CIFS shares became inaccessible from certain UNIX clients
Applies to
- ONTAP 9
- Redhat 8.4 (RHEL)
- CIFS/SMB
Issue
- Following the reboot of a node, CIFS share folders became inaccessible from certain UNIX clients
- Issue doesn't affect all clients
- Listing the contents of folders within a share are denied, when access is attempted to a folder listed – the seen folder “Shared” in this case, the permission is denied
root@client1~]# df -hT |grep -i cifs
//system.domain.com/Apps/Reports/Shared/NRFB cifs 175G 35G 141G 20% /reports/NRFB
//system.domain.com/Apps/Reports/Shared/ALL cifs 175G 35G 141G 20% /reports/ALL
//system.domain.com/Apps/Reports/Shared/RFB cifs 175G 35G 141G 20% /reports/RFB
[root@client1~]# ls /reports/NRFB
Shared
[root@client1~]# ls /reports/ALL
Shared
[root@client1~]# ls /reports/RFB
Shared
[root@apptup01df Shared]# df -hT |grep -i cifs
//system.domain.com/Apps/Reports/Shared/RFB cifs 175G 35G 141G 20% /reports/RFB
//system.domain.com/Apps/Reports/Shared/NRFB cifs 175G 35G 141G 20% /reports/NRFB
//system.domain.com/Apps/Reports/Shared/ALL cifs 175G 35G 141G 20% /reports/ALL
[root@apptup01df Shared]# ls /reports/RFB/Shared/
ls: reading directory '/reports/RFB/Shared/': Permission denied- The client is listing the higher folder of the share:
[root@client1 Shared]# cd ~
[root@client1 ~]# ls -lrth /reports/RFB
total 0
drwxr-xr-x. 2 user01 group01 0 Nov 10 2023 Shared
[root@client1 ~]# ls -lrth /reports/NRFB
total 0
drwxr-xr-x. 2 user01 group01 0 Nov 10 2023 Shared
[root@client1 ~]# ls -lrth /reports/ALL
total 0
drwxr-xr-x. 2 user01 group01 0 Nov 10 2023 Shared
[root@client1 ~]#- When unmounting and mounting the share again, there is no issue – in this scenario, the correct files are listed and accessible :
[root@client1 ~]# df -hT |grep -i cifs
//system.domain.com/Apps/Reports/Shared/RFB cifs 175G 35G 141G 20% /reports/RFB
//system.domain.com/Apps/Reports/Shared/NRFB cifs 175G 35G 141G 20% /reports/NRFB
//system.domain.com/Apps/Reports/Shared/ALL cifs 175G 35G 141G 20% /reports/ALL
[root@client1 ~]# ls -lart /reports/NRFB
total 1
drwxrwxr-x. 5 user01 group01 40 Feb 20 2024 ..
-rwxr-xr-x. 1 user01 group01 0 Mar 4 2025 um.txt
drwxr-xr-x. 2 user01 group01 0 Mar 4 2025 .
[root@client1 ~]# ls -lart /reports/ALL/
total 533961
drwxrwxr-x. 5 user01 group01 40 Feb 20 2024 ..
drwxr-xr-x. 2 user01 group01 0 Dec 5 2024 Archive
-rwxr-xr-x. 1 user01 group01 22 Jun 20 17:35 20250403.zip
-rwxr-xr-x. 1 user01 group01 546771760 Jun 20 17:40 20250227.zip
drwxr-xr-x. 2 user01 group01 0 Jun 20 17:40 .
[root@client1 ~]# ls -lart /reports/NRFB/
total 1
drwxrwxr-x. 5 user01 group01 40 Feb 20 2024 ..
-rwxr-xr-x. 1 user01 group01 0 Mar 4 2025 um.txt
drwxr-xr-x. 2 user01 group01 0 Mar 4 2025 .
[root@client1 ~]# ll /reports/NRFB
total 1
-rwxr-xr-x. 1 user01 group01 0 Mar 4 2025 um.txt
[root@client1 ~]# ll /reports/ALL
total 533961
-rwxr-xr-x. 1 user01 group01 546771760 Jun 20 17:40 20250227.zip
-rwxr-xr-x. 1 user01 group01 22 Jun 20 17:35 20250403.zip
drwxr-xr-x. 2 user01 group01 0 Dec 5 2024 Archive
[root@client1 ~]# ll /reports/NRFB/
total 1
-rwxr-xr-x. 1 user01 group01 0 Mar 4 2025 um.txt
[root@client1 ~]#- SECTRACE
svm1 1 Security Style: NTFS and Access is denied. The
NT ACL requested permissions are not
granted by the ACE while
opening existing file or
directory. Access is not
granted for: "Read
Attributes", "Read"
Protocol: cifs
Volume: -
Share: Reports
Path: /Shared
Win-User: group01\user01
UNIX-User: pcuser
Session-ID: 123456789123456789