メインコンテンツまでスキップ

CIFSの作成が「certificate verify failed」というエラーで失敗する

Views:
2
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas<a>2009153443</a>
Last Updated:

環境

  • ONTAP 9
  • CIFS
  • LDAPS
  • 証明書SSL

問題

  • LDAPSを使用して証明書の検証に失敗した場合、SVMに追加できませんでしたというエラー
cluster1::> vserver cifs security show -vserver svm1 -fields use-ldaps-for-ad-ldap
vserver use-ldaps-for-ad-ldap
------- ---------------------
svm1   true
 
cluster1::> vserver cifs create -vserver svm1 -cifs-server cifs01 -domain example.com
Error: Machine account creation procedure failed
[ 26699] Successfully connected to ip 192.168.0.20, port 636 using TCP
[ 27040] Required certificate with CA Certificate1 Racine is not installed
[ 27042] Unable to start LDAPS: Can't contact LDAP server
[ 27042] Additional info: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed
[ 27042] Unable to connect to LDAP (Active Directory) service on dc.example.com (Error: Can't contact LDAP server)
[ 27042] FAILURE: Unable to make a connection (LDAP (ActiveDirectory):EXAMPLE.COM), result: 7642

 
  • Secd ログ:
debug:  LDAP TLS Alert generated is 'fatal:unknown CA'
 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

Scan to view the article on your device