Permission denied to some NFS users due to nblade cache
Applies to
ONTAP 9
Issue
- After migration from on-prem to CVO, some NFS users report permission denied
- The volume is Unix security style and Unix permissions (owner, group, other) are configured on the filesystem
- LDAP is used to lookup UIDs and GIDs
- Recently changes to LDAP schema were done to enable 2307bis
- Users have many supplemental GIDs
- Security trace in ONTAP states access is denied due to Unix permissions
- ONTAP returns Unix user names with correct UIDs and supplemental GIDs
- That are other similar Unix users with the same group membership that have access