secd.ldap.noservers (LDAPサーバが過負荷のため)
環境
- ONTAP 9
- LDAP
問題
- EMSのメッセージ
secd.ldap.noServers4/2/2025 01:00:10 node-03 EMERGENCY secd.ldap.noServers: None of the LDAP servers configured for Vserver (svm1) are currently accessible via the network for LDAP service type (Service: LDAP (NIS & Name Mapping), Operation: MapNameWindowsToUnix).
- SECDはLDAPサーバーがバインド応答を送信していないと報告しています
00000008.0249fc2b 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [000.004.377] info : Successfully connected to ip y.y.y.y, port 389 using TCP { in _connect() at src/connection_manager/secd_connection_shim.cpp:548 }
00000008.0249fc2c 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [003.005.541] debug: ldap_sasl_bind_s returned -5 { in ldapSaslBindSpnego() at src/connection_manager/secd_connection.cpp:854 }
00000008.0249fc2d 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [003.005.582] ERR : RESULT_ERROR_LDAPSERVER_TIMEOUT:7646 in ldapSaslBindSpnego() at src/connection_manager/secd_connection.cpp:864
00000008.0249fc2e 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [003.005.590] ERR : ldapSaslBindSpnego: LDAP Error: (-5): 'Timed out':
00000008.0249fc2f 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [003.005.604] ERR : RESULT_ERROR_LDAPSERVER_TIMEOUT:7646 in ldapSaslBind() at src/connection_manager/secd_connection.cpp:1098
00000008.0249fc30 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [003.005.608] debug: Attempting a simple bind as "" { in ldapConnectNIS() at src/connection_manager/secd_connection.cpp:1393 }
00000008.0249fc31 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [006.006.565] debug: Simple bind failed, LDAP Error: (-5): Timed out. Attempting anonymous bind. { in ldapConnectNIS() at src/connection_manager/secd_connection.cpp:1438 }
00000008.0249fc32 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [009.008.016] ERR : RESULT_ERROR_LDAPSERVER_TIMEOUT:7646 in ldapConnectNIS() at src/connection_manager/secd_connection.cpp:1452
00000008.0249fc33 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [009.008.026] ERR : ldapConnectNIS: LDAP Error: (-5): 'Timed out':
00000008.0249fc34 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [009.008.031] ERR : RESULT_ERROR_LDAPSERVER_TIMEOUT:7646 in connect() at src/connection_manager/secd_connection.cpp:2642
00000008.0249fc35 0bd7f299 Wed Apr 02 2025 01:00:10 -04:00 [kern_secd:info:11694] | [009.008.044] ERR : Vserver 5 could not connect or authenticate to ldap server (linux-ldap-auth) at address y.y.y.y with error Timed out. { in connect() at src/connection_manager/secd_connection.cpp:2673 }
- パケットトレースによると、LDAPサーバーはバインド応答を送信していない
2905 2025-04-04 05:00:01.380793 5.453313000 x.x.x.x y.y.y.y TCP 36424 → 389 [SYN] Seq=0 Win=65535 Len=0 MSS=1460 WS=256 SACK_PERM TSval=3864138879 TSecr=0
2906 2025-04-04 05:00:01.381032 0.000239000 y.y.y.y x.x.x.x TCP 389 → 36424 [SYN, ACK] Seq=0 Ack=1 Win=65160 Len=0 MSS=1460 SACK_PERM TSval=987395845 TSecr=3864138879 WS=512
2907 2025-04-04 05:00:01.381064 0.000032000 x.x.x.x y.y.y.y TCP 36424 → 389 [ACK] Seq=1 Ack=1 Win=65792 Len=0 TSval=3864138879 TSecr=987395845
2908 2025-04-04 05:00:01.381102 0.000038000 x.x.x.x y.y.y.y LDAP bindRequest(1) "<ROOT>" , NTLMSSP_NEGOTIATEsasl
2909 2025-04-04 05:00:01.381362 0.000260000 y.y.y.y x.x.x.x TCP 389 → 36424 [ACK] Seq=1 Ack=132 Win=65536 Len=0 TSval=987395845 TSecr=3864138879
2910 2025-04-04 05:00:04.383387 3.002025000 x.x.x.x y.y.y.y LDAP bindRequest(2) "<ROOT>" simple
2911 2025-04-04 05:00:04.384103 0.000716000 y.y.y.y x.x.x.x TCP 389 → 36424 [ACK] Seq=1 Ack=146 Win=65536 Len=0 TSval=987398848 TSecr=3864141881
2912 2025-04-04 05:00:07.384161 3.000058000 x.x.x.x y.y.y.y LDAP bindRequest(3) "<ROOT>" simple
2913 2025-04-04 05:00:07.384456 0.000295000 y.y.y.y x.x.x.x TCP 389 → 36424 [ACK] Seq=1 Ack=160 Win=65536 Len=0 TSval=987401848 TSecr=3864144882
2914 2025-04-04 05:00:10.408839 3.024383000 x.x.x.x y.y.y.y LDAP unbindRequest(4)
2915 2025-04-04 05:00:10.408848 0.000009000 x.x.x.x y.y.y.y TCP 36424 → 389 [FIN, ACK] Seq=167 Ack=1 Win=65792 Len=0 TSval=3864147907 TSecr=987401848
2916 2025-04-04 05:00:10.409043 0.000195000 y.y.y.y x.x.x.x TCP 389 → 36424 [ACK] Seq=1 Ack=167 Win=65536 Len=0 TSval=987404873 TSecr=3864147907
2917 2025-04-04 05:00:10.449107 0.040064000 y.y.y.y x.x.x.x TCP 389 → 36424 [ACK] Seq=1 Ack=168 Win=65536 Len=0 TSval=987404913 TSecr=3864147907
2918 2025-04-04 05:00:10.718813 0.269706000 y.y.y.y x.x.x.x TCP 389 → 36424 [FIN, ACK] Seq=1 Ack=168 Win=65536 Len=0 TSval=987405183 TSecr=3864147907
2919 2025-04-04 05:00:10.718853 0.000040000 x.x.x.x y.y.y.y TCP 36424 → 389 [ACK] Seq=168 Ack=2 Win=65536 Len=0 TSval=3864148217 TSecr=987405183