STATUS_TRUSTED_DOMAIN_FAILURE (0xc000018c) due to the changes in Netlogon secure channel connections associated with CVE-2020-1472
Applies to
- ONTAP 9
- Active Directory Domains and Trusts
Issue
- Events are logged in ONTAP for NFS authorization problems (secd.nfsAuth.problem) when attempting UNIX to Windows name mapping
- Security Daemon (SecD) logs shows the Domain Controller returns STATUS_TRUSTED_DOMAIN_FAILURE (0xc000018c) resulting in the transient condition
- Sample from SECD:
[000.259.769] debug: LsaLookupNames2 returned NtStatus code: 0xc000018c { in lookupName() at src/utils/secd_cifs_utils.cpp:346 }
[000.259.775] debug: LSA returned NT status 0xC000018C, which was converted to result 3 { in convertLsaErrorToResult() at src/include/secd_connection_utils.h:44 }
0xC000018C
STATUS_TRUSTED_DOMAIN_FAILURE