNS via Source Address 192.xxx.xxx.xxx: Operation timed out

[3013] FAILURE: Unable to contact DNS to discover domain controllers.

[3014] Unable to make a connection (NetLogon: DOMAIN.COM), Result: RESULT_ERROR_DNS_CANT_REACH_SERVER

[3015] CIFS authentication failed

ERROR secd.dns.server.timed.out: DNS server 10.xxx.xxx.xxx did not respond to vserver=svm1 within timeout interval.

ERROR secd.dns.srv.lookup.failed: DNS server failed to lookup service (_ldap._tcp.dc._msdcs.DOMAIN.COM) for vserver (svm1) with error (Operation timed out).