メインコンテンツまでスキップ
NetApp Response to Russia-Ukraine Cyber Threat
In response to the recent rise in cyber threat due to the Russian-Ukraine crisis, NetApp is actively monitoring the global security intelligence and updating our cybersecurity measures. We follow U.S. Federal Government guidance and remain on high alert. Customers are encouraged to monitor the Cybersecurity and Infrastructure Security (CISA) website for new information as it develops and remain on high alert.

SSL/TLS を使用する場合は、 EMS の「 secd.ldap.noservers 」を参照してください

Views:
231
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas
Last Updated:

環境

  • ONTAP
  • サードパーティの LDAP サーバ
  • SSL/TLSプロトコル

問題

  • 既存の LDAP 設定で SSL/TLS を有効にすると、 EMS に次のメッセージが表示されます

secd.ldap.noServers: None of the LDAP servers configured for Vserver (VS1) are currently accessible via the network for LDAP service type (Service: LDAP (Active Directory), Operation: SiteDiscovery).

secd.ldap.noServers: None of the LDAP servers configured for Vserver (VS1) are currently accessible via the network for LDAP service type (Service: LDAP (Active Directory), Operation: MapNetbiosDomainToADDomain).

  • SE次元 ログには、次のエントリの一部が含まれます

Required certificate with CA NAME is not installed

LDAP TLS Alert generated is 'fatal:unknown CA '

error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed

RESULT_ERROR_LDAPSERVER_SERVER_DOWN:7642

LDAP TLS Alert generated is 'fatal:decrypt error'
 

error:0407006A:rsa routines:RSA_padding_check_PKCS1_type_1:block type is not 01
 

RESULT_ERROR_LDAPSERVER_CONNECT_ERROR:7652

LDAP サーバへの接続ができなくなったため、構成によってはストレージリソースへのアクセスが影響を受ける場合があります

 

Scan to view the article on your device
CUSTOMER EXCLUSIVE CONTENT

Registered NetApp customers get unlimited access to our dynamic Knowledge Base.

New authoritative content is published and updated each day by our team of experts.

Current Customer or Partner?

Sign In for unlimited access

New to NetApp?

Learn more about our award-winning Support