メインコンテンツまでスキップ

セキュリティデーモン( secd )が UID と名前でローカル UNIX ユーザを検出できませんでした

Views:
427
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas<a>1005369</a>
Last Updated:

のしんだ

環境

  • ONTAP 9.3P5 以前
  • clustered Data ONTAP 8

問題

  • Security daemon ( secd )が、一部の UNIX ユーザを UID と名前で検索または変換できません。
  • 新しく作成されたローカル UNIX ユーザもこの問題の影響を受けます。
  • 影響を受ける UNIX ユーザは、データをマウントおよびアクセスできません。
  • ONTAP のバージョン制限に対するユーザの数 - すべてのユーザの制限に問題はありません

 

Cluster1::> set advanced
Cluster1::*> vserver services name-service unix-group max-limit show
Limit       Current Count
-------------- --------------
16384       344

Cluster1::*> vserver services name-service unix-user  max-limit show
Limit          Current Count
-------------- --------------
16384          864

  • 定義された UNIX ユーザの詳細: 

Cluster1::*> unix-user show -vserver SVM01 -user NewUser
       Vserver: SVM01
      User Name: NewUser
       User ID: 1234
   Primary Group ID: 321
   User's Full Name:

  • UNIX 名と UID の両方の変換が失敗します


    Cluster1::*> diag secd authentication translate -node NODE01 -vserver SVM01 -uid 1234
   Vserver: SVM01 (internal ID: 8)
   Error: Acquire UNIX credentials procedure failed
     [  0 ms] Entry for user-id: 1234 not found in the current source:
            FILES. Entry for user-id: 1234 not found in any of the available sources
   **[  0] FAILURE: Unable to retrieve UNIX username for UID 1234
   Error: command failed: Failed to resolve User ID '1234' to a user name. Reason: "SecD Error: object not found".

    Cluster1::*> diag secd authentication translate -node NODE01 -vserver SVM01 -unix-user-name NewUser
   Vserver: SVM01 (internal ID: 8)
   Error: Acquire UNIX credentials procedure failed
     [  0 ms] Entry for user-name: NewUser not found in the current
            source: FILES. Entry for user-name: NewUser not found in
            any of the available sources
   **[     0] FAILURE: Unable to retrieve UID for UNIX user NewUser
   Error: command failed: Failed to resolve user name to a UNIX ID. Reason: "SecD Error: object not found"

  • UNIX ユーザクレデンシャルの表示に失敗する

Cluster1::*> diag secd authentication show-creds -node NODE01 -vserver SVM01 -unix-user-name NewUser
Vserver: SVM01 (internal ID: 8)
Error: Acquire UNIX credentials procedure failed
  [  0 ms] Entry for user-name: NewUser not found in the current
           source: FILES. Entry for user-name: NewUser not found in
           any of the available sources
**[     0] FAILURE: Unable to retrieve UID for UNIX user NewUser
Error: command failed: Failed to resolve user name to a UNIX ID. Reason: "SecD Error: object not found".

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.