メインコンテンツまでスキップ

NetApp wins prestigious Coveo Relevance Pinnacle Award. Learn more!

INSIGHT Japan :2023年 1月25日(水)ANAインターコンチネンタルホテル開催 へ参加・申込を行う

Active Directory のサードパーティファイアウォールがポート 389 および 445 をブロックしています

環境

  • ONTAP 9
  • SMB / CIFS

問題

  • Active Directory ( AD )に接続しようとすると、ポート 389 または 445 に接続しようとすると、 AD によって接続が閉じられます。
  • これは TCPDUMP を使用して確認できます。
clipboard_e1f3334ad1e0cce0a176f81190292165a.png
 
  • SecD / EMS ログで確認することもできます。

[Cluster01-01: secd: secd.cifsAuth.problem:error]: vserver (SVM1) General CIFS authentication problem. Error: User authentication procedure failed CIFS SMB2 Share mapping - Client Ip = 10.1.1.2

[ 0 ms] Login attempt by domain user 'NetApp\bob' using NTLMv2 style security

[ 0] Using a cached connection to DC1.NetApp.com

[ 26] Authentication failed with DC DC1. Not retriable. (Status: 0xc0000064)

[ 27] Unable to find the NetBIOS domain name for Active Directory '.' **

[ 27] FAILURE: CIFS authentication failed

[ 2125] TCP connection to ip 10.10.10.10, port 389 via interface 10.10.10.2 failed: Operation timed out.

[ 4159] Unable to connect to LDAP (Active Directory) service on DC2.NetApp.com (Error: Can't contact LDAP server

または
 
  [  8007] TCP connection to ip 172.24.100.5, port 445 via interface 10.101.7.41 failed: Operation timed out.
  [  8007] Could not open a socket to 'dc002cd.netapp.cn'
  [  8007] Unable to connect to NetLogon service on dc002cd.netapp.cn (Error: RESULT_ERROR_SPINCLIENT_UNABLE_TO_RESOLVE_SERVER)
**[  8007] FAILURE: Unable to make a connection (NetLogon:netapp.CN), result: 6942
  [  8007] CIFS authentication failed
  [  8007] Retry requested, but the retry window (7000 ms) has expired; giving up.

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

Scan to view the article on your device