在重新设置 CIFS 密码后、在 ONTAP 9.2+ 上 CIFS 客户端访问失败
状态信息
适用于
- ONTAP 9.2+
问题
- CIFS 客户机无法鉴定到 CIFS 服务器
- EMS 错误( secd.cifsauth.problem )报告 "krb5krb_ap_err_bad _integrity"
12/31/2018 14:12:31 cluster-01 ERROR secd.cifsAuth.problem: vserver (vserver) General CIFS authentication problem. Error: User authentication procedure failed
CIFS SMB2 Share mapping - Client Ip = 10.11.22.33
[ 2 ms] Error accepting security context for Vserver identifier (8). Decrypt integrity check failed (KRB5KRB_AP_ERR_BAD_INTEGRITY).
**[ 4] FAILURE: CIFS authentication failed
- 手动或计划的 CIFS 密码重置
- 使用以下命令检查上次为虚拟服务器重置密码的时间
cluster::> cifs domain password schedule show -vserver <vserver>
Schedule Enabled: true<<<< Whether or not scheduled password reset is enabled
Schedule Interval: 4 week(s)
Schedule Randomized Within: 120 minute(s)
Schedule: Sun@01:00
Last Changed At: Mon Dec 31 15:23:41 2018<<<< Last time password was changed either manually or via scheduled reset
- 失败期间的数据包跟踪在会话设置响应中显示以下错误代码之一
- 未知( 0xC0000466 )
- STATE_Unsuccessful