Machine account creation procedure failed with KRB5_REALM_UNKNOWN error
Applies to
- CIFS/SMB
- ONTAP 9
- Kerberos
Issue
Machine account creation procedure failed
::> vserver cifs create -vserver <vservername> -cifs-server <cifsservername> -domain <domainname>
Error: Machine account creation
procedure failed
[108610] Loaded the preliminary configuration.
**[109598] FAILURE: Could not authenticate as
'user.name@DOMAIN.COM': Cannot find KDC for requested realm (KRB5_REALM_UNKNOWN)
[109607] Retry requested, but the retry
window (7000 ms) has expired; giving up.
6/14/2023 18:27:01 cluster02-01 ERROR secd.dns.srv.lookup.failed: DNS server
failed to look up service (_kerberos._tcp.XXX-XX-XXX._sites.XXX.DOMAIN.CORP) for vserver (svm_cluster02) with error (No server(s) found).
6/14/2023 18:27:01 cluster02-01 ERROR secd.dns.srv.lookup.failed: DNS server failed to look up
service (_ldap._tcp.XXX-XX-XXX._sites.XXX.DOMAIN.CORP) for vserver (svm_cluster02) with error (No server(s)
found).
6/14/2023 18:27:01 cluster02-01 ERROR secd.dns.srv.lookup.failed: DNS server failed to look up service
(_ldap._tcp.XXX-XX-XXX._sites.dc._msdcs.XXX.DOMAIN.CORP) for vserver (svm_cluster02) with error (No server(s) found).
- Verify username:
::> set advanced
::*> vserver services access-check authentication show-creds -node <nodename> -vserver<vservername> -win-name <windows username>