跳转到主内容

使用受信任域用户通过SSH登录到集群超时

Views:
10
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas<a>2009年358873</a>
Last Updated:

适用场景

  • ONTAP 9.9.1P9及更高版本
  • SSH
  • 域通道身份验证
  • System Manager

问题描述

  • 当CIFS服务器受信任域中的用户尝试通过SSH连接到ONTAP集群时、身份验证超时或需要很长时间。

注意: 对于与CIFS服务器域位于同一域的用户,不会显示此SSH登录超时问题描述

  • 升级ONTAP后、用户无法使用域帐户登录到集群。
  • EMS日志 显示以下报告的错误消息 :
cluster-01 ALERT security.invalid.login: Failed to authenticate login attempt to Vserver: cluster, username: <trusted_domain>\<user>, application:  http.
cluster-01 ERROR secd.dns.server.timed.out: DNS server 1x.xx.x.x did not respond to vserver = svm01 within timeout interval.
cluster-01 ERROR sshd.loginGraceTime.expired: Timeout before password authentication for remote host 10.xx.xx.xx.


 
  • ::> cifs domain trust show -vserver <svm> 对于用于域通道的数据SVM 、无法显示 受信任域。
  • ::> cifs domain trust rediscover -vserver <svm> 无法发现 受信任域。
  • 在System Manager中使用 受信任域帐户进行身份验证时、 System Manager页面 响应缓慢、 加载缓慢   

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.