到達不能なDNSが原因でCIFS共有の[セキュリティ]タブで権限を変更できない

最後の更新
PDFとして保存

Views:: 44

Visibility:: Public

Votes:: 0

Category:: fas-systems

Specialty:: nas<a>2009784838</a>

Last Updated:

環境

ONTAP 9
CIFS
DNS

問題

Windowsエクスプローラの[セキュリティ]タブでCIFS共有の権限を変更できません。以下のエラーメッセージが表示されます。

The program cannot open the required dialog box because it cannot determine whether the computer named “cifs-server” is joined to a domain. Close this message, and try again.

permissions_security .png

dns check SVMの場合、サーバが停止して動作がタイムアウトしたことが示されました。

cluster::*> dns check -vserver vs_name Name Server Vserver Name Server Status Status Details -------- ------------ ------------ ---------------------------- Vs_name 10.2.x.y down Operation timed out. Vs_name 10.2.x.z down Operation timed out. 2 entried were displayed.

優先DCは追加されません。
access-check （Windows）ユーザが詳細を取得できませんでした。エラーが発生しました。Unable to contact DNS

cluster::*> vserver services access-check authentication show-creds -vserver vs_name -win-name domain\username -node node1 Vserver : vs_name (internal ID: x) Error: Get user credentials procedure failed [ 0 ms] Using cached S-1-x-21-xxxxx-xxx-xxx-xxx x to 'domain\username' mapping [ x00x] Failed to connect to 10.2.x.y for DNS via Source Address 10.2.x.yy: Operation timed out [ x00x] Failed to connect to 10.2.x.z for DNS via Source Address 10.2.x.yy: Operation timed out **[ x00x] FAILURE: Unable to contact DNS to discover domain ** controllers. [x00x] Unable to make a connection (LDAP (Active Directory):domain), result: 6812 [x00x] Could not get credentials for windows user 'username' or SID 'S-1-x-21-xxxxx-xxx-xxx-xxx' Error: command failed: Failed to get user credentials. Reason: "Unable to contact DNS"

DNSサーバがタイムアウトしたことに関連するevent log showに次のエラーが表示されます。

9/21/2023 13:27:32 node-01 ERROR secd.dns.server.timed.out: DNS server 10.2.x.y did not respond to vserver = vs_name within timeout interval. 9/21/2023 13:26:01 node-01 ERROR secd.dns.server.timed.out: DNS server 10.2.x.z did not respond to vserver = vs_name within timeout interval. 9/21/2023 13:25:37 node-01 ERROR secd.cifsAuth.problem: vserver (vs_name) General CIFS authentication problem. Error: User authentication procedure failed 9/21/2023 13:25:02 node-01 ERROR secd.dns.srv.lookup.failed: DNS server failed to look up service (_ldap._tcp.domain.com) for vserver (vs_name) with error (Operation timed out).