DC 接続エラー "krb5kdc_ERR_C_principal_unknown" が発生して CIFS の問題が発生し、失敗しました
- Views:
- 152
- Visibility:
- Public
- Votes:
- 0
- Category:
- ontap-9
- Specialty:
- nas<a /><a>CIFS Kerberos</a>
- Last Updated:
環境
- ONTAP 9
- Kerberos
- CIFS
問題
- ユーザはCIFS共有にアクセスできません
- マシンアカウントを使用したドメインコントローラへの接続を示すログが次のエラーで失敗し
KRB5KDC_ERR_C_PRINCIPAL_UNKNOWN
ます。
8/18/2022 09:15:58 cluster-01
ERROR secd.cifsAuth.problem: vserver (svm_cifs) General CIFS authentication problem. Error: User authentication procedure failed
CIFS SMB2 Share mapping - Client Ip = 192.168.1.1
[ 0 ms] Login attempt by domain user 'netapp\cifs' using NTLMv1 style security
[ 0] Successfully connected to ip 192.168.0.1, port 445 using TCP
[ 8] Unknown user (KRB5KDC_ERR_C_PRINCIPAL_UNKNOWN)
[ 8] Failed to initiate Kerberos authentication. Trying NTLM.
[ 9] Encountered NT error (NT_STATUS_MORE_PROCESSING_REQUIRED) for SMB command SessionSetup
[ 10] Encountered NT error (NT_STATUS_AUTH_LOGON_FAILURE) for SMB command SessionSetup
[ 10] Unable to connect to NetLogon service on dcsvr.tekunasas.local (Error: RESULT_ERROR_SECD_NO_CONNECTIONS_AVAILABLE)
[ 11] No servers available for MS_NETLOGON, vserver: 6, domain: netapp.local.
**[ 11] FAILURE: Unable to make a connection (NetLogon:NETAPP.LOCAL), result: 6940
[ 12] CIFS authentication failed
- Active Directory側で、CIFSサーバのマシンアカウントが見つからない