Skip to main content
NetApp Knowledge Base

CIFS server creation fails with "Failed to create the Active Directory machine account "XXXXXX". Reason: general failure"

Views:
1,908
Visibility:
Public
Votes:
2
Category:
ontap-9
Specialty:
nas
Last Updated:

Applies to

ONTAP 9.3P8

Issue

  • Unable to create CIFS server via vserver cifs create command
  • The command fails with error Failed to create the Active Directory machine account "XXXXXX". Reason: general failure

Example:

Cluster::> vserver cifs create -cifs-server [vserver name] -domain [domain name] -ou "OU=XXXX,DC=XXXX,DC=XXXX" -vserver [vserver name]

Error: Machine account creation procedure failed  ...
completed successfully
[ 112] Modified account 'cn=XXXX,OU=XXXX,DC=XXXX,DC=XXXX'
[ 113] Successfully connected to ip XXX.XXX.XXX.40, port 88 using TCP
[ 2118] TCP connection to ip XXX.XXX.XXX.40, port 464 via interface XXX.XXX.XXX.6 failed: Operation timed out.
[ 4233] Successfully connected to ip XXX.XXX.XXX.10, port 464 using TCP
[ 4407] Kerberos password set for 'XXXXXX@XXXXXX.LOCAL' succeeded
[ 4407] Set initial account password
[ 4413] Successfully connected to ip XXX.XXX.XXX.40, port 445 using TCP
[ 4419] Successfully connected to ip XXX.XXX.XXX.40, port 88 using TCP
[ 4432] CIFS server account password does not match password stored in Active Directory (KRB5KDC_ERR_PREAUTH_FAILED)
[ 4432] Failed to initiate Kerberos authentication. Trying NTLM.
[ 4434] Encountered NT error (NT_STATUS_MORE_PROCESSING_REQUIRED) for SMB command SessionSetup
[ 4436] Encountered NT error (NT_STATUS_AUTH_LOGON_FAILURE) for SMB command SessionSetup
[ 4440] Successfully connected to ip XXX.XXX.XXX.40, port 88 using TCP
[ 4453] CIFS server account password does not match password
stored in Active Directory (KRB5KDC_ERR_PREAUTH_FAILED)
[ 4453] Failed to initiate Kerberos authentication. Trying NTLM.
[ 4454] Encountered NT error (NT_STATUS_MORE_PROCESSING_REQUIRED)
for SMB command SessionSetup
[ 4457] Encountered NT error (NT_STATUS_AUTH_LOGON_FAILURE) for SMB command SessionSetup
[ 4457] Unable to connect to NetLogon service on XXXXXX.XXXXXX.local (Error: RESULT_ERROR_GENERAL_FAILURE)
**[ 4457] FAILURE: Unable to make a connection ** (NetLogon:XXXXXX.LOCAL), result: 3
[ 4457] Unable to make a NetLogon connection to
XXXXXX.XXXXXX.local using the new machine account

Error: command failed: Failed to create the Active Directory machine account "XXXXXX". Reason: general failure.

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.