メインコンテンツまでスキップ

ドメイン信頼のため、NTFSセキュリティ形式のボリュームでNFS権限が拒否されました

環境

 
  • ONTAP 9
  • NFS
  • NTFSセキュリティ形式のボリューム/ qtree
  • ドメインの信頼

問題

  • ボリュームは正常にマウントできます
  • マウントされたボリューム内のファイルやディレクトリを参照したり、アクセスしたりすると、権限が拒否される
  • EMSログに次のエラーが記録されています。

secd.nfsAuth.noCifsCred:error

Error: Get user credentials procedure failed
[ 0 ms] Determined UNIX id 501 is UNIX  user 'user1'
[    0] UNIX user 'user1' mapped to Windows user 'DOMAIN_B\user1'
[    0] Using cached 'DOMAIN_B\user1' SID mapping.  
[    1] Using a cached connection to DOMAIN_CONTROLER_1.DOMAIN_A.com
[    2] FAILURE: Cannot determine AD domain name for "DOMAIN_B"
[    2] Could not get credentials for Windows user 'user1' or SID 'S-1-5-21-234345543-1303698708-1846674531-128084'
Error: command failed: Failed to get user credentials. Reason: "SecD Error: cannot find domain mapping".

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.