CIFS server fails to add AD domain due to the DC servers do not support AES

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 83

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: nas

Last Updated:

Applies to

ONTAP 9
CIFS

Issue

CIFS server fails to join the AD domain with following error messages.

[Job 190] Job failed: Failed to create the Active Directory machine account "FAS2820NEWCIFS". Reason: general failure Details: Error: Machine account creation procedure failed [ 25] Loaded the preliminary configuration. [ 85] Created a machine account in the domain [ 93] SID to name translations of Domain Users and Admins completed successfully [ 94] Successfully connected to ip 192.168.0.1, port 88 using TCP [ 98] Successfully connected to ip 192.168.0.1, port 464 using TCP [ 175] Kerberos password set for 'FAS2820NEWCIFS$@Example.com' succeeded [ 175] Set initial account password [ 203] Successfully connected to ip 192.168.0.1, port 445 using TCP [ 205] Successfully connected to ip 192.168.0.1, port 88 using TCP [ 212] Successfully authenticated withC DC01.Example.Com [ 215] Unable to connect to NetLogon service on DC01.Example.com (Error: RESULT_ERROR_GENERAL_FAILURE) **[ 215] FAILURE: Unable to make a connection (NetLogon:Example.Com), ** Result: RESULT_ERROR_GENERAL_FAILURE [ 215] Unable to make a NetLogon connection to Dc01.Example.Com using the new machine account [ 224] Deleted existing account 'CN=FAS2820NEWCIFS,CN=Computers,DC=Example,DC=Com' .