Skip to main content
NetApp Knowledge Base

CIFS server creation fails due to DNS errors

  1. Last updated
  2. Save as PDF
Views:
1,018
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
NAS
Last Updated:

Applies to

  • ONTAP 9
  • OnCommand Workflow Automation (WFA)
  • System Manager

Issue

  • While using OnCommand Workflow Automation (WFA) for creating a CIFS capable vserver, the step to create the CIFS server fails with the following error:

11:16:33.659 INFO [Setup CIFS service] ### Command 'Setup CIFS service' in 'POWER_SHELL' ###
11:16:42.644 INFO [Setup CIFS service] Using cached cluster connection
11:16:43.191 INFO [Setup CIFS service] Credentials successfully provided for 'DOMAIN.COM'
11:16:43.222 INFO [Setup CIFS service] Creating CIFS server with name 'CIFS1' for Storage Virtual Machine 'vserver1'
11:16:50.660 ERROR [Setup CIFS service] Failed to create the Active Directory machine account "CIFS1". Reason: SecD Error: no server available Details: Error: Machine account creation procedure failed [ 2 ms] Trying to re-use machine account 'CIFS1' in 'DOMAIN.COM' for Vserver 'vserver1' **[ 15] FAILURE: Unable to contact DNS to discover domain ** controllers. [ 15] Unable to connect to any (0) domain controllers. [ 21] Unable to contact DNS to discover domain controllers. [ 27] No servers available for MS_LDAP_AD, vserver: 84, domain: DOMAIN.COM.

  • Using System Manager to create a CIFS server fails 

Operation Create Cifs Server failed with error Failed to create the Active Directory machine account.
Reason: Unable to connect to any domain controllers.

  • EMS logs:

[NODE-01: secd: secd.unexpectedFailure:error]: Unexpected SecD failure in Vserver "SVM". Details: Error: Machine account creation procedure failed   
[ 65158] Loaded the preliminary configuration. **
[ 66535] FAILURE: Could not authenticate as 'user@DOMAIN.COM': Cannot find KDC for requested realm (KRB5_REALM_UNKNOWN)   
[ 66536] Retry requested, but the retry window (7000 ms) has expired; giving up.

  • Checking the DNS for the newly created vserver it shows up:

    • Cluster1::*> dns check -vserver vserver1
      Name ServerVserver Name Server Status Status Details
      ------------- --------------- ------------ --------------------------
      vserver1 19.13.0.246 up Response time (msec): 2
      vserver1 19.69.0.246 up Response time (msec): 2
      2 entries were displayed.

  • Event logs contain the following errors:
    • secd.dns.srv.lookup.failed: DNS server failed to look up service (_ldap._tcp.dc._msdcs.domain.com) for vserver (vserver1 with error (No such process).
    • secd.dns.srv.lookup.failed: DNS server failed to look up service (_ldap._tcp.DOMAIN.COM) for vserver (vserver1) with error (No such process).
  • Creating the CIFS server manually on the CLI once the vserver is created works normally.

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.