ONTAP not able to fetch group membership for windows user with "cifs: ldap error"

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 2,386

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: nas

Last Updated:

Applies to

ONTAP 9

Issue

When we run command to fetch credentials (group membership) for windows user, it fails with below error

CLUSTER::> set -privilege advanced CLUSTER::*> vserver services access-check authentication show-creds -node node 1 -vserver vs1 -win-name netapp1 Vserver: vs1(internal ID: 11) Error: Get user credentials procedure failed [ 2 ms] Using a cached connection to dc1.netapp.com [ 3] DC translates S-1-5-21-xxxxx-xxxxx-xxxx-xxx to 'NETAPP\netapp1' [ 12] Successfully connected to ip 10.216.41.xxx, port 88 using TCP [ 26] Could not get credentials via S4U2Self based on full Windows user name 'netappl@NETAPP.COM'. Continuing to LDAP. [ 39] Successfully connected to ip 10.216.41.xxx, port 389 using TCP [ 50] Could not get credentials via LDAP for Windows user 'netapp1' based on SID 'S-1-5-21-xxxxx-xxxxx-xxxx-xxx' **[ 50] FAILURE: Could not get credentials for Windows user 'netapp1' or SID 'S-1-5-21-xxxxx-xxxxx-xxxx-xxx' Error: command failed: Failed to get user credentials. Reason: "cifs: ldap error".