跳转到主内容

启用"auth-sys-extended-groups"后,NFS 访问被拒绝

  1. 最后更新
  2. 另存为PDF
Views:
244
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
nas
Last Updated:

适用于

  • ONTAP 9
  • NFS

问题描述

  • NFS 用户在尝试访问文件夹/文件时获取 Permission denied
    • Forbidden You don't have permission to access /<directory>/ on this server. 
  • auth-sys-extended-groups 已启用
    • ::*> nfs show -fields auth-sys-extended-groups -vserver svm1 vserver auth-sys-extended-groups ------- ------------------------ svm1 disabled
  • EMS 包含
    • secd.authsys.lookup.failed:error: Unable to retrieve credentials for UNIX user with UID (998) on Vserver (SVM) for client with IP address (y).
  • 数据包跟踪显示:
816053 NFS 124 16 V3 ACCESS Call (Reply In 816054), FH: 0x552b00cd, [Check: RD LU MD XT DL] 816054 NFS 24 16 V3 ACCESS Reply (Call In 816053) RPC Auth Error: (client must begin new session)
  • 无法解析用户 ID:
::*> vserver services name-service getxxbyyy getpwbyuid -vserver svm1_ontap91 -userID 998 Error: command failed: Failed to resolve 998. Reason: Entry not found for "userid: 998".

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.