User authentication RPC timeout when resolving groups in LDAP

Last updated
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 128

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: nas

Last Updated:

Applies to

ONTAP 9
CIFS
LDAP

Issue

Users report intermittent slowness when trying to access shares
User Authentication is successful after retry
Environment has multiple domains
Users hold group memberships in multiple domains
LDAP Chasing is enabled
secd log:

Thu May 04 2023 10:26:47 +02:00 [kern_secd:info:13731] |                              RPC TOOK TOO LONG:                              |
Thu May 04 2023 10:26:47 +02:00 [kern_secd:info:13731] |                       RPC used 47 seconds (max is 23)                        |
Thu May 04 2023 10:26:47 +02:00 [kern_secd:info:13731] |                   and likely caused the client to timeout                    |
Thu May 04 2023 10:26:47 +02:00 [kern_secd:info:13731] .------------------------------------------------------------------------------.
Thu May 04 2023 10:26:47 +02:00 [kern_secd:info:13731] |                                 RPC SUCCESS:                                 |
Thu May 04 2023 10:26:47 +02:00 [kern_secd:info:13731] |                     secd_rpc_auth_extended has succeeded                     |
Thu May 04 2023 10:26:47 +02:00 [kern_secd:info:13731] |                          Result = 0, RPC Result = 0                          |
Thu May 04 2023 10:26:47 +02:00 [kern_secd:info:13731] |                   RPC received at Thu May  4 10:26:00 2023

Referral to other LDAP Server in secd

Thu May 04 2023 10:26:47 +02:00 [kern_secd:info:13731] | [001.364.139] debug: CM_STATS: Tracking connect() to server 10.225.100.91, port 636