跳转到主内容

如何为存储控制器设置正确的SPN

Views:
84
Visibility:
Public
Votes:
0
Category:
data-ontap-8
Specialty:
legacy
Last Updated:

执行

执行

适用场景

  • Data ONTAP 8 7-模式
  • Data ONTAP 7及更早版本

问题描述

  • 有时、在CIFS设置期间定义的服务主体名称(Service PrincipalName、SPN)与客户端尝试查找的所需SPN不匹配。
    • 这会导致在数据包跟踪中发现以下错误:KRB_ERR_S_PRINCIPAL_UNKNOWN
    • 这反过来又会导致Microsoft客户端回退、然后使用NTLM进行身份验证、而不是使用Kerberos。
  • 这有三个常见原因:
    • 在存储控制器上运行CIFS设置时、 options dns.domainname 中定义的值 与要加入的域的FQDN不匹配。
    • 当客户端尝试访问存储控制器时、它们使用的是NetBIOS别名。
    • 当客户端尝试访问存储控制器时、它们使用的是DNS别名。

 

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.