NFS extended groups not working after enabling option auth-sys-extended-groups
Applies to
- ONTAP 9
- NFS
- LDAP
Issue
- NFS user have permission denied
- NFS option
auth-sys-extended-groupsis enabled vserver services name-service getxxbyyy getgrlistreturns only primary gidSecd.log:
info : LDAP search for the "gidNumber" attribute(s) within base "ou=Group,ou=dom,o=example" (scope: 2) using filter "(&(|(objectClass=groupOfNames)(objectClass=exampleGroupAuxClass))(|(memberUid=user01)(member=cn=user01,ou=Personal,ou=People,ou=dom,o=example))-)" fail { in searchLdap() at src/utils/secd_ldap_utils.cpp:394 }
info : Additional info: { in searchLdap() at src/utils/secd_ldap_utils.cpp:397 }
ERR : RESULT_ERROR_LDAPSERVER_FILTER_ERROR:7648 in searchLdap() at src/utils/secd_ldap_utils.cpp:400
ERR : searchLdap: LDAP Error: (-7): 'Bad search filter':