メインコンテンツまでスキップ
NetApp Response to Russia-Ukraine Cyber Threat
In response to the recent rise in cyber threat due to the Russian-Ukraine crisis, NetApp is actively monitoring the global security intelligence and updating our cybersecurity measures. We follow U.S. Federal Government guidance and remain on high alert. Customers are encouraged to monitor the Cybersecurity and Infrastructure Security (CISA) website for new information as it develops and remain on high alert.

CIFSの作成が「certificate verify failed」というエラーで失敗する

Views:
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas<a>2009153443</a>
Last Updated:

環境

  • ONTAP 9
  • CIFS
  • LDAPS
  • 証明書SSL

問題

  • LDAPSを使用して証明書の検証に失敗した場合、SVMに追加できませんでしたというエラー
cluster1::> vserver cifs security show -vserver svm1 -fields use-ldaps-for-ad-ldap
vserver use-ldaps-for-ad-ldap
------- ---------------------
svm1   true
 
cluster1::> vserver cifs create -vserver svm1 -cifs-server cifs01 -domain example.com
Error: Machine account creation procedure failed
[ 26699] Successfully connected to ip 192.168.0.20, port 636 using TCP
[ 27040] Required certificate with CA Certificate1 Racine is not installed
[ 27042] Unable to start LDAPS: Can't contact LDAP server
[ 27042] Additional info: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed
[ 27042] Unable to connect to LDAP (Active Directory) service on dc.example.com (Error: Can't contact LDAP server)
[ 27042] FAILURE: Unable to make a connection (LDAP (ActiveDirectory):EXAMPLE.COM), result: 7642

 
  • Secd ログ:
debug:  LDAP TLS Alert generated is 'fatal:unknown CA'
 
Scan to view the article on your device
CUSTOMER EXCLUSIVE CONTENT

Registered NetApp customers get unlimited access to our dynamic Knowledge Base.

New authoritative content is published and updated each day by our team of experts.

Current Customer or Partner?

Sign In for unlimited access

New to NetApp?

Learn more about our award-winning Support