CONAP-173273:具有自定义角色的ONTAP中的域用户不会获得与具有相同角色的本地用户相同的授权
问题描述
- Domain user in ONTAP with a custom role doesnt get the same authorization as a local user with same role
- Issue seen while using domain user to use SWS ONTAP SVM data collector for ONTAP 9.13.1 using an AD account assigned with the csrole with below details as per documentation (https://docs.netapp.com/us-en/cloudi...-management-ip):
- While a local user (csuser) with csrole worked fine, as soon as the customer switch to an AD user with csrole, it stopped working.
- In the SWS agent datasource log (dsc.log) there are repeated entries as “Ontap type is not decided”.
- apache_access.log shows “system-get-version” zapi call is not getting accessed on 9.13.1 for an AD user with csrole.
- There are some commands for example vserver show which yields result when logged in to ONTAP CLI via local user but is not available when logged in to the cluster via domain user