NFS permission denied on NTFS security style volume due to Domain Trust
Applies to
- ONTAP 9
- NFS
- NTFS security style volume/qtree
- Domain trust
Issue
- Volume can be successfully mounted
- Permission denied when browsing and accessing files and directories in the mounted volume
- EMS logs contain the following errors:
secd.nfsAuth.noCifsCred:error
Error: Get user credentials procedure failed
[ 0 ms] Determined UNIX id 501 is UNIX user 'user1'
[ 0] UNIX user 'user1' mapped to Windows user 'DOMAIN_B\user1'
[ 0] Using cached 'DOMAIN_B\user1' SID mapping.
[ 1] Using a cached connection to DOMAIN_CONTROLER_1.DOMAIN_A.com
[ 2] FAILURE: Cannot determine AD domain name for "DOMAIN_B"
[ 2] Could not get credentials for Windows user 'user1' or SID 'S-1-5-21-234345543-1303698708-1846674531-128084'
Error: command failed: Failed to get user credentials. Reason: "SecD Error: cannot find domain mapping".