启用"auth-sys-extended-groups"后,NFS 访问被拒绝
适用于
- ONTAP 9
- NFS
问题描述
- 启用 NFS 选项
auth-sys-extended-groups
后,来自客户端的 NFS 访问被拒绝 - 可能会显示类似的错误
Forbidden You don't have permission to access /<directory>/ on this server.
- 报告了有关 UNIX 凭据的 EMS 错误
secd.authsys.lookup.failed:error: Unable to retrieve credentials for UNIX user with UID (x) on Vserver (SVM) for client with IP address (y).
- 数据包跟踪显示:
816053 NFS 124 16 V3 ACCESS Call (Reply In 816054), FH: 0x552b00cd, [Check: RD LU MD XT DL] 816054 NFS 24 16 V3 ACCESS Reply (Call In 816053) RPC Auth Error: (client must begin new session)
- 无法解析用户 ID:
::*> vserver services name-service getxxbyyy getpwbyuid -vserver svm1_ontap91 -userID 998 Error: command failed: Failed to resolve 998. Reason: Entry not found for "userid: 998".