Skip to main content
NetApp Knowledge Base

Security Daemon (SecD) fails to find local unix user by UID and name

Views:
5,410
Visibility:
Public
Votes:
2
Category:
ontap-9
Specialty:
nas
Last Updated:

Applies to

  • ONTAP 9.3P5 and prior
  • Clustered Data ONTAP 8

Issue

  • Security Daemon (SecD) fails to find or translate some unix users by UID and name
  • Newly created local unix users are also affected by the issue
  • The affected unix users are unable to mount and access data
  • Number of users against ONTAP version limits - all well within

 

Cluster1::> set advanced
Cluster1::*> vserver services name-service unix-group max-limit show
Limit          Current Count
-------------- --------------
16384          344

Cluster1::*> vserver services name-service unix-user  max-limit show
Limit          Current Count
-------------- --------------
16384          864

  • Details of the defined unix user: 

Cluster1::*> unix-user show -vserver SVM01 -user NewUser
             Vserver: SVM01
           User Name: NewUser
             User ID: 1234
    Primary Group ID: 321
    User's Full Name:

  • Translate fails for both the unix name and UID


    Cluster1::*> diag secd authentication translate -node NODE01 -vserver SVM01 -uid 1234
    Vserver: SVM01 (internal ID: 8)
    Error: Acquire UNIX credentials procedure failed
      [  0 ms] Entry for user-id: 1234 not found in the current source:
               FILES. Entry for user-id: 1234 not found in any of the available sources
    **[  0] FAILURE: Unable to retrieve UNIX username for UID 1234
    Error: command failed: Failed to resolve User ID '1234' to a user name. Reason: "SecD Error: object not found".

    Cluster1::*> diag secd authentication translate -node NODE01 -vserver SVM01 -unix-user-name NewUser
    Vserver: SVM01 (internal ID: 8)
    Error: Acquire UNIX credentials procedure failed
      [  0 ms] Entry for user-name: NewUser not found in the current
               source: FILES. Entry for user-name: NewUser not found in
               any of the available sources
    **[     0] FAILURE: Unable to retrieve UID for UNIX user NewUser
    Error: command failed: Failed to resolve user name to a UNIX ID. Reason: "SecD Error: object not found"

  • Unix user credential show fails

Cluster1::*> diag secd authentication show-creds -node NODE01 -vserver SVM01 -unix-user-name NewUser
Vserver: SVM01 (internal ID: 8)
Error: Acquire UNIX credentials procedure failed
  [  0 ms] Entry for user-name: NewUser not found in the current
           source: FILES. Entry for user-name: NewUser not found in
           any of the available sources
**[     0] FAILURE: Unable to retrieve UID for UNIX user NewUser
Error: command failed: Failed to resolve user name to a UNIX ID. Reason: "SecD Error: object not found".

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.